W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2012

Re: Response to HTTP2 expresions of interest

From: Poul-Henning Kamp <phk@phk.freebsd.dk>
Date: Fri, 13 Jul 2012 18:02:05 +0000
To: Phillip Hallam-Baker <hallam@gmail.com>
cc: "ietf-http-wg@w3.org Group" <ietf-http-wg@w3.org>
Message-ID: <45399.1342202525@critter.freebsd.dk>
In message <CAMm+LwgQRnXsjvFkg42Tm3qZmY=M34-n1WM1W9V9oF-=udnBQQ@mail.gmail.com>
, Phillip Hallam-Baker writes:

>OK HTTP is not going to be acceptably secure for the types of
>application TLS is typically used today.

(Sorry, email misfire there).

I think you're wrong about that.

TLS already today leaks a lot of information to an eavesdropper, and
adding a convenient routing-envelope will not increase that leakage
if it is done correctly, but it will make it a lot easier for HTTP
server side to implement and handle protected traffic at high
traffic densities.

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.
Received on Friday, 13 July 2012 18:02:29 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 13 July 2012 18:02:35 GMT