Re: New Version Notification for draft-nottingham-http2-encryption-03.txt from Martin Thomson on 2014-05-21 (ietf-http-wg@w3.org from April to June 2014)

From: Martin Thomson <martin.thomson@gmail.com>
Date: Wed, 21 May 2014 05:39:54 -0700
To: Salvatore Loreto <salvatore.loreto@ericsson.com>
Cc: Mark Nottingham <mnot@mnot.net>, HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <CABkgnnUSJ+oWH2BqBbJpth5feZqQbsK7uYhE9F-vWaFx6PY4NA@mail.gmail.com>

On 20 May 2014 21:37, Salvatore Loreto <salvatore.loreto@ericsson.com> wrote:
> If I understand correctly the draft
> a browser asking for http:// URI (no matter if using http/1.1 or http2) may get back an answer with an alt-svc: h2
> in that case the will start a TLS connection (with a an ALPN value of h2) towards the server exactly as per any http2;
> the only difference will be that the browser will not check the certificate
> so there won't be any difference on the wire only a different behaviour within the browser
> isn't it?

No on-the-wire difference.  Assuming that the server uses an https
port that has a valid cert.

Received on Wednesday, 21 May 2014 12:40:21 UTC