RE: Header Compression
RUELLAN Herve <Herve.Ruellan@crf.canon.fr> Mon, 17 June 2013 16:44 UTC
Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BDF2521F9D6B for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Mon, 17 Jun 2013 09:44:23 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -10.248
X-Spam-Level:
X-Spam-Status: No, score=-10.248 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, HELO_EQ_FR=0.35, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_HI=-8]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8F0dB7Hs5ZII for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Mon, 17 Jun 2013 09:44:19 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id E593321F9D6A for <httpbisa-archive-bis2Juki@lists.ietf.org>; Mon, 17 Jun 2013 09:44:18 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1UocWv-0003E9-Pb for ietf-http-wg-dist@listhub.w3.org; Mon, 17 Jun 2013 16:43:45 +0000
Resent-Date: Mon, 17 Jun 2013 16:43:45 +0000
Resent-Message-Id: <E1UocWv-0003E9-Pb@frink.w3.org>
Received: from lisa.w3.org ([128.30.52.41]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <Herve.Ruellan@crf.canon.fr>) id 1UocWj-0003DD-CL for ietf-http-wg@listhub.w3.org; Mon, 17 Jun 2013 16:43:33 +0000
Received: from inari-msr.crf.canon.fr ([194.2.158.67]) by lisa.w3.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.72) (envelope-from <Herve.Ruellan@crf.canon.fr>) id 1UocWh-0005O0-Ve for ietf-http-wg@w3.org; Mon, 17 Jun 2013 16:43:33 +0000
Received: from mir-msr.corp.crf.canon.fr (mir-msr.corp.crf.canon.fr [172.19.77.98]) by inari-msr.crf.canon.fr (8.13.8/8.13.8) with ESMTP id r5HGh4dW022951; Mon, 17 Jun 2013 18:43:04 +0200
Received: from ADELE.crf.canon.fr (adele.fesl2.crf.canon.fr [172.19.70.17]) by mir-msr.corp.crf.canon.fr (8.13.8/8.13.8) with ESMTP id r5HGh4QY002890; Mon, 17 Jun 2013 18:43:04 +0200
Received: from ADELE.crf.canon.fr ([::1]) by ADELE.crf.canon.fr ([::1]) with mapi id 14.02.0342.003; Mon, 17 Jun 2013 18:43:04 +0200
From: RUELLAN Herve <Herve.Ruellan@crf.canon.fr>
To: Ted Hardie <ted.ietf@gmail.com>
CC: Martin Thomson <martin.thomson@gmail.com>, Ryan Hamilton <rch@google.com>, "ietf-http-wg@w3.org" <ietf-http-wg@w3.org>
Thread-Topic: Header Compression
Thread-Index: Ac5iHnyXqw4lUQUzSg+QWdj+JPurdf//7/sA//7XSkCAAoTIAP/4L8FwgA+okYCACZBeRQ==
Date: Mon, 17 Jun 2013 16:43:03 +0000
Message-ID: <6C71876BDCCD01488E70A2399529D5E525EC01A3@ADELE.crf.canon.fr>
References: <6C71876BDCCD01488E70A2399529D5E516531910@ADELE.crf.canon.fr> <CAJ_4DfTQ=X1RE+4aO58_1h7_sCvhNW19ZTFAC7htA4Tb_5gj8w@mail.gmail.com> <6C71876BDCCD01488E70A2399529D5E516532B26@ADELE.crf.canon.fr> <CABkgnnURGjmOTNM=mNKOAdmU0F87Rbs_2jDcGQ3_tAVzofwKrg@mail.gmail.com> <6C71876BDCCD01488E70A2399529D5E5165335A6@ADELE.crf.canon.fr>, <CA+9kkMAgPWFUVHgZrLuf+1-qtV17hY93-mRwh9-UH04Yw4MhfQ@mail.gmail.com>
In-Reply-To: <CA+9kkMAgPWFUVHgZrLuf+1-qtV17hY93-mRwh9-UH04Yw4MhfQ@mail.gmail.com>
Accept-Language: en-US, fr-FR
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [172.21.0.253]
Content-Type: multipart/alternative; boundary="_000_6C71876BDCCD01488E70A2399529D5E525EC01A3ADELEcrfcanonfr_"
MIME-Version: 1.0
Received-SPF: none client-ip=194.2.158.67; envelope-from=Herve.Ruellan@crf.canon.fr; helo=inari-msr.crf.canon.fr
X-W3C-Hub-Spam-Status: No, score=-4.9
