Clik here to view.
of TLS/SSL Server Identity Checking
[ Update (23-Apr-2011): This spec was published as RFC6125 on 30-Mar-2011. See also this more recent post. ] Aside from HSTS, which I’ve written about here earlier, I’ve also been working on a...
View ArticleClik here to view.
TLS/SSL Server Identity Check will be RFC6125
As I’ve previously mentioned, I’ve been working on a specification for “TLS/SSL Server Identity Checking” along with Peter Saint-Andre. We’ve now heard back from the RFC Editor, and we’re in the...
View ArticleRFC6125 “TLS/SSL Server Identity Check” is published
RFC6125 “TLS/SSL Server Identity Check” (aka “TLS Server ID Check“, “SSL Server ID Check“, “TLS/SSL Server ID Check“, “SSL Server ID“) is now available: Representation and Verification of Domain-Based...
View ArticleClik here to view.
RFC6797 “HTTP Strict Transport Security (HSTS)” is published
RFC6797 “HTTP Strict Transport Security (HSTS)” is now available. It’s been a long haul to get to this point, and I thank all the folks who have contributed along the way, i.e. Collin Jackson and Adam...
View Article