IETF Logo Mail Archive

Re: Fwd: New Version Notification for draft-nottingham-http2-encryption-02.txt

Martin Thomson <martin.thomson@gmail.com> Tue, 17 December 2013 22:39 UTC

Return-Path: <ietf-http-wg-request@listhub.w3.org>
X-Original-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Delivered-To: ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 214561AD791 for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 17 Dec 2013 14:39:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.54
X-Spam-Level:
X-Spam-Status: No, score=-7.54 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RP_MATCHES_RCVD=-0.538, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2GhC12kkFwgz for <ietfarch-httpbisa-archive-bis2Juki@ietfa.amsl.com>; Tue, 17 Dec 2013 14:39:35 -0800 (PST)
Received: from frink.w3.org (frink.w3.org [128.30.52.56]) by ietfa.amsl.com (Postfix) with ESMTP id 9D2671AD68D for <httpbisa-archive-bis2Juki@lists.ietf.org>; Tue, 17 Dec 2013 14:39:35 -0800 (PST)
Received: from lists by frink.w3.org with local (Exim 4.72) (envelope-from <ietf-http-wg-request@listhub.w3.org>) id 1Vt3GK-0000OA-Bg for ietf-http-wg-dist@listhub.w3.org; Tue, 17 Dec 2013 22:37:12 +0000
Resent-Date: Tue, 17 Dec 2013 22:37:12 +0000
Resent-Message-Id: <E1Vt3GK-0000OA-Bg@frink.w3.org>
Received: from maggie.w3.org ([128.30.52.39]) by frink.w3.org with esmtp (Exim 4.72) (envelope-from <martin.thomson@gmail.com>) id 1Vt3Fx-0000Lj-AO for ietf-http-wg@listhub.w3.org; Tue, 17 Dec 2013 22:36:49 +0000
Received: from mail-wi0-f179.google.com ([209.85.212.179]) by maggie.w3.org with esmtps (TLS1.0:RSA_ARCFOUR_SHA1:16) (Exim 4.72) (envelope-from <martin.thomson@gmail.com>) id 1Vt3Fw-0004iB-BJ for ietf-http-wg@w3.org; Tue, 17 Dec 2013 22:36:49 +0000
Received: by mail-wi0-f179.google.com with SMTP id z2so4412081wiv.0 for <ietf-http-wg@w3.org>; Tue, 17 Dec 2013 14:36:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=df4R2Qi/Pws6ACz3PeJjizgk+De+/9/j71mmecx5Pak=; b=uUVlfEq8bChvbE/cqtW45lu0MU/+P135LwkJgJhwt3Fo6URS4HbJ/Q9Np9lZt8Yaqq 9MIe/W6BQPZAmWAZlsFhN0dvwIiSK7bYZ1/E8JDtulTl/u2j+DDzWJqibQXcfzVhtfCp 1jz0/sl4MT8VWZz/cRnqoTbuRXTBUM1KOXInkAWKqaVcnZ8EwKX6p0ytcyUbeWAWVJTK D/3u+Y3+C0v+OHSQaMI1H8JF1NoKKJ4P4Ntz4pRgbvxfohLjRFg3uJexSkw6UPcW+TM6 b2SkoF+f5x3JPGIWDLW5qf3myd+QfEUE/uT0E69f5ab64rcB5PLGSRs6zPD9nwA5vJc3 IQZA==
MIME-Version: 1.0
X-Received: by 10.194.109.68 with SMTP id hq4mr21458622wjb.12.1387319781854; Tue, 17 Dec 2013 14:36:21 -0800 (PST)
Received: by 10.227.134.195 with HTTP; Tue, 17 Dec 2013 14:36:21 -0800 (PST)
In-Reply-To: <52B0A45E.2010901@cisco.com>
References: <CAFewVt6j0yaRboARj=wpaVO2s9M6j7_za-GXLp9ZWqkFtSys8A@mail.gmail.com> <eme0c50675-de24-47c2-a612-28ffe926e3fd@bodybag> <CAA4WUYj6MCnqLL8-uK_V6WUQv+f1S_DEMio+wLB_DC9CY9xUgA@mail.gmail.com> <52B02095.2010508@cisco.com> <CAA4WUYiZWNtJupQ-6bXO3aNXz1B0qBKoTX9-z-XEjdzTptTLDQ@mail.gmail.com> <52B0A45E.2010901@cisco.com>
Date: Tue, 17 Dec 2013 14:36:21 -0800
Message-ID: <CABkgnnX33SooYw2O_L4bX-E4J+9RZgd9O5DtNPNrxB4MX-FSoA@mail.gmail.com>
From: Martin Thomson <martin.thomson@gmail.com>
To: Eliot Lear <lear@cisco.com>
Cc: "William Chan (陈智昌)" <willchan@chromium.org>, Adrien de Croy <adrien@qbik.com>, Brian Smith <brian@briansmith.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>, Paul Hoffman <paul.hoffman@gmail.com>, "ietf-http-wg@w3.org Group" <ietf-http-wg@w3.org>
Content-Type: text/plain; charset="UTF-8"
Received-SPF: pass client-ip=209.85.212.179; envelope-from=martin.thomson@gmail.com; helo=mail-wi0-f179.google.com
X-W3C-Hub-Spam-Status: No, score=-3.5
X-W3C-Hub-Spam-Report: AWL=-2.720, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001
X-W3C-Scan-Sig: maggie.w3.org 1Vt3Fw-0004iB-BJ 79b1e50abb835c2bf82e4e0916fc3e0b
X-Original-To: ietf-http-wg@w3.org
Subject: Re: Fwd: New Version Notification for draft-nottingham-http2-encryption-02.txt
Archived-At: <http://www.w3.org/mid/CABkgnnX33SooYw2O_L4bX-E4J+9RZgd9O5DtNPNrxB4MX-FSoA@mail.gmail.com>
Resent-From: ietf-http-wg@w3.org
X-Mailing-List: <ietf-http-wg@w3.org> archive/latest/21657
X-Loop: ietf-http-wg@w3.org
Resent-Sender: ietf-http-wg-request@w3.org
Precedence: list
List-Id: <ietf-http-wg.w3.org>
List-Help: <http://www.w3.org/Mail/>
List-Post: <mailto:ietf-http-wg@w3.org>
List-Unsubscribe: <mailto:ietf-http-wg-request@w3.org?subject=unsubscribe>

On 17 December 2013 11:22, Eliot Lear <lear@cisco.com> wrote:
> Demonstrate that free certificates are generally available,

I'll make my point again.  Zero dollars (or your currency of choice)
is not the same as zero friction.  It's an important part, but as long
as it requires anything other than zero effort, free is still
insufficient to move the needle in any meaningful way.

As long as I can 'apt-get install httpd' and whatever else I need to
do to get unsecured HTTP going, the effort required to get a secured
certificate had best be as close to zero in addition to that as
possible.

Yes, there are other concerns, like performance, but I haven't found
arguments around those particularly compelling from an end-user
perspective.

v2.23.0 | Report a Bug | By Email