- From: Martin Thomson <martin.thomson@gmail.com>
- Date: Mon, 15 Dec 2014 16:44:37 -0800
- To: HTTP Working Group <ietf-http-wg@w3.org>
I've just pushed out a small revision to this based on the discussion we had at the last meeting. The changes are smaller than they might appear. - Prohibit the use of this over HTTP/1.1 - Tighten the language around the interaction with alternative services - Make the pinning on the "HTTP-TLS" header field a SHOULD, not a MUST I think that we still need: - A better header field name - Some better language in alt-svc regarding its interaction with this doc; that is, to avoid the case where an implementation of alt-svc that is ignorant of this doc assumes that the server will be authenticated (which is a non-fatal, but probably annoying, failure mode)
Received on Tuesday, 16 December 2014 00:45:10 UTC