W3C home > Mailing lists > Public > uri@w3.org > March 2012

Re: http+aes

From: Poul-Henning Kamp <phk@phk.freebsd.dk>
Date: Mon, 05 Mar 2012 10:29:01 +0000
To: Julian Reschke <julian.reschke@gmx.de>
cc: URI <uri@w3.org>, HTTP Working Group <ietf-http-wg@w3.org>
Message-ID: <60080.1330943341@critter.freebsd.dk> 
In message <4F549392.60802@gmx.de>, Julian Reschke writes:

>FYI:
>
>	http://dev.w3.org/html5/spec/Overview.html#http-aes-scheme

So you encrypt the response body with the password clearly visible in the
request, to gain privacy ?

Please explain what I'm overlooking here...


-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.
Received on Wednesday, 7 March 2012 14:22:32 UTC

This archive was generated by hypermail 2.4.0 : Sunday, 10 October 2021 22:17:55 UTC