Re: New Version Notification for draft-nottingham-http2-encryption-03.txt from Martin Thomson on 2014-05-21 (ietf-http-wg@w3.org from April to June 2014)

From: Martin Thomson <martin.thomson@gmail.com>
Date: Wed, 21 May 2014 05:45:48 -0700
To: William Chan (陈智昌) <willchan@chromium.org>
Cc: Martin Nilsson <nilsson@opera.com>, HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <CABkgnnVSm4V8wH0CR5C9_LaVMUbMneSR9LfHQGYsDatkKiBTJw@mail.gmail.com>

On 21 May 2014 01:01, William Chan (陈智昌) <willchan@chromium.org> wrote:

>
The answer is no.  And this is important.

We're not changing the origin of the resource.  That's paramount for web
security.

We're not changing any indicators.  So users won't see anything different
(aside from perhaps latency and error resilience characteristics, plus -
maybe - failures in the presence of a MitM attack).

Received on Wednesday, 21 May 2014 12:46:15 UTC