Re: HTTP/2 and Pervasive Monitoring

Eliot Lear <lear@cisco.com> Fri, 15 August 2014 12:32 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA66F1A0A70 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 15 Aug 2014 05:32:12 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -15.17
X-Spam-Level:
X-Spam-Status: No, score=-15.17 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.668, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LWVZx54skUj6 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Fri, 15 Aug 2014 05:32:11 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 23F551A0A6F for <httpbisa-archive-bis2Juki@lists.ietf.org>; Fri, 15 Aug 2014 05:32:10 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1XIGci-0007B0-5E for ietf-http-wg-dist@listhub.w3.org; Fri, 15 Aug 2014 12:28:48 +0000
Resent-Date: Fri, 15 Aug 2014 12:28:48 +0000
Resent-Message-Id: <E1XIGci-0007B0-5E@frink.w3.org>
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <lear@cisco.com>) id 1XIGcP-00079E-0u for ietf-http-wg@listhub.w3.org; Fri, 15 Aug 2014 12:28:29 +0000
Received: from aer-iport-3.cisco.com ([173.38.203.53]) by lisa.w3.org with esmtps (TLS1.0:RSA_ARCFOUR_SHA1:16) (Exim 4.72) (envelope-from <lear@cisco.com>) id 1XIGcO-0002BN-8E for ietf-http-wg@w3.org; Fri, 15 Aug 2014 12:28:28 +0000
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2212; q=dns/txt; s=iport; t=1408105708; x=1409315308; h=message-id:date:from:mime-version:to:subject:references: in-reply-to; bh=6flZIpJ2NfQQUVK62GQRtOkN/4nVXkoxSTdSWDgDp6w=; b=NHdCpVwcXfnDycIbFCYP5SQNXVfsqIF/Uyw5efxTHE9SZV1ycBy97BQg w2KjtCCSUySFHouItFpc0d9qj3h0vfN9kftDJnG1Lt6tBECNPcebxESjB gwSKWw4d55QW6NWhb1yNobOINEaw/p7dp59JlP+pWu04Z/ebIomASK0cT s=;
X-Files: signature.asc : 486
X-IronPort-Anti-Spam-Filtered: true
X-IronPort-Anti-Spam-Result: AqIEAJ/87VOtJssW/2dsb2JhbABZg2CDU9JeAYEpd4QEAQEEI1URCw4KCRYLAgIJAwIBAgFFBgEMCAEBEIgurj2VNRePU4J5gVMBBJMdgUqHU4cnjVeDXjuCfgEBAQ
X-IronPort-AV: E=Sophos;i="5.01,870,1400025600"; d="asc'?scan'208";a="138681041"
Received: from aer-iport-nat.cisco.com (HELO aer-core-2.cisco.com) ([173.38.203.22]) by aer-iport-3.cisco.com with ESMTP; 15 Aug 2014 12:27:55 +0000
Received: from [10.61.196.246] ([10.61.196.246]) by aer-core-2.cisco.com (8.14.5/8.14.5) with ESMTP id s7FCRs8m014824; Fri, 15 Aug 2014 12:27:54 GMT
Message-ID: <53EDFCC9.1080606@cisco.com>
Date: Fri, 15 Aug 2014 14:27:53 +0200
From: Eliot Lear <lear@cisco.com>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:24.0) Gecko/20100101 Thunderbird/24.6.0
MIME-Version: 1.0
To: Mark Nottingham <mnot@mnot.net>, HTTP Working Group <ietf-http-wg@w3.org>
References: <38BD57DB-98A9-4282-82DD-BB89F11F7C84@mnot.net>
In-Reply-To: <38BD57DB-98A9-4282-82DD-BB89F11F7C84@mnot.net>
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature"; boundary="MXUrKCwpsfK0JaC0ULKAB36nML51GeOdg"
Received-SPF: pass client-ip=173.38.203.53; envelope-from=lear@cisco.com; helo=aer-iport-3.cisco.com
X-W3C-Hub-Spam-Status: No, score=-13.7
X-W3C-Hub-Spam-Report: AWL=-0.431, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.668, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5
X-W3C-Scan-Sig: lisa.w3.org 1XIGcO-0002BN-8E 57b299681ba3915531a6239a28a1be0f
X-Original-To: ietf-http-wg@w3.org
Subject: Re: HTTP/2 and Pervasive Monitoring
Archived-At: <http://www.w3.org/mid/53EDFCC9.1080606@cisco.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/26611
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

Hi Mark,

Just on these two points, taken together:

On 8/15/14, 4:58 AM, Mark Nottingham wrote:
> One proposal we considered was to require the use of TLS (through https:// URIs) for HTTP/2. However, some members of the community pushed back against this, on the grounds that it would be too onerous for some uses of HTTP (not necessarily CPU; cost and administration of certificates was cited as a burden, as was the follow-on disruption to applications, since transitioning from HTTP to HTTPS often requires non-trivial content changes, due to the way that the browser security model works).
>
> We also discussed an "Opportunistic Security" approach to using TLS for http:// URIs (but without authentication). This was a bit controversial too, as some community members felt that having another, weaker kind of security defined harms the long-term deployment of "full" TLS. 

Some of us have been a little nervous about the spread of infections due
to encryption with unauthenticated endpoints, making it a bit more of a
pain for in-path virus checkers and such.  That was raised several
times.  You saw data published to this list from Cisco saying that this
wasn't really a problem when the server had a valid cert.

Eliot