[Cryptography] TLS/DTLS Use Cases
Bill Stewart
billstewart at pobox.com
Sat Apr 5 15:35:52 EDT 2014
At 03:57 PM 4/1/2014, ianG wrote:
>In contrast: web aka HTTP is a request-response protocol, being sliced
>into a request datagram and a response datagram. Efforts abound to
>layer more RR pairs or datagrams over the top of connections with
>keepalives and so forth which may answer why TLS was confused about its
>use cases, or may not.... Not a pretty site.
HTTP stopped being a datagram-like application when AJAX and
streaming video became popular.
Yes, there's a message-passing framework still inside it,
because it does some useful things and it's hard to make it go away,
but that's not what people are doing with most of the bits.
It's a somewhat different use case than fetching web pages.
(Attacks like Slowloris or Slowhttp are also somewhat different,
but it's not really necessary for TLS ver N+1 to support those efficiently.)
More information about the cryptography
mailing list