HTTPS URI:s

Hi all!

Does there exist any advice regarding whether HTTPS URI:s constitute
good identifiers (canonical URI:s)? Or is the HTTPS protocol an
implementation detail better led to via redirection, HTTP Upgrade or
similar?

And would it be fair to claim that non-HTTPS URI:s are "potentially
harmful" due to the risk of man-in-the-middle attacks? Or is (e.g.)
HTTPS not enough by itself (since trusting a certificate is still up
to the carefulness of clients), so it would be moot to promote it by
itself in Linked Data scenarios? I suppose that using HTTPS for each
URI leads to higher demands on the publisher, but I'd prefer more
solid arguments for/against recommending it..

Best regards,
Niklas

Received on Tuesday, 18 May 2010 10:29:21 UTC