Re: Use of TLS Features in HTTP2

which means the other way 'round:

if a client (user agent) DOES NOT support TLS 1.2, the server MUST use 
HTTP/1.1 ...

On 26.12.2014 15:15, FERNANDO PASCUAL BLANCO wrote:
> Xinpeng,
>
> Option 2 is the correct one.
>
> Cheers,
> Fer
>
> Sent from my iPhone
>
> On 24 Dec 2014, at 13:28, WeiXinpeng <weixp163@163.com 
> <mailto:weixp163@163.com>> wrote:
>
>> Hi all,
>> When I review HTTP2 protocol draft, I find that for the description 
>> of "Use of TLS Feature" in sectiion 9.2, there is some change from 
>> v15 to v16 as following:
>>   In v15 it says:
>> "Implementations of HTTP/2 MUST supportTLS 1.2 [TLS12 
>> <http://tools.ietf.org/html/draft-ietf-httpbis-http2-15#ref-TLS12>] 
>> for HTTP/2
>> over TLS. "
>> But in v16 it says:
>> "Implementations of HTTP/2 MUST useTLS [TLS12 
>> <http://tools.ietf.org/html/draft-ietf-httpbis-http2-16#ref-TLS12>] 
>> version 1.2 or higher
>> for HTTP/2 over TLS." (v16)
>> Maybe I have missed some discussion in the list about this, but could 
>> you someone tell me the reason why change "support" to "use"?
>> For the description in v16, how should I interpret the description:
>> Option 1: HTTP/2 MUST use TLS, and the versioin of TLS MUST be 1.2 or 
>> higher.
>> Option 2: If people want to use HTTP/2 over TLS, then the version of 
>> TLS MUST be 1.2 or higher.
>> Should I take option 1 or option 2?
>>
>> it will be appreciated if some people can give some clarifications 
>> about what I mentioned here. Thanks!
>>
>> Regards,
>> -Xinpeng
>>

Received on Saturday, 27 December 2014 08:34:17 UTC