IETF Logo Mail Archive

Re: agenda/charter brainstorming

Yoav Nir <ynir.ietf@gmail.com> Wed, 25 June 2014 13:35 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E8EBA1B2C8F for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 25 Jun 2014 06:35:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.653
X-Spam-Level:
X-Spam-Status: No, score=-7.653 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.651, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rkEIbhIjRItg for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 25 Jun 2014 06:35:16 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 557571B2C90 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 25 Jun 2014 06:35:15 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1WznIv-0008Cc-VD for ietf-http-wg-dist@listhub.w3.org; Wed, 25 Jun 2014 13:32:01 +0000
Resent-Date: Wed, 25 Jun 2014 13:32:01 +0000
Resent-Message-Id: <E1WznIv-0008Cc-VD@frink.w3.org>
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <ynir.ietf@gmail.com>) id 1WznIb-0008Bj-Qv for ietf-http-wg@listhub.w3.org; Wed, 25 Jun 2014 13:31:41 +0000
Received: from mail-we0-f181.google.com ([74.125.82.181]) by lisa.w3.org with esmtps (TLS1.0:RSA_ARCFOUR_SHA1:16) (Exim 4.72) (envelope-from <ynir.ietf@gmail.com>) id 1WznIX-0001EE-TV for ietf-http-wg@w3.org; Wed, 25 Jun 2014 13:31:41 +0000
Received: by mail-we0-f181.google.com with SMTP id q59so2116207wes.12 for <ietf-http-wg@w3.org>; Wed, 25 Jun 2014 06:31:09 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=aFzYXDM3ziOU3GTllNi95shOA5UtChLtxqlR/LTN268=; b=gvUerQWSjUS6l1vyDy7PxI/Y50NcHKo0AJuEXdHVlsn8/bs+/NssLnhMLzr+Sa3wKg R9N2zT8fI7ueRvdX/P5DyLgHRBfzcrT61cXfT1voYRuSKH2pmWFOp+ZtrjZC5+8uXGNv 74CRKbjilFGyAsTjZB6NH6i/C8z9K8sNK9vb4v0dvfEbDjuup/TIaWKT2Fl15nrrx55Z 80N9OBGK37pniSwmElbfxdKJX3KkvVJXdfUrxidHQVObJMdhRXkmrBkg1cxrG11WBZZF LcUlhnyC+uAi6+3zU288ghNm3auQ7UmkJvGZZpBdkG1pxrv6OIZlQMY0gmrVPSntSkzc l/wA==
X-Received: by 10.194.120.35 with SMTP id kz3mr7596796wjb.38.1403703068886; Wed, 25 Jun 2014 06:31:08 -0700 (PDT)
Received: from [172.24.251.205] (dyn32-131.checkpoint.com. [194.29.32.131]) by mx.google.com with ESMTPSA id ek3sm7534164wjd.17.2014.06.25.06.31.07 for <multiple recipients> (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 25 Jun 2014 06:31:08 -0700 (PDT)
Content-Type: text/plain; charset="windows-1252"
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.2\))
From: Yoav Nir <ynir.ietf@gmail.com>
In-Reply-To: <53AAC511.1040304@treenet.co.nz>
Date: Wed, 25 Jun 2014 16:31:03 +0300
Cc: ietf-http-wg@w3.org
Content-Transfer-Encoding: quoted-printable
Message-Id: <BB5D1D3D-B132-46E1-ABFF-D97B6228ED42@gmail.com>
References: <53A7E8BA.8090809@gmx.de> <A6F74280-7BF8-47F9-A818-47AAFBDB20A4@mnot.net> <E7346C67-7627-4CA9-8C48-9A26B5BFC49C@gmail.com> <53AAC511.1040304@treenet.co.nz>
To: Amos Jeffries <squid3@treenet.co.nz>
X-Mailer: Apple Mail (2.1878.2)
Received-SPF: pass client-ip=74.125.82.181; envelope-from=ynir.ietf@gmail.com; helo=mail-we0-f181.google.com
X-W3C-Hub-Spam-Status: No, score=-3.4
X-W3C-Hub-Spam-Report: AWL=-2.589, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001
X-W3C-Scan-Sig: lisa.w3.org 1WznIX-0001EE-TV 4b9264d2d410e53fe78b3c79896ff1f8
X-Original-To: ietf-http-wg@w3.org
Subject: Re: agenda/charter brainstorming
Archived-At: <http://www.w3.org/mid/BB5D1D3D-B132-46E1-ABFF-D97B6228ED42@gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/24622
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On Jun 25, 2014, at 3:48 PM, Amos Jeffries <squid3@treenet.co.nz> wrote:

> On 25/06/2014 7:32 a.m., Yoav Nir wrote:
>> 
>> On Jun 24, 2014, at 8:42 AM, Mark Nottingham wrote:
>> 
>>> Hi Julian,
>>> 
>>> On 23 Jun 2014, at 6:43 pm, Julian Reschke wrote:
>>> 
>>>> 
>>>> 4) Session handling (or "avoiding cookies")
>>>> 
>>>> ...in case we find people, energy, and implementer interest.
>>> 
>>> That sounds very speculative. Draft?
>> 
>> http://tools.ietf.org/html/draft-williams-websec-session-continue-prob-00
>> http://tools.ietf.org/html/draft-williams-websec-session-continue-proto-00
>> http://tools.ietf.org/html/draft-abarth-cake-01
>> http://tools.ietf.org/html/draft-hallambaker-httpsession-02
>> http://tools.ietf.org/html/draft-hallambaker-httpintegrity-02
>> http://tools.ietf.org/html/draft-hammer-oauth-v2-mac-token-05
>> 
>> 
>> I could probably dig up a few more if I put my mind to it.
>> 
>> So people is easy, energy we might be able to find. Implementer interest?  I’m not sure it’s there.
> 
> Some here from Squid. I have been watching Hallam's work with some
> interest, will be needing proxy support but otherwise there is a lot of
> promise there.

As makers of middle-boxes, we’re just along for the ride. Unless Facebook/the bank/the bloggers/the dog-food over the Internet people want a new session management scheme, and unless the browsers are willing to provide it, we can’t push a new technology. And the dogfood over the Internet people do not participate in the working group, and the browser people have so far been silent about this.

You can browse the archives of websec to see my totally unsuccessful attempts to bring this to the IETF. Doesn’t mean it won’t succeed somewhere else.

Yoav

v2.23.0 | Report a Bug | By Email