Opened 6 years ago

Last modified 6 years ago

#1668 new enhancement

Channel-Bound Cookies Implementation in nginx

Reported by: aleroot@… Owned by:
Priority: minor Milestone:
Component: other Version: 1.15.x
Keywords: Cc:
uname -a: Linux ip-172-31-43-3 4.14.72-68.55.amzn1.x86_64 #1 SMP Fri Sep 28 21:14:54 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux
nginx -V: nginx/1.12.1


I've just had a look at this post about a Chrome security vulnerability that allows to steal cookies, and since a possible mitigation to this technique of stealing cookies would be having TLS Channel-Bound Cookies (, I was wondering if there is any plan to implement this feature into nginx.

It would be particularly useful in a reverse-proxy configuration, so that nginx could validate the cookie before sending to the backed app.

Change History (1)

comment:1 by Maxim Dounin, 6 years ago

It doesn't look like something nginx should / can do automatically, especially given

Unlike traditional TLS client authentication, Token Binding with channel-bound cookies keeps the TLS terminators in a datacenter out of the trusted computing base. The TLS terminator simply sends information about the client's public Token Binding key and the cookie downstream, where the application logic makes sure that those two match. Just like in traditional cookie-based systems, the TLS terminator can't mint valid cookies, and hence can't impersonate users at will.

in the linked document. Though support to pass Token Binding key to the application might make sense, once it is supported by OpenSSL and browsers. It doesn't seem to be widely supported though, and an experimental implementation was recently removed from Chrome, see and

Note: See TracTickets for help on using tickets.