Re: Draft finding - "Transitioning the Web to HTTPS"

On Tue, Jan 13, 2015 at 8:26 AM, Noah Mendelsohn <> wrote:

> [1]

"""This takes a lot of server CPU cycles, making server farms more
expensive. It would slow the user's computer. It would effectively
slow down the whole net."""

That was not true in 2009, and it's certainly not true now.

"""It also prevents the use of HTTP proxies, which currently help the
efficiency of web access."""

As discussed earlier in this thread, HTTPS requires clients to
knowingly opt in to caching, transforming, or spying proxies. But such
proxies are still possible. HTTPS makes them prove some value.

Overall, TBL seems to be saying that people shouldn't spy on the net,
so that we can enjoy many social goods. Among those goods, he seems to
place the ability to not have to adopt HTTPS. Unfortunately, we don't
like in so innocent a world, and HTTPS is the bare minimum protection
against tampering and spying.

Received on Tuesday, 13 January 2015 19:00:18 UTC