- From: Martin Thomson <martin.thomson@gmail.com>
- Date: Tue, 19 Aug 2014 10:32:52 -0700
- To: Patrick McManus <mcmanus@ducksong.com>
- Cc: Mark Nottingham <mnot@mnot.net>, HTTP Working Group <ietf-http-wg@w3.org>
On 19 August 2014 06:37, Patrick McManus <mcmanus@ducksong.com> wrote:
> I think the strongest argument in favor of scoping who can update a alt-svc
> is that a MITM attacker can attack you once and then capture your traffic in
> perpetuity without having to perform another attack against the original
> origin by updating the value.
I think that we have a good way out on that.
Received on Tuesday, 19 August 2014 17:33:20 UTC