Contact emails [email protected]
Explainer https://github.com/explainers-by-googlers/security-info-web-request Specification No information provided Summary This proposal introduces a WebRequest.SecurityInfo API for ControlledFrame. It allows a web app to intercept an HTTPS, WSS or WebTransport request to a server, retrieve the server's certificate fingerprint (as verified by the browser), and then use that fingerprint to manually verify the certificate of a separate raw TCP/UDP connection to the same server. This provides a simple way for the app to confirm it's talking to the correct server. Blink component Blink Web Feature ID Missing feature Motivation Web apps sometimes need to establish secure raw TCP/UDP connections (eg, via Direct Sockets) for custom protocols, often to support legacy servers that cannot be updated to modern alternatives like WebTransport. Unlike standard HTTPS, these raw sockets don't have a built-in mechanism to verify the server's TLS certificate against a trusted root store. This proposal introduces a WebRequest SecurityInfo API for ControlledFrame. It allows a web app to intercept an HTTPS, WSS or WebTransport request to a server, retrieve the server's certificate fingerprint (as verified by the browser), and then use that fingerprint to manually verify the certificate of a separate raw TCP/UDP connection to the same server. This provides a simple way for the app to confirm it's talking to the correct server. Initial public proposal https://github.com/WICG/proposals/issues/245 Requires code in //chrome? True Tracking bug https://g-issues.chromium.org/issues/462114142 Launch bug https://launch.corp.google.com/launch/4436388 Estimated milestones No milestones specified Link to entry on the Chrome Platform Status https://chromestatus.com/feature/5076692209106944?gate=5114761792585728 This intent message was generated by Chrome Platform Status. -- You received this message because you are subscribed to the Google Groups "blink-dev" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/691df8c4.050a0220.2a427a.06b0.GAE%40google.com.
