Multi-Context TLS (mcTLS)
mcTLS is a secure communication protocol that extends TLS to allow endpoints to
incorporate trusted middleboxes into secure sessions.
- No Transparent Middleboxes: Both endpoints explicitly approve each middlebox.
- Least Privilege: Middleboxes see only what they need to do their jobs.
- Middlebox Authentication: Client and server can verify the identity of each middlebox.
- No Custom Root Certificates: Overall security is not undermined by requiring users to install root certificates.
Check out our SIGCOMM 2015 paper