Changes

.dev (view source)

Revision as of 17:48, 26 April 2018

695 bytes added , 5 years ago

added HSTS preload paragraph here too

Line 29: Line 29:

==Name Collision Issues==

In October 2013 [[ICANN]] released their final assessment and mitigation plan for the [[Name Collision]] issue that was facing the New gTLD program. On 18 November 2013, ICANN announced the applied-for strings that were eligible for an alternative path towards delegation that would allow applicants to proceed without waiting for further mitigation research and plans to be published. 25 strings, including .dev, were not eligible for the alternative path, and will have to wait for more plans to be published before continuing towards delegation.<ref>[https://newgtlds.icann.org/en/announcements-and-media/announcement-2-17nov13-en Announcement 17 Nov 13, ICANN.org] Retrieved 20 Feb 2014</ref>

+

== mandatory HTTPS ==

+

.Dev and .app are the first TLDs to make HTTPS mandatory on all websites in the zone by enforcing [https://en.wikipedia.org/wiki/HTTP_Strict_Transport_Security HSTS] compliance. Google maintains a list known as the [https://hstspreload.org/ HSTS Preload List] which is honored by Chrome and most other modern browsers. Anyone can submit their site to the list, which tells browsers: “insecure HTTP is disabled for this domain”. Non-HTTPS-protected sites on the list therefore not load at all, rather than the typical fallback behavior of displaying an insecure site. The entire .app zone has [https://hstspreload.org/?domain=app been added to the HSTS Preload List.]

==References==

Ross

15

edits

Changes

.dev (view source)

Revision as of 17:48, 26 April 2018

Navigation menu

Search