The concept of channel binding allows applications to establish that
the two end-points of a secure channel at one network layer are the
same as at a higher layer by binding authentication at the higher
layer to the channel at the lower layer. This allows applications to
delegate session protection to lower layers, which has various
This document discusses and formalizes the concept of channel binding
to secure channels.
Working Group Summary
This document is not the product of any working group, but has been
reviewed on the saag list. The concept has become important to many
working groups in the security area including kitten and btns.
This concept is also important to groups outside the security area.
Sam Hartman reviewed this document for the IESG.