Re: 2 questions
Maxthon Chan <xcvista@me.com> Wed, 01 April 2015 07:36 UTC
Return-Path: <ietf-http-wg-request+bounce-httpbisa-archive-bis2juki=lists.ie@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7FB211A89C6 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 1 Apr 2015 00:36:42 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.312
X-Spam-Level:
X-Spam-Status: No, score=-6.312 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, J_CHICKENPOX_31=0.6, RCVD_IN_DNSWL_HI=-5, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dnTw5u1C9UPI for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Wed, 1 Apr 2015 00:36:41 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E63261A1A82 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Wed, 1 Apr 2015 00:36:40 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.80) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1YdD9W-0008Ts-A9 for ietf-http-wg-dist@listhub.w3.org; Wed, 01 Apr 2015 07:33:30 +0000
Resent-Date: Wed, 01 Apr 2015 07:33:30 +0000
Resent-Message-Id: <E1YdD9W-0008Ts-A9@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.80) (envelope-from <xcvista@me.com>) id 1YdD9T-0008TB-LL for ietf-http-wg@listhub.w3.org; Wed, 01 Apr 2015 07:33:27 +0000
Received: from nk11p03mm-asmtp002.mac.com ([17.158.232.237]) by maggie.w3.org with esmtps (TLS1.0:DHE_RSA_AES_128_CBC_SHA1:16) (Exim 4.72) (envelope-from <xcvista@me.com>) id 1YdD9S-0003HS-Av for ietf-http-wg@w3.org; Wed, 01 Apr 2015 07:33:27 +0000
Received: from [10.22.49.1] (unknown [69.163.40.80]) by nk11p03mm-asmtp002.mac.com (Oracle Communications Messaging Server 7.0.5.35.0 64bit (built Dec 4 2014)) with ESMTPSA id <0NM400D1YAA4J930@nk11p03mm-asmtp002.mac.com> for ietf-http-wg@w3.org; Wed, 01 Apr 2015 07:32:32 +0000 (GMT)
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10432:5.13.68,1.0.33,0.0.0000 definitions=2015-04-01_03:2015-03-31,2015-04-01,1970-01-01 signatures=0
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 suspectscore=2 phishscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=7.0.1-1412110000 definitions=main-1504010066
Content-type: text/plain; charset="utf-8"
MIME-version: 1.0 (Mac OS X Mail 8.2 \(2093\))
From: Maxthon Chan <xcvista@me.com>
In-reply-to: <1A9B335A-A082-4373-BAF9-12A15A7AF9FC@gmail.com>
Date: Wed, 01 Apr 2015 15:32:27 +0800
Cc: "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Content-transfer-encoding: quoted-printable
Message-id: <95FADD9E-BA5A-4A85-B7F3-5D7FC4DB7A23@me.com>
References: <emb9aea729-e991-4f83-bd83-960342d99b87@bodybag> <551B0C46.8040705@cs.tcd.ie> <40647.1427840473@critter.freebsd.dk> <551B2120.7020907@cs.tcd.ie> <40951.1427843221@critter.freebsd.dk> <551B2A8B.4040900@cs.tcd.ie> <F13154A2-D45D-4980-8DBE-A0C82E58B157@me.com> <1A9B335A-A082-4373-BAF9-12A15A7AF9FC@gmail.com>
To: Yoav Nir <ynir.ietf@gmail.com>
X-Mailer: Apple Mail (2.2093)
Received-SPF: pass client-ip=17.158.232.237; envelope-from=xcvista@me.com; helo=nk11p03mm-asmtp002.mac.com
X-W3C-Hub-Spam-Status: No, score=-6.2
X-W3C-Hub-Spam-Report: BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001, W3C_AA=-1, W3C_WL=-1
X-W3C-Scan-Sig: maggie.w3.org 1YdD9S-0003HS-Av ed5068fcde9f23c483829558bc36a0e4
X-Original-To: ietf-http-wg@w3.org
Subject: Re: 2 questions
Archived-At: <http://www.w3.org/mid/95FADD9E-BA5A-4A85-B7F3-5D7FC4DB7A23@me.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/29166
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
I understand there are still certain places that encryption itself is too expensive to use like microcontrollers, but that does not mean they cannot stick to existing plaintext HTTP/1.1 For those microcontrollers using HTTP/2 would actually introduce more state (aka memory use) and given the compatibility requirement of HTTP/2 they would also have to include a minimal HTTP/1.1 support (aka code size) so ion;t think HTTP/2 would be appropriate for those applications anyway. For pretty much all other applications TLS won’t be expensive at all, according to what I know. So maybe if Let’s Encrypt is a success we can mark plain HTTP/2 as deprecated after all, since it bring no benefit either way. > On Apr 1, 2015, at 15:01, Yoav Nir <ynir.ietf@gmail.com> wrote: > > That project, if successful, will reduce the already-low price of a TLS certificate. > > The new enrollment protocol that was discussed in the ACME BoF, if successful, will lower the already-low administrative burden of getting and renewing a certificate. > > Neither will make HTTPS free. > > Yoav > >> On Apr 1, 2015, at 6:51 AM, ChanMaxthon <xcvista@me.com> wrote: >> >> Just wondering, have you guys heard of Let's Encrypt project led by EFF and backed by a few major companies including Cisco, providing SSL certificates with a valid trust chain to everybody for free? If that project is successful we may be able to treat any plaintext traffic as deprecated - just deprecate plaintext HTTP/2 upon release as well as plain HTTP/1.1 >> >> Sent from my iPhone >> >>> On Apr 1, 2015, at 07:15, Stephen Farrell <stephen.farrell@cs.tcd.ie> wrote: >>> >>> >>> >>>> On 01/04/15 00:07, Poul-Henning Kamp wrote: >>>> >>>> The only real solution is to make make privacy a protected human right. >>> >>> It is in theory, says the UDHR. [1] But I think we've wandered far >>> from this list's remit. Happy to continue off list though, or you >>> could sign up to the (quite new) hrpc@irtf.org list [2] that was >>> previously hosted at. [3] ([3] was just migrated to [2] yesterday.) >>> >>> S. >>> >>> [1] http://www.un.org/en/documents/udhr/index.shtml/index.shtml#a12 >>> [2] https://irtf.org/mailman/listinfo/hrpc >>> [3] https://lists.ghserv.net/mailman/listinfo/hrpc >>> >>> >> >
- 2 questions Glen
- Re: 2 questions Yoav Nir
- Re: 2 questions Cory Benfield
- Re: 2 questions Constantine A. Murenin
- Re: 2 questions Matthew Kerwin
- Re: 2 questions Walter H.
