W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2013

Re: How HTTP 2.0 mandatory security will actually reduce my personal security

From: Julian Reschke <julian.reschke@gmx.de>
Date: Fri, 15 Nov 2013 16:59:56 +0100
Message-ID: <528644FC.5080704@gmx.de>
To: Michael Sweet <msweet@apple.com>, Roberto Peon <grmocg@gmail.com>
CC: Bruce Perens <bruce@perens.com>, HTTP Working Group <ietf-http-wg@w3.org>
On 2013-11-15 16:48, Michael Sweet wrote:
> Roberto,
>
> On Nov 15, 2013, at 3:00 AM, Roberto Peon <grmocg@gmail.com
> <mailto:grmocg@gmail.com>> wrote:
>> There is explicitly an option for unencrypted HTTP/2, but not over the
>> "open" internet, since that is known/provent to be unreliable.
>
> I have a real problem with trying to spec “don’t do this over the open
> Internet”.

Indeed. In particular as what's "known" to be unreliable today might 
become more reliable in the future (given the right incentives).

> ...

Best regards, Julian
Received on Friday, 15 November 2013 16:00:38 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 1 March 2016 11:11:19 UTC