- From: Julian Reschke <julian.reschke@gmx.de>
- Date: Mon, 22 Jun 2015 14:40:36 +0200
- To: John Mattsson <john.mattsson@ericsson.com>
- CC: HTTP Working Group <ietf-http-wg@w3.org>
On 2015-06-21 23:11, John Mattsson wrote: > Some quick comments: > > - Several: “contans” -> “contains” > > - “encrytion” -> “encryption” > > - “encryted” -> “encrypted” > > - When the key parameter is used, https high enough security should be > mandated for the first request. I suggest something like: > “The Encryption-Key Header MUST only be used with https fulfilling at > least the requirements in [RFC7540] Section 9.2”. > ... ...but which of these two specs does this belong into?
Received on Monday, 22 June 2015 12:41:13 UTC