- From: Nico Williams <nico@cryptonector.com>
- Date: Mon, 11 Feb 2013 10:39:05 -0600
- To: Poul-Henning Kamp <phk@phk.freebsd.dk>
- Cc: Zhong Yu <zhong.j.yu@gmail.com>, Julian Reschke <julian.reschke@gmx.de>, "Martin J. Dürst" <duerst@it.aoyama.ac.jp>, James M Snell <jasnell@gmail.com>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
On Mon, Feb 11, 2013 at 10:07 AM, Poul-Henning Kamp <phk@phk.freebsd.dk> wrote: >>It's not just the disk space, but also the need to fetch it and the >>need to distribute it across related servers. Using the client to do >>this has some benefits. > > ... for the server, yes. > > And a lot of disadvantages for the client, such as not having your > context coming along to a different computer, privacy, bandwidth etc. Bandwidth costs can be addressed by having the server cache its state, using the client only to rebuild that state when it gets pushed out of the cache (e.g., due to client idle time). As for privacy, encrypted state cookies do not compromise privacy any more than random session IDs. Nico --
Received on Monday, 11 February 2013 16:39:31 UTC