Changes between Version 3 and Version 4 of encryption-definitons


Ignore:
Timestamp:
20/11/13 21:31:58 (8 years ago)
Author:
paul.hoffman@…
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • encryption-definitons

    v3 v4  
    77'''Best-effort encryption''' -- A process to establish cryptographic material. In this process, the client attempts to authenticate the server's identity but, if that is not possible, continues anyway. The result of best-effort encryption is either authenticated encryption or unauthenticated encryption.
    88
    9 '''Opportunistic encryption''' -- A process that causes best-effort encryption to happen without an initiator attempting to start encryption. For example, the STARTTLS mechanism in SMTP provides opportunistic encryption. Current HTTP using TLS is never opportunistic because HTTP over TLS always starts on port 443, not port 80.
     9'''Opportunistic encryption''' -- A process that causes best-effort encryption to happen without an initiator attempting to start encryption. For example, the STARTTLS mechanism in SMTP provides opportunistic encryption.
    1010
    11 There are now proposals to create opportunistic encryption in HTTP/2 by either redirecting an HTTP/2 connection to port 443 or by initiating best-effort encryption in HTTP/2 headers.
     11Current HTTP using TLS is never opportunistic because HTTP over TLS always starts on port 443, not port 80. There are now proposals to create opportunistic encryption in HTTP/2 by either redirecting an HTTP/2 connection to port 443 or by initiating best-effort encryption in HTTP/2 headers.
    1212