Re: I-D Action: draft-ietf-httpbis-expect-ct-01.txt from Emily Stark on 2017-05-25 (ietf-http-wg@w3.org from April to June 2017)

From: Emily Stark <estark@google.com>
Date: Wed, 24 May 2017 20:46:33 -0700
To: httpbis <ietf-http-wg@w3.org>
Message-ID: <CAPP_2SZuLMiU4x37oXBTXFN4v3TafCuj0kNKNmhcuo1NuT93bQ@mail.gmail.com>

Changes since -00:

* Editorial changes
* Change Content-Type header of reports to 'application/expect-ct-report+
json'
* Update header field syntax to match convention (issue #327)
* Reference RFC 6962-bis instead of RFC 6962

On Wed, May 24, 2017 at 2:56 PM, <internet-drafts@ietf.org> wrote:

>
> A New Internet-Draft is available from the on-line Internet-Drafts
> directories.
> This draft is a work item of the Hypertext Transfer Protocol of the IETF.
>
>         Title           : Expect-CT Extension for HTTP
>         Author          : Emily Stark
>         Filename        : draft-ietf-httpbis-expect-ct-01.txt
>         Pages           : 17
>         Date            : 2017-05-24
>
> Abstract:
>    This document defines a new HTTP header, named Expect-CT, that allows
>    web host operators to instruct user agents to expect valid Signed
>    Certificate Timestamps (SCTs) to be served on connections to these
>    hosts.  When configured in enforcement mode, user agents (UAs) will
>    remember that hosts expect SCTs and will refuse connections that do
>    not conform to the UA's Certificate Transparency policy.  When
>    configured in report-only mode, UAs will report the lack of valid
>    SCTs to a URI configured by the host, but will allow the connection.
>    By turning on Expect-CT, web host operators can discover
>    misconfigurations in their Certificate Transparency deployments and
>    ensure that misissued certificates accepted by UAs are discoverable
>    in Certificate Transparency logs.
>
>
> The IETF datatracker status page for this draft is:
> https://datatracker.ietf.org/doc/draft-ietf-httpbis-expect-ct/
>
> There are also htmlized versions available at:
> https://tools.ietf.org/html/draft-ietf-httpbis-expect-ct-01
> https://datatracker.ietf.org/doc/html/draft-ietf-httpbis-expect-ct-01
>
> A diff from the previous version is available at:
> https://www.ietf.org/rfcdiff?url2=draft-ietf-httpbis-expect-ct-01
>
>
> Please note that it may take a couple of minutes from the time of
> submission
> until the htmlized version and diff are available at tools.ietf.org.
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
>
>

Received on Thursday, 25 May 2017 03:47:27 UTC