| draft-ietf-httpbis-expect-ct-03.txt | draft-ietf-httpbis-expect-ct-latest.txt | |||
|---|---|---|---|---|
| HTTP Working Group E. Stark | HTTP Working Group E. Stark | |||
| Internet-Draft Google | Internet-Draft Google | |||
| Intended status: Experimental February 26, 2018 | Intended status: Experimental February 26, 2018 | |||
| Expires: August 30, 2018 | Expires: August 30, 2018 | |||
| Expect-CT Extension for HTTP | Expect-CT Extension for HTTP | |||
| draft-ietf-httpbis-expect-ct-03 | draft-ietf-httpbis-expect-ct-latest | |||
| Abstract | Abstract | |||
| This document defines a new HTTP header, named Expect-CT, that allows | This document defines a new HTTP header, named Expect-CT, that allows | |||
| web host operators to instruct user agents to expect valid Signed | web host operators to instruct user agents to expect valid Signed | |||
| Certificate Timestamps (SCTs) to be served on connections to these | Certificate Timestamps (SCTs) to be served on connections to these | |||
| hosts. When configured in enforcement mode, user agents (UAs) will | hosts. When configured in enforcement mode, user agents (UAs) will | |||
| remember that hosts expect SCTs and will refuse connections that do | remember that hosts expect SCTs and will refuse connections that do | |||
| not conform to the UA's Certificate Transparency policy. When | not conform to the UA's Certificate Transparency policy. When | |||
| configured in report-only mode, UAs will report the lack of valid | configured in report-only mode, UAs will report the lack of valid | |||
| End of changes. 1 change blocks. | ||||
| 1 lines changed or deleted | 1 lines changed or added | |||
This html diff was produced by rfcdiff 1.44jr. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||