- From: <internet-drafts@ietf.org>
- Date: Sat, 19 May 2018 16:41:36 -0700
- To: <i-d-announce@ietf.org>
- Cc: ietf-http-wg@w3.org
A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Hypertext Transfer Protocol WG of the IETF.
Title : Expect-CT Extension for HTTP
Author : Emily Stark
Filename : draft-ietf-httpbis-expect-ct-04.txt
Pages : 19
Date : 2018-05-19
Abstract:
This document defines a new HTTP header field, named Expect-CT, that
allows web host operators to instruct user agents to expect valid
Signed Certificate Timestamps (SCTs) to be served on connections to
these hosts. When configured in enforcement mode, user agents (UAs)
will remember that hosts expect SCTs and will refuse connections that
do not conform to the UA's Certificate Transparency policy. When
configured in report-only mode, UAs will report the lack of valid
SCTs to a URI configured by the host, but will allow the connection.
By turning on Expect-CT, web host operators can discover
misconfigurations in their Certificate Transparency deployments and
ensure that misissued certificates accepted by UAs are discoverable
in Certificate Transparency logs.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-httpbis-expect-ct/
There are also htmlized versions available at:
https://tools.ietf.org/html/draft-ietf-httpbis-expect-ct-04
https://datatracker.ietf.org/doc/html/draft-ietf-httpbis-expect-ct-04
A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-httpbis-expect-ct-04
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
Received on Saturday, 19 May 2018 23:41:59 UTC