IETF Logo Mail Archive

Re: New Version Notification for draft-nottingham-http2-encryption-03.txt

Salvatore Loreto <salvatore.loreto@ericsson.com> Wed, 21 May 2014 04:40 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 149741A048A for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 20 May 2014 21:40:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.553
X-Spam-Level:
X-Spam-Status: No, score=-7.553 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.651, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XAmv5l9M2rbU for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 20 May 2014 21:40:34 -0700 (PDT)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) (using TLSv1 with cipher AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 66B4B1A0489 for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 20 May 2014 21:40:34 -0700 (PDT)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1WmyHi-0004ck-Rs for ietf-http-wg-dist@listhub.w3.org; Wed, 21 May 2014 04:37:46 +0000
Resent-Date: Wed, 21 May 2014 04:37:46 +0000
Resent-Message-Id: <E1WmyHi-0004ck-Rs@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <salvatore.loreto@ericsson.com>) id 1WmyHT-0004aY-C0 for ietf-http-wg@listhub.w3.org; Wed, 21 May 2014 04:37:31 +0000
Received: from sesbmg22.ericsson.net ([193.180.251.48]) by maggie.w3.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.72) (envelope-from <salvatore.loreto@ericsson.com>) id 1WmyHQ-0007rh-Nr for ietf-http-wg@w3.org; Wed, 21 May 2014 04:37:31 +0000
X-AuditID: c1b4fb30-f79a56d000006536-13-537c2d718fc9
Received: from ESESSHC014.ericsson.se (Unknown_Domain [153.88.253.124]) by sesbmg22.ericsson.net (Symantec Mail Security) with SMTP id 20.58.25910.17D2C735; Wed, 21 May 2014 06:37:05 +0200 (CEST)
Received: from ESESSMB109.ericsson.se ([169.254.9.10]) by ESESSHC014.ericsson.se ([153.88.183.60]) with mapi id 14.03.0174.001; Wed, 21 May 2014 06:37:04 +0200
From: Salvatore Loreto <salvatore.loreto@ericsson.com>
To: Mark Nottingham <mnot@mnot.net>
CC: HTTP Working Group <ietf-http-wg@w3.org>, Martin Thomson <martin.thomson@gmail.com>
Thread-Topic: New Version Notification for draft-nottingham-http2-encryption-03.txt
Thread-Index: AQHPdK5QG4X9oiU3v0SSoFmxMApwqg==
Date: Wed, 21 May 2014 04:37:03 +0000
Message-ID: <1A377DCF-F21B-4302-BEB5-4221E2BFA5D3@ericsson.com>
References: <20140520034054.10225.92036.idtracker@ietfa.amsl.com> <5905C797-A8E2-417B-94AB-589C174382BA@mnot.net>
In-Reply-To: <5905C797-A8E2-417B-94AB-589C174382BA@mnot.net>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [153.88.183.150]
Content-Type: text/plain; charset="us-ascii"
Content-ID: <A2EB69581B47F248B59BD7D3628B1DF0@ericsson.com>
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFupjkeLIzCtJLcpLzFFi42KZGfG3RrdQtybY4NtCMYvDLbOYLK6d+cdo sf7TY0YHZo+ds+6ye2xc/J3V4+i8/awBzFFcNimpOZllqUX6dglcGX/WzGIrOCZUMXN+M1MD Yyd/FyMnh4SAicT1nyuYIGwxiQv31rN1MXJxCAkcZZS41DCJCcJZzCix/ssTVpAqNgEziecP tzCD2CICyhLf5y9hAbGZBSIl3s5aBhYXFgiROLS/G6iZA6gmVGLDPW+Icj2JHTs72EFsFgFV ibPvX4DZvAL2Evt+/QcbLyRQLHH83H5mkFZOARuJBW85QcKMQLd9P7WGCWKTuMStJ/OhbhaQ WLLnPDOELSrx8vE/VghbSWLF9kuMEPU6Egt2f2KDsK0ldp9Zxg5ha0ssW/iaGeIEQYmTM5+w TGAUn4VkxSwk7bOQtM9C0j4LSfsCRtZVjKLFqcVJuelGRnqpRZnJxcX5eXp5qSWbGIEReHDL b4MdjC+fOx5iFOBgVOLhVZhRHSzEmlhWXJl7iFGag0VJnPeiBlBIID2xJDU7NbUgtSi+qDQn tfgQIxMHp1QDo1CE6rzZ1bY6k+R2BrpdOr772VIVGY6m1q926V+nr55pK8x86u/MPwFLuwXi E5oF3bXWre7Um252mSn5nv1HAe6WcyGT8wq/1Zfvcf8R5Sfl/DrY46D3ZOsq5pU97ZOn9+2/ /St438qZO18f5OiIOyo+aYJPr6nXU1HvCPY7KVrVSTu5md+/VGIpzkg01GIuKk4EAPJQ2i2h AgAA
Received-SPF: pass client-ip=193.180.251.48; envelope-from=salvatore.loreto@ericsson.com; helo=sesbmg22.ericsson.net
X-W3C-Hub-Spam-Status: No, score=-4.3
X-W3C-Hub-Spam-Report: AWL=-1.967, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001
X-W3C-Scan-Sig: maggie.w3.org 1WmyHQ-0007rh-Nr 581595d83f0ad746a4fab394feda8256
X-Original-To: ietf-http-wg@w3.org
Subject: Re: New Version Notification for draft-nottingham-http2-encryption-03.txt
Archived-At: <http://www.w3.org/mid/1A377DCF-F21B-4302-BEB5-4221E2BFA5D3@ericsson.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/23729
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

