[Webkit-unassigned] [Bug 102478] New: QtWebkit should support HSTS http strict transport security

Fri Nov 16 03:50:20 PST 2012

https://bugs.webkit.org/show_bug.cgi?id=102478

           Summary: QtWebkit should support HSTS http strict transport
                    security
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: All
        OS/Version: All
            Status: UNCONFIRMED
          Severity: Enhancement
          Priority: P2
         Component: WebKit Qt
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: rich at kde.org

QtWebkit should support the HSTS IETF draft in order to enhance the security of users. This means that a site can indicate that it should only be accessed via HTTPS using a response header. Subsequent requests should then be automatically switched to https even if the user types the url into the browser.

See http://datatracker.ietf.org/doc/draft-ietf-websec-strict-transport-sec/?include_text=1 for details of the specification.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.