Changes between Version 3 and Version 4 of encryption-definitons
- Timestamp:
- 20/11/13 21:31:58 (9 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
encryption-definitons
v3 v4 7 7 '''Best-effort encryption''' -- A process to establish cryptographic material. In this process, the client attempts to authenticate the server's identity but, if that is not possible, continues anyway. The result of best-effort encryption is either authenticated encryption or unauthenticated encryption. 8 8 9 '''Opportunistic encryption''' -- A process that causes best-effort encryption to happen without an initiator attempting to start encryption. For example, the STARTTLS mechanism in SMTP provides opportunistic encryption. Current HTTP using TLS is never opportunistic because HTTP over TLS always starts on port 443, not port 80.9 '''Opportunistic encryption''' -- A process that causes best-effort encryption to happen without an initiator attempting to start encryption. For example, the STARTTLS mechanism in SMTP provides opportunistic encryption. 10 10 11 There are now proposals to create opportunistic encryption in HTTP/2 by either redirecting an HTTP/2 connection to port 443 or by initiating best-effort encryption in HTTP/2 headers.11 Current HTTP using TLS is never opportunistic because HTTP over TLS always starts on port 443, not port 80. There are now proposals to create opportunistic encryption in HTTP/2 by either redirecting an HTTP/2 connection to port 443 or by initiating best-effort encryption in HTTP/2 headers. 12 12