- Re: 2 questions Walter H.
- RE: 2 questions Mike Bishop
- Re: 2 questions Adrien de Croy
- Re: 2 questions Cory Benfield
- Re: 2 questions Amos Jeffries
- Re: 2 questions Amos Jeffries
- Re: 2 questions Cory Benfield
- Re: 2 questions Adrien de Croy
- Re: 2 questions Yoav Nir
- Re: 2 questions Roland Zink
- Re: 2 questions Martin Thomson
- Re: 2 questions Walter H.
- Re: 2 questions Walter H.
- Re: [Moderator Action] 2 questions Glen
- Re: 2 questions Dan Anderson
- Re: 2 questions Adrien de Croy
- RE: 2 questions Xiaoyin Liu
- Re: 2 questions Adrien de Croy
- Re: 2 questions Stephen Farrell
- comprehensive TLS is not the solution, it's a bug… Walter H.
- Re: comprehensive TLS is not the solution, it's a… Walter H.
- Re: 2 questions Eric J. Bowman
- Re: comprehensive TLS is not the solution, it's a… Amos Jeffries
- Re: comprehensive TLS is not the solution, it's a… Willy Tarreau
- Re: comprehensive TLS is not the solution, it's a… Walter H.
- Re: comprehensive TLS is not the solution, it's a… Walter H.
- Re: comprehensive TLS is not the solution, it's a… Willy Tarreau
- Re: comprehensive TLS is not the solution, it's a… Maxthon Chan
- Re: comprehensive TLS is not the solution, it's a… Roberto Peon
- Re: comprehensive TLS is not the solution, it's a… Walter H.
- Re: comprehensive TLS is not the solution, it's a… Maxthon Chan
- Re: comprehensive TLS is not the solution, it's a… Willy Tarreau
- Re: comprehensive TLS is not the solution, it's a… Maxthon Chan
- Re: 2 questions Adrien de Croy
- Re: 2 questions Stephen Farrell
- Re: comprehensive TLS is not the solution, it's a… Matthew Kerwin
- Re: comprehensive TLS is not the solution, it's a… Maxthon Chan
- Re: 2 questions Maxthon Chan
- RE: comprehensive TLS is not the solution, it's a… Mike Bishop
- Re: 2 questions Poul-Henning Kamp
- Re: comprehensive TLS is not the solution, it's a… ChanMaxthon
- Re: 2 questions Stephen Farrell
- Re: 2 questions Poul-Henning Kamp
- Re: 2 questions Stephen Farrell
- Re: comprehensive TLS is not the solution, it's a… Amos Jeffries
- Re: comprehensive TLS is not the solution, it's a… Amos Jeffries
- Re: 2 questions ChanMaxthon
- Re: 2 questions Amos Jeffries
- Re: 2 questions Yoav Nir
- Re: 2 questions Poul-Henning Kamp
- Re: 2 questions Maxthon Chan
- Re: 2 questions Simpson, Robby (GE Energy Management)
- Re: 2 questions Ted Hardie
- Re: 2 questions Jason T. Greene
- Re: 2 questions Benjamin Carlyle
- Re: 2 questions Martin Thomson
- Re: 2 questions OSCAR GONZALEZ DE DIOS
- Re: 2 questions Martin Thomson
- Re: 2 questions ChanMaxthon
- Re: 2 questions Glen
- Re: 2 questions Roland Zink
- Re: 2 questions Ilari Liusvaara
- Re: 2 questions Glen
- Re: 2 questions Jim Manico
- Re: 2 questions Yoav Nir
- Re: 2 questions Glen
- Re: 2 questions Glen
- Re: 2 questions Jim Manico
- Re: 2 questions Amos Jeffries
- Re: 2 questions Maxthon Chan
- Re: 2 questions Glen
- Re: 2 questions Glen
- Re: 2 questions Ilari Liusvaara
- Re: 2 questions Amos Jeffries
- Re: 2 questions Martin Thomson
- Re: 2 questions Yoav Nir
- Re: 2 questions Martin Thomson