Skip to main content

Cookies Having Independent Partitioned State specification

Document Type Expired Internet-Draft (individual)
Expired & archived
Author Dylan J Cutler
Last updated 2023-05-14 (Latest revision 2022-11-10)
RFC stream (None)
Intended RFC status (None)
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:


This document updates RFC6265bis, defining a new attribute, Partitioned, which restricts the contexts in which a cookie is available to only those whose top-level document is same-site with the top-level document that initiated the request that created the cookie. These cookies are referred to as "partitioned cookies" and allow embedded sites which are cross-site with the top-level frame to have access to HTTP state which cannot be used for tracking across multiple top-level sites.


Dylan J Cutler

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)