Re: Fwd: IAB Statement on Internet Confidentiality

--------
In message <20141117163914.GA14542@1wt.eu>, Willy Tarreau writes:

>That's exactly what I hate in the "tls everywhere" model : 

I think the major mistake in "tls everywhere" is that while the
OSI models protocols sucked, the basic idea of layering did not.

IMO the HTTP/2.0 spec shouldn't mention encryption or TLS with
a single word, making it robust for future changes in transport
or encryption technologies and policies.

By welding HTTP/2.0 to TLS (as hard as they can), the "tls everywhere"
crowd is effectively making it harder to replace TLS with something
better in due time.

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.

Received on Monday, 17 November 2014 17:07:04 UTC