2016-11-23, rev -06: This document specifies a Transport Layer Security (TLS) [RFC5246] extension for the negotiation of Token Binding protocol [I-D.ietf-tokbind-protocol] version and key parameters.
"Transport Layer Security (TLS) Extension for Token Binding Protocol Negotiation" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley
↧
↧
"Token Binding over HTTP" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Jeff Hodges
2016-11-23, rev -07: This document describes a collection of mechanisms that allow HTTP servers to cryptographically bind authentication tokens (such as cookies and OAuth tokens) to TLS [RFC5246] connections.
↧
"The Token Binding Protocol Version 1.0" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Jeff Hodges
2016-11-23, rev -11: This document specifies Version 1.0 of the Token Binding protocol. The Token Binding protocol allows client/server applications to create long-lived, uniquely identifiable TLS [RFC5246] bindings spanning multiple TLS sessions and connections. Applications are then enabled to cryptographically bind security tokens to the TLS layer, preventing token export and replay attacks. To protect privacy, the Token Binding identifiers are only transmitted encrypted and can be reset by the user at any time.
↧
"Transport Layer Security (TLS) Extension for Token Binding Protocol Negotiation" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley
2017-02-16, rev -07: This document specifies a Transport Layer Security (TLS) [RFC5246] extension for the negotiation of Token Binding protocol [I-D.ietf-tokbind-protocol] version and key parameters.
↧
"Token Binding over HTTP" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Jeff Hodges
2017-02-16, rev -08: This document describes a collection of mechanisms that allow HTTP servers to cryptographically bind security tokens (such as cookies and OAuth tokens) to TLS [RFC5246] connections.
↧
↧
"The Token Binding Protocol Version 1.0" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Jeff Hodges
2017-02-16, rev -13: This document specifies Version 1.0 of the Token Binding protocol. The Token Binding protocol allows client/server applications to create long-lived, uniquely identifiable TLS [RFC5246] bindings spanning multiple TLS sessions and connections. Applications are then enabled to cryptographically bind security tokens to the TLS layer, preventing token export and replay attacks. To protect privacy, the Token Binding identifiers are only conveyed over TLS and can be reset by the user at any time.
↧
"Token Binding for 0-RTT TLS 1.3 Connections" - Nick Harper
2017-03-13, rev -01: This document describes how Token Binding can be used in the 0-RTT data of a TLS 1.3 connection. This involves updating how Token Binding negotiation works and adding a mechanism for indicating whether a server prevents replay. A TokenBindingMessage sent in 0-RTT data has different security properties than one sent after the TLS handshake has finished, which this document also describes.
↧
"Transport Layer Security (TLS) Extension for Token Binding Protocol Negotiation" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley
2017-04-21, rev -08: This document specifies a Transport Layer Security (TLS) [RFC5246] extension for the negotiation of Token Binding protocol [I-D.ietf-tokbind-protocol] version and key parameters.
↧
"Token Binding over HTTP" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Jeff Hodges
2017-04-21, rev -09: This document describes a collection of mechanisms that allow HTTP servers to cryptographically bind security tokens (such as cookies and OAuth tokens) to TLS connections.
↧
↧
"The Token Binding Protocol Version 1.0" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Jeff Hodges
2017-04-21, rev -14: This document specifies Version 1.0 of the Token Binding protocol. The Token Binding protocol allows client/server applications to create long-lived, uniquely identifiable TLS [RFC5246] bindings spanning multiple TLS sessions and connections. Applications are then enabled to cryptographically bind security tokens to the TLS layer, preventing token export and replay attacks. To protect privacy, the Token Binding identifiers are only conveyed over TLS and can be reset by the user at any time.
↧
"Token Binding for 0-RTT TLS 1.3 Connections" - Nick Harper
2017-06-28, rev -02: This document describes how Token Binding can be used in the 0-RTT data of a TLS 1.3 connection. This involves a new TLS extension to negotiate and indicate the use of Token Binding in 0-RTT data. A TokenBindingMessage sent in 0-RTT data has different security properties than one sent after the TLS handshake has finished, which this document also describes.
↧
"Transport Layer Security (TLS) Extension for Token Binding Protocol Negotiation" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley
2017-07-20, rev -09: This document specifies a Transport Layer Security (TLS) extension for the negotiation of Token Binding protocol version and key parameters.
↧
"The Token Binding Protocol Version 1.0" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Jeff Hodges
2017-07-20, rev -15: This document specifies Version 1.0 of the Token Binding protocol. The Token Binding protocol allows client/server applications to create long-lived, uniquely identifiable TLS bindings spanning multiple TLS sessions and connections. Applications are then enabled to cryptographically bind security tokens to the TLS layer, preventing token export and replay attacks. To protect privacy, the Token Binding identifiers are only conveyed over TLS and can be reset by the user at any time.
↧
↧
"Token Binding over HTTP" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Nick Harper, Jeff Hodges
2017-07-21, rev -10: This document describes a collection of mechanisms that allow HTTP servers to cryptographically bind security tokens (such as cookies and OAuth tokens) to TLS connections.
↧
"HTTPS Token Binding with TLS Terminating Reverse Proxies" - Brian Campbell
2017-08-02, rev -01: This document defines common HTTP header fields that enable a TLS terminating reverse proxy to convey information about the validated Token Binding Message sent by the client to a backend server, which enables that backend server to bind, or verify the binding of, cookies and other security tokens to the client's Token Binding key.
↧
"Transport Layer Security (TLS) Extension for Token Binding Protocol Negotiation" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley
2017-10-15, rev -10: This document specifies a Transport Layer Security (TLS) extension for the negotiation of Token Binding protocol version and key parameters.
↧
"The Token Binding Protocol Version 1.0" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Jeff Hodges
2017-10-15, rev -16: This document specifies Version 1.0 of the Token Binding protocol. The Token Binding protocol allows client/server applications to create long-lived, uniquely identifiable TLS bindings spanning multiple TLS sessions and connections. Applications are then enabled to cryptographically bind security tokens to the TLS layer, preventing token export and replay attacks. To protect privacy, the Token Binding identifiers are only conveyed over TLS and can be reset by the user at any time.
↧
↧
"Token Binding over HTTP" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Nick Harper, Jeff Hodges
2017-11-15, rev -11: This document describes a collection of mechanisms that allow HTTP servers to cryptographically bind security tokens (such as cookies and OAuth tokens) to TLS connections.
↧
"Token Binding for Transport Layer Security (TLS) Version 1.3 Connections" - Nick Harper
2017-11-21, rev -00: Negotiation of the Token Binding protocol is only defined for Transport Layer Security (TLS) versions 1.2 and earlier. Token Binding users may wish to use it with TLS 1.3; this document defines a backwards compatible way to negotiate Token Binding on TLS 1.3 connections.
↧
"Token Binding over HTTP" - Andrey Popov, Magnus Nystrom, Dirk Balfanz, Adam Langley, Nick Harper, Jeff Hodges
2018-01-07, rev -12: This document describes a collection of mechanisms that allow HTTP servers to cryptographically bind security tokens (such as cookies and OAuth tokens) to TLS connections.
↧
More Pages to Explore .....
