TokenBinding/Internet-Drafts
This is the working area for authoring the Token Binding IETF WG Internet-Drafts.
Issues
- 1
Use real examples in HTTPSTB
#101 opened by balfanz - 0
Cite RFC 2818
#100 opened by balfanz - 1
- 4
ramifications of longer EKMs
#95 opened by b---c - 1
Reconcile interactions between TBNEGO and TLS 1.3
#98 opened by nharper - 1
HTTPSTB: TODO remains wrt specifying sec-token-binding header field behavior
#88 opened by equalsJeffH - 2
- 0
out of sync reference in HTTPSTB to TBPROTO
#91 opened by b---c - 2
HTTPSTB: WGLC: web origin -> server or eTLD+1
#85 opened by equalsJeffH - 4
TBPROTO: TLS extension is not generic because the requirement is not generic
#65 opened by martinthomson - 2
HTTPSTB: Origin binding
#69 opened by martinthomson - 6
- 6
TBPROTO: provide some examples
#39 opened by b---c - 4
HTTPSTB: explain why TB IDs are combined in one message, rather than sent in separate headers
#26 opened by equalsJeffH - 0
HTTPSTB: Clarify that clients are free to provide referred token bindings if necessary
#79 opened by balfanz - 1
- 1
- 1
TBPROTO: add threat model discussion wrt Token Binding for 0-RTT connections ?
#74 opened by equalsJeffH - 1
TBPROTO: EKM language is flawed (was: Clarifying Token Binding behavior with renegotiation)
#75 opened by equalsJeffH - 3
TBPROTO: Terminating connections
#64 opened by martinthomson - 1
- 1
- 1
Are there two lengths for RSA?
#60 opened by martinthomson - 2
- 1
SHOULD on linkability
#63 opened by martinthomson - 1
TokenBindingID select definition
#66 opened by martinthomson - 3
Clients that limit cookies
#68 opened by martinthomson - 1
- 4
What is signed?
#67 opened by martinthomson - 3
Clarify the use of SHA256 for PKCS and PSS padding. Define salt length for PSS.
#70 opened by Andrei-Popov - 3
- 0
TBPROTO: add TB API guidance
#53 opened by equalsJeffH - 3
TBPROTO: add "TLS" to spec title
#50 opened by equalsJeffH - 2
HTTPSTB: add "TLS" to spec title?
#51 opened by equalsJeffH - 1
- 1
- 0
HTTPSTB: use 'misuse' rather than 'theft' regarding theats to bound security tokens
#45 opened by equalsJeffH - 3
- 1
HTTPSTB: more explicitly state that referred token binding only sent on the redirect request
#34 opened by b---c - 3
- 2
HTTPSTB: first-party sec token use cases
#43 opened by equalsJeffH - 1
- 1
HTTPSTB: RP does not give "permission" to the client for RP TB ID sharing with IDP, it's a signal
#28 opened by equalsJeffH - 0
- 1
- 2
HTTPSTB: make it URL-safe base64
#27 opened by equalsJeffH - 2
HTTPSTB: Add Acknowledgements
#36 opened by b---c - 3
- 2
TBPROTO: ecdsap256 clarifications
#38 opened by b---c - 2