A secure web proxy is a web proxy that the browser communicates with via SSL, as opposed to clear text. In insecure public networks, such as airports or cafes, browsing over HTTP may leave the user vulnerable to cookie stealing, session hijacking or worse. A secure web proxy can add a significant layer of defense in these cases.
To make use of a secure web proxy, Chrome needs to be configured to use a proxy auto-config file which specify the
This pac file can be specified by starting Chrome with the
Alternatively, a secure web proxy can be specified by using the
Since the communication between Chrome and the proxy uses SSL, next protocol negotiation will be used. If the servers supports SPDY, then the proxy will act as a SPDY Proxy.
While all the details of running a secure web proxy are out of scope for this document, here are two suggestions. If you are already running a web proxy, you use stunnel to convert it into a secure web proxy. For example:
This would cause stunnel to listen for SSL connections on port 443 and send any HTTP requests to the web proxy running on port 8080.
Alternatively, the popular proxy program Squid appears to offer support for running as a secure web proxy via the https_port directive.