W3C home > Mailing lists > Public > ietf-http-wg@w3.org > October to December 2015

Re: SSL/TLS everywhere fail

From: Poul-Henning Kamp <phk@phk.freebsd.dk>
Date: Mon, 07 Dec 2015 11:06:08 +0000
To: Maxthon Chan <xcvista@me.com>
cc: Cory Benfield <cory@lukasa.co.uk>, Jacob Appelbaum <jacob@appelbaum.net>, Amos Jeffries <squid3@treenet.co.nz>, ietf-http-wg@w3.org
Message-ID: <68155.1449486368@critter.freebsd.dk>
In message <DBC4DC03-C104-49CA-B1F2-3ECC5F845F31@me.com>, Maxthon Chan writes:

>The point (2) comes with the intention of sparking a cat-and-mouse game. 

I'd want it to be a mechanism which does not require a browser.

API traffic and IoS would be major markets for HTTP with Integrity.

Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.
Received on Monday, 7 December 2015 11:06:31 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 1 March 2016 11:11:40 UTC