I'll ask the obvious, dumb question:

Question

I'll ask the obvious, dumb question:

Closed this issue 9 years ago · 7 comments

vinniefalco commented 9 years ago

I can't find any mention of SSL or TLS in the draft?

Why aren't SSL or TLS mentioned in the draft?

Answer 1 · 2016-10-07T20:25:36.000Z

... that's not a question. :)

Answer 2 · 2016-10-07T21:40:37.000Z

@zygoloid Now it is!

Answer 3 · 2016-10-08T00:00:00.000Z

See http://www.open-std.org/jtc1/sc22/wg21/docs/papers/2015/n4370.html#network.scope

Features that are considered outside the scope of this proposal include:

Protocol implementations such as HTTP, SMTP or FTP.

Encryption (e.g. SSL, TLS).

We have to start somewhere, and it's not with TLS. That can be built on top of the foundations, later.

Answer 4 · 2016-10-08T00:21:15.000Z

Makes sense, we've waited long enough for having a socket in the standard.

Answer 5 · 2016-10-08T00:30:13.000Z

Yeah exactly :-)

Answer 6 · 2016-10-08T00:32:54.000Z

That being said, it's an obvious (and IMHO, necessary) V2 feature.

Answer 7 · 2016-10-08T00:39:10.000Z

Is there a place where there is some sort of discussion and planning for a standardized SSL? The security considerations make it unlike any other implementation in the standard. I strongly doubt we will get a good result if we require N implementations from N vendors.