On Nov 16, 2013, at 10:27 PM, Brian E Carpenter <[email protected]> wrote: > Well yes, but the hypothesis seemed to be TLS on *every* HTTP connection. > That doesn't seem to fly, is my point (and, I think, Phill's).
I don't see it. Sure, for transparent caching it won't work, but are people still using transparent caching for CDN? Clearly facebook isn't, nor Google. I think this ship has already flown the coop. > I said "possibly" because I wasn't sure. Maybe somebody can explain > how it works and how the associated trust model works? The web page you download using https from facebook lists content on cdn URLs. The browser connects to the cdn server and fetches each such URL. The URLs on the facebook page I looked at are all https. Why wouldn't this just work? Transparent caching would break, but that's not what's going on here—this is not at all transparent. _______________________________________________ perpass mailing list [email protected] https://www.ietf.org/mailman/listinfo/perpass
