W3C home > Mailing lists > Public > ietf-http-wg@w3.org > July to September 2013

Re: HTTPS 2.0 without TLS extension?

From: Amos Jeffries <squid3@treenet.co.nz>
Date: Tue, 23 Jul 2013 15:18:08 +1200
Message-ID: <51EDF5F0.2050002@treenet.co.nz>
To: ietf-http-wg@w3.org
On 23/07/2013 4:01 a.m., Mike Belshe wrote:
> It should be available quite easily through OpenSSL and NSS long 
> before http/2 ships.

Sigh. Missed the news yesterday? come relatively large number of 
corporates are still using Java installations installed since 1994.

We are expecting HTTP/2 to start "shipping" preliminary implementations 
in the next year or two right? You can expect a minimum 5 years upgrade 
window (sorry terrible pun) if the libraries are ready and published 
*today*. Depending on the library like this just won't cut enough slack.

> The structured integration with the SSL handshake is a much cleaner 
> protocol.

Sure, and the sane people will use it. Not everybody is sane though.

Eliminating viable options for moving to HTTP/2 does not seem like a 
reasonable path to be taking this early in the process.

Received on Tuesday, 23 July 2013 03:18:38 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 17:14:14 UTC