TLS trust expressions are a TLS extension to allow clients to efficiently communicate trusted certification authorities to servers. Servers can then deploy multiple certificates and transparently select between them. This enables a multi-certificate deployment model, for a more agile and flexible PKI that can better meet security requirements.
Today, TLS servers typically provision a single certificate for all supported clients, because clients do not communicate which CAs are trusted. In this model, the single certificate must simultaneously meet requirements for all relying parties. This constraint imposes costs on the ecosystem as PKIs evolve over time. The older the relying party, the more its requirements may have diverged from newer ones, forcing subscribers to choose between compatibility with new clients, or breaking old clients. This translates to analogous costs for CAs and relying parties: * For a new CA to be usable by subscribers, it must be trusted by all relying parties. This is particularly challenging for older, unupdatable relying parties. Existing CAs face similar challenges when rotating or deploying new keys. * When a relying party must update its policies to meet new security requirements, it must choose between compromising on user security or imposing a significant burden on subscribers that still support older relying parties. Trust expressions remove this constraint, by allowing servers to deploy multiple certificates and transparently select between them.
None
Does this intent deprecate or change behavior of existing APIs, such that it has potentially high risk for Android WebView-based applications?
None
None
https://github.com/web-platform-tests/wpt/issues/20159
No milestones specified