I-D Action: draft-ietf-httpbis-cookie-same-site-00.txt

internet-drafts@ietf.org Tue, 21 June 2016 01:02 UTC

MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-ietf-httpbis-cookie-same-site-00.txt
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <20160621010242.30206.73663.idtracker@ietfa.amsl.com>
Date: Mon, 20 Jun 2016 18:02:42 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/XN3B804ET630hsVKP_wW1zWjX-U>
Cc: ietf-http-wg@w3.org
Reply-To: internet-drafts@ietf.org

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Hypertext Transfer Protocol of the IETF.

        Title           : Same-Site Cookies
        Authors         : Mike West
                          Mark Goodwin
	Filename        : draft-ietf-httpbis-cookie-same-site-00.txt
	Pages           : 14
	Date            : 2016-06-20

Abstract:
   This document updates RFC6265 by defining a "SameSite" attribute
   which allows servers to assert that a cookie ought not to be sent
   along with cross-site requests.  This assertion allows user agents to
   mitigate the risk of cross-origin information leakage, and provides
   some protection against cross-site request forgery attacks.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-httpbis-cookie-same-site/

There's also a htmlized version available at:
https://tools.ietf.org/html/draft-ietf-httpbis-cookie-same-site-00


Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

I-D Action: draft-ietf-httpbis-cookie-same-site-0… internet-drafts