W3C home > Mailing lists > Public > ietf-http-wg@w3.org > April to June 2014

explicitly authenticated proxy: new draft

From: Salvatore Loreto <salvatore.loreto@ericsson.com>
Date: Mon, 5 May 2014 06:49:34 +0000
To: "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Message-ID: <91DEC006-177D-4624-8194-7B02BD221B92@ericsson.com>

we have produced a new draft that proposes the definition of an Explicitly Authenticated
Proxy as intermediary of normally unprotected "http://" URI scheme requests and responses of HTTP2 traffic.

The Explicitly Authenticated Proxy is defined as a message forwarding agent that  is selected, with explicit user's consent, 
and configured by the user agent to receive exclusively "http" URI scheme requests and attempt 
to satisfy those requests on behalf of the user agent.  
A client is connected to an Explicitly Authenticated Proxy through an authenticated TLS secured connection.

The document describes also a method for a user agent to automatically discover and authenticate, 
and for an user to provide consent for an Explicitly Authenticated Proxy. 
This enables proxies communication to be encrypted and authenticated, explicitly acknowledged by the
user agent and visible to the server end point.


URL:            http://www.ietf.org/internet-drafts/draft-loreto-httpbis-explicitly-auth-proxy-00.txt
Status:         https://datatracker.ietf.org/doc/draft-loreto-httpbis-explicitly-auth-proxy/
Htmlized:       http://tools.ietf.org/html/draft-loreto-httpbis-explicitly-auth-proxy-00


comments, suggestions and feedback are welcome

br
Salvatore
Received on Monday, 5 May 2014 06:49:59 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 17:14:30 UTC