X-W3C-Hub-Spam-Report: AWL=-1.894, BAYES_00=-1.9, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-1.103
X-W3C-Scan-Sig: lisa.w3.org 1UocWh-0005O0-Ve 812f622bfcf07e95c4906800d6ab1ace
X-Original-To: ietf-http-wg@w3.org
Subject: RE: Header Compression
Archived-At: <http://www.w3.org/mid/6C71876BDCCD01488E70A2399529D5E525EC01A3@ADELE.crf.canon.fr>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/18239
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>
Hi Ted, First, the TODO for the security considerations section was put here because I believed the header compression spec would be quickly integrated into the main HTTP/2.0 spec. This will not be the case (it will be referenced from the main spec), therefore, I will do the TODO. Second, it is a design choice not to have deletion: the mean of removing a header is to replace it with a new one. Another possibility is to use the automatic dropping of headers to remove the headers that were the oldest to be added to the table (see penultimate paragraph of section 3.1 Header Table). Hervé. ________________________________ From: Ted Hardie [ted.ietf@gmail.com] Sent: Tuesday, June 11, 2013 18:33 To: RUELLAN Herve Cc: Martin Thomson; Ryan Hamilton; ietf-http-wg@w3.org Subject: Re: Header Compression On Tue, Jun 11, 2013 at 7:05 AM, RUELLAN Herve <Herve.Ruellan@crf.canon.fr<mailto:Herve.Ruellan@crf.canon.fr>> wrote: I just did it : http://www.ietf.org/id/draft-ruellan-http-header-compression-00.txt Hervé. Hi Herve, A couple of quick comments. First, for the TODO in your security considerations section, I think you should probably expand on the text in the overview, which describes the attack on Deflate and unpack why the current scheme is resistant to similar attacks. Second, the document describes substitution and insertion, but does not describe deletion. If a party wishes to remove a header (note: not change to a null value) is this possible and, if so, what's the process? regards, Ted Hardie > -----Original Message----- > From: Martin Thomson [mailto:martin.thomson@gmail.com<mailto:martin.thomson@gmail.com>] > Sent: jeudi 6 juin 2013 18:46 > To: RUELLAN Herve > Cc: Ryan Hamilton; ietf-http-wg@w3.org<mailto:ietf-http-wg@w3.org> > Subject: Re: Header Compression > > On 6 June 2013 04:43, RUELLAN Herve <Herve.Ruellan@crf.canon.fr<mailto:Herve.Ruellan@crf.canon.fr>> wrote: > > Yes there are now both HTML and txt version available: > > http://http2.github.io/compression-spec/compression-spec.html > > http://http2.github.io/compression-spec/compression-spec.txt > > Could you please visit https://datatracker.ietf.org/idst/upload.cgi > and go through the motions for us. It's a procedural matter that shouldn't > take more than a couple of minutes.
- Re: Header Compression Martin Thomson
- Header Compression RUELLAN Herve
- Re: Header Compression James M Snell
- Re: Header Compression Martin Thomson
- Re: Header Compression Ryan Hamilton
- Re: Header Compression Mark Nottingham
- Re: Header Compression Yoav Nir
- RE: Header Compression RUELLAN Herve
- Re: Header Compression Tatsuhiro Tsujikawa
- Re: Header Compression James M Snell
- RE: Header Compression RUELLAN Herve
- Re: Header Compression Ted Hardie
- RE: Header Compression RUELLAN Herve
- RE: Header Compression RUELLAN Herve
- Re: Header Compression Ted Hardie
- Re: Header Compression Roberto Peon