Protocol Action: 'Cookies: HTTP State Management Mechanism' to Proposed Standard (draft-ietf-httpbis-rfc6265bis-22.txt)
The IESG <iesg-secretary@ietf.org> Tue, 02 December 2025 17:34 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: ietf-announce@ietf.org
Delivered-To: ietf-announce@mail2.ietf.org
Received: from [10.244.8.105] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id A0A8494063D9; Tue, 2 Dec 2025 09:34:02 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
Subject: Protocol Action: 'Cookies: HTTP State Management Mechanism' to Proposed Standard (draft-ietf-httpbis-rfc6265bis-22.txt)
X-Test-IDTracker: no
X-IETF-IDTracker: 12.54.0
Auto-Submitted: auto-generated
Precedence: bulk
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <176469684260.3841404.2572905661326209219@dt-datatracker-5bd94c585b-wk4l4>
Date: Tue, 02 Dec 2025 09:34:02 -0800
Message-ID-Hash: RVXPYG75PVO3ELSEZF5ZXLUXLXWMLZZ5
X-Message-ID-Hash: RVXPYG75PVO3ELSEZF5ZXLUXLXWMLZZ5
X-MailFrom: iesg-secretary@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-ietf-announce.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: The IESG <iesg@ietf.org>, draft-ietf-httpbis-rfc6265bis@ietf.org, httpbis-chairs@ietf.org, ietf-http-wg@w3.org, mnot@mnot.net, rfc-editor@rfc-editor.org
X-Mailman-Version: 3.3.9rc6
List-Id: "IETF announcement list. No discussions." <ietf-announce.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/ietf-announce/tEjnrrb7ity30rPbPWblhFZCP3o>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ietf-announce>
List-Help: <mailto:ietf-announce-request@ietf.org?subject=help>
List-Owner: <mailto:ietf-announce-owner@ietf.org>
List-Post: <mailto:ietf-announce@ietf.org>
List-Subscribe: <mailto:ietf-announce-join@ietf.org>
List-Unsubscribe: <mailto:ietf-announce-leave@ietf.org>
The IESG has approved the following document: - 'Cookies: HTTP State Management Mechanism' (draft-ietf-httpbis-rfc6265bis-22.txt) as Proposed Standard This document is the product of the HTTP Working Group. The IESG contact persons are Gorry Fairhurst and Mike Bishop. A URL of this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-httpbis-rfc6265bis/ Technical Summary This document defines the HTTP Cookie and Set-Cookie header fields. These header fields can be used by HTTP servers to store state (called cookies) at HTTP user agents, letting the servers maintain a stateful session over the mostly stateless HTTP protocol. Although cookies have many historical infelicities that degrade their security and privacy, the Cookie and Set-Cookie header fields are widely used on the Internet. This document obsoletes RFC 6265. Working Group Summary The working group (WG) consensus represent broad agreement: we had broad participation, especially from implementers. There was no controversy about particular points or decisions where the consensus was particularly rough. We used a process where major changes required a separate draft to be adopted and achieve consensus before we incorporated them. Document Quality There are a few existing implementation of the specification. There has been participation from members of the WHATWG, which is the most relevant body. Personnel The Document Shepherd for this document is Mark Nottingham. The Responsible Area Director is Francesca Palombini.