Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for Expect-CT header #321

Closed
renchap opened this issue Apr 1, 2017 · 1 comment
Closed

Support for Expect-CT header #321

renchap opened this issue Apr 1, 2017 · 1 comment
Labels
waiting-on-browser-impl

Comments

@renchap
Copy link

renchap commented Apr 1, 2017

This new header informs the browser that it is expected for your certificate to appear in a Certificate Transparency log.

Detailed explanation here: https://scotthelme.co.uk/a-new-security-header-expect-ct/
Browser support: proposed in Chrome, planned for Firefox (https://www.chromestatus.com/feature/5677171733430272)
Specification: https://datatracker.ietf.org/doc/draft-stark-expect-ct/

Sample header: Expect-CT: enforce; max-age=30; report-uri https://scotthelme.report-uri.io/r/default/ct/enforce

If enforce then the site will not be loaded if the certificate cant be found in a CT log. If absent, then it will only be reported.
@jacobbednarz
Copy link
Contributor

I'm going to be playing with this in the near future so if no one picks it up, I'll take a look at adding support for it.

@jacobbednarz jacobbednarz mentioned this issue Apr 2, 2017
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
waiting-on-browser-impl
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@renchap @jacobbednarz @oreoshake