Transport Layer Security Channel ID

This article has multiple issues. Please help improve it or discuss these issues on the talk page. (Learn how and when to remove these messages) This article relies excessively on references to primary sources. Please improve this article by adding secondary or tertiary sources. Find sources: "Transport Layer Security Channel ID" – news · newspapers · books · scholar · JSTOR (September 2013) (Learn how and when to remove this message) This article needs additional citations for verification. Please help improve this article by adding citations to reliable sources. Unsourced material may be challenged and removed. Find sources: "Transport Layer Security Channel ID" – news · newspapers · books · scholar · JSTOR (September 2013) (Learn how and when to remove this message) (Learn how and when to remove this message)

Transport Layer Security Channel ID (TLS Channel ID, previously known as Transport Layer Security – Origin Bound Certificates TLS-OBC)^[1] is a draft RFC proposal^[2][3] Transport Layer Security (TLS) extension that aims to increase TLS security by using certificates on both ends of the TLS connection. Notably, the client is permitted to dynamically create a local, self-signed certificate that provides additional security.

It can also protect users from the related domain cookie attack.^{[4][unreliable source?][5][unreliable source?]}

Token Binding is an evolution of the TLS Channel ID feature,^[6] and the IETF draft has Microsoft and Google as authors.^[7]

• TLS Channel ID IETF Draft
• TLS-OBC for System Administrators

This computer security article is a stub. You can help Wikipedia by expanding it.

• v
• t
• e