RFC 6797

E849481
IETF standard document Request for Comments

RFC 6797 is the Internet Engineering Task Force (IETF) document that defines the HTTP Strict Transport Security (HSTS) mechanism for enforcing secure HTTPS connections in web browsers.

Try in SPARQL Jump to: Statements Referenced by

Statements (46)

Predicate Object
instanceOf IETF standard document
Request for Comments
abbreviation HSTS specification
appliesTo HTTP NERFINISHED
HTTPS NERFINISHED
area Applications
associatedProtocol TLS NERFINISHED
Transport Layer Security NERFINISHED
category Standards Track
concerns secure web browsing
defines HTTP Strict Transport Security NERFINISHED
definesBehaviorFor servers advertising HSTS policies
user agents processing HSTS headers
definesDirective includeSubDomains
max-age
preload (non-normative reference)
definesHeaderFieldName Strict-Transport-Security
definesTerm HSTS Host
HSTS Policy
HSTS User Agent
focusesOn transport layer security for HTTP
web security
identifier RFC 6797 NERFINISHED
language English
obsoletedBy RFC 9110 NERFINISHED
RFC 9111 NERFINISHED
RFC 9112 NERFINISHED
RFC 9113 NERFINISHED
RFC 9114 NERFINISHED
obsoletes None
publishedBy Internet Engineering Task Force
surface form: IETF

Internet Engineering Task Force
relevantTo web browsers
web servers
securityGoal ensure persistent use of HTTPS
protect users from man-in-the-middle attacks
specifiesMechanism enforcing HTTPS connections in user agents
mitigating cookie hijacking over HTTP
preventing protocol downgrade attacks
standardizes HTTP Strict Transport Security header field
Strict-Transport-Security header NERFINISHED
status Proposed Standard
stream IETF Stream
title HTTP Strict Transport Security (HSTS) NERFINISHED
updatesSpecification HTTP security model
useCase enforcing secure HTTPS connections in web browsers

Referenced by (1)

Full triples — surface form annotated when it differs from this entity's canonical label.

HTTP Strict Transport Security specification standardizedIn RFC 6797