I-D Action: draft-ietf-httpbis-cookie-same-site-00.txt

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Hypertext Transfer Protocol of the IETF.

        Title           : Same-Site Cookies
        Authors         : Mike West
                          Mark Goodwin
 Filename        : draft-ietf-httpbis-cookie-same-site-00.txt
 Pages           : 14
 Date            : 2016-06-20

   This document updates RFC6265 by defining a "SameSite" attribute
   which allows servers to assert that a cookie ought not to be sent
   along with cross-site requests.  This assertion allows user agents to
   mitigate the risk of cross-origin information leakage, and provides
   some protection against cross-site request forgery attacks.

The IETF datatracker status page for this draft is:

There's also a htmlized version available at:

Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:

Received on Tuesday, 21 June 2016 01:03:14 UTC