W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2015

Re: Call for Adoption: Encrypted Content Encoding

From: Kyle Rose <krose@krose.org>
Date: Tue, 1 Dec 2015 12:01:15 -0500
Message-ID: <CAJU8_nUscRFhwEyhgdapS0ro_8mqCdKuFnQj365JUbhLwzOfAw@mail.gmail.com>
To: Roland Zink <roland@zinks.de>
Cc: HTTP Working Group <ietf-http-wg@w3.org>, Amos Jeffries <squid3@treenet.co.nz>
> One reason is a mistyping. Actually it should be HTTPS instead of TLS. HTTPS
> can establish an end-to-end TLS connection through proxies using CONNECT
> requests over several TCP connections. In your definition this doesn't make
> a difference I guess.

No, that seems to be a legitimate use of "end-to-end", which IMO just
adds further credence to the viewpoint that the two terms are actually
orthogonal to topology. Regardless of the other connotations it might
evoke, "end-to-end security" is probably best defined as "only the
sender and authorized users of the data have access to the cleartext",
whereas "point-to-point security" allows for such access to
intermediate nodes.

Received on Tuesday, 1 December 2015 17:01:43 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 1 March 2016 11:11:40 UTC