thanks for working on this, I do believe it is really important

one clarification about it usages in http2 

If I understand correctly the draft 
a browser asking for http:// URI (no matter if using http/1.1 or http2) may get back an answer with an alt-svc: h2 
in that case the will start a TLS connection (with a an ALPN value of h2) towards the server exactly as per any http2;
the only difference will be that the browser will not check the certificate
so there won't be any difference on the wire only a different behaviour within the browser
isn't it?

br
/Salvatore


On May 20, 2014, at 6:42 AM, Mark Nottingham <mnot@mnot.net> wrote:

> FYI - Martin went away and did some substantial revision of this draft, and is now an author.
> 
> Regards,
> 
> 
> Begin forwarded message:
> 
>> From: internet-drafts@ietf.org
>> Subject: New Version Notification for draft-nottingham-http2-encryption-03.txt
>> Date: 20 May 2014 1:40:54 pm AEST
>> To: "Mark Nottingham" <mnot@mnot.net>, Martin Thomson <martin.thomson@gmail.com>, "Martin Thomson" <martin.thomson@gmail.com>, Mark Nottingham <mnot@mnot.net>
>> 
>> 
>> A new version of I-D, draft-nottingham-http2-encryption-03.txt
>> has been successfully submitted by Mark Nottingham and posted to the
>> IETF repository.
>> 
>> Name:		draft-nottingham-http2-encryption
>> Revision:	03
>> Title:		Opportunistic Encryption for HTTP URIs
>> Document date:	2014-05-20
>> Group:		Individual Submission
>> Pages:		9
>> URL:            http://www.ietf.org/internet-drafts/draft-nottingham-http2-encryption-03.txt
>> Status:         https://datatracker.ietf.org/doc/draft-nottingham-http2-encryption/
>> Htmlized:       http://tools.ietf.org/html/draft-nottingham-http2-encryption-03
>> Diff:           http://www.ietf.org/rfcdiff?url2=draft-nottingham-http2-encryption-03
>> 
>> Abstract:
>> This describes how "http" URIs can be accessed using Transport Layer
>> Security (TLS) to mitigate pervasive monitoring attacks.
>> 
>> 
>> 
>> 
>> Please note that it may take a couple of minutes from the time of submission
>> until the htmlized version and diff are available at tools.ietf.org.
>> 
>> The IETF Secretariat
>> 
> 
> --
> Mark Nottingham   http://www.mnot.net/
> 
> 
> 
>

v2.23.0 | Report a Bug | By Email