HTTP Strict Transport Security (HSTS) - Chrome Platform Status

Feature: HTTP Strict Transport Security (HSTS)

Header to inform the browser to always request a given domain over SSL, reducing MITM attack surface area.

Specification

Established standard

Status in Chromium

Blink components: Blink

Enabled by default in:

Chrome for desktop release 4

Consensus & Standardization

After a feature ships in Chrome, the values listed here are not guaranteed to be up to date.

Firefox: Shipped/Shipping
Edge: Shipped/Shipping
Safari: Shipped/Shipping
Web Developers: Positive

Owner

mkwst@chromium.org

Last updated on 2020-11-09