开发者

SPDY - without TLS?

I'm trying to implement S开发者_运维技巧PDY (with Node.js) for use on a high latency connection.

Now SPDY uses TLS encryption and this would increase the packet length - something I'm trying to avoid.

Is there such thing as a SPDY implementation without the TLS encryption?

Many thanks in advance,


SPDY's framing layer does not need to run over TLS, but for deployment reasons, it almost always does. It's hard to reliably deploy without running encrypted over port 443, because of intermediaries. Note the SPDY whitepaper says: "To make SSL the underlying transport protocol, for better security and compatibility with existing network infrastructure. Although SSL does introduce a latency penalty, we believe that the long-term future of the web depends on a secure network connection. In addition, the use of SSL is necessary to ensure that communication across existing proxies is not broken."

That said, the C++ Flip server in the Chromium repository does support running without SSL, and the Chromium browser can be configured to support this.

PS: There's also an existing node.js implementation, see http://www.chromium.org/spdy.


If you want to test your SPDY server locally and without TLS, you can force chrome to use SPDY even without the NPN upgrade. To do so, pass --use-spdy=no-ssl to Chrome when you load it up.

You can confirm that the flag is registered by opening chrome://net-internals/#spdy and checking in there.


If you are implementing a SPDY server using node-spdy, then you can use the plain: true, ssl: false options to achieve what you want.

Its possible to make requests to plain: true spdy-server using spdycat cli utility, specifying protocol version explicitly (-3 or -2 and --no-tls). To use it from browser, you will need to start chrome with --use-spdy=no-ssl flag.

But please keep in mind, that SPDY is supposed to on TLS(SSL) server or behind TLS(SSL) terminator, and otherwise not-suitable for serving web-content.

https://github.com/indutny/node-spdy/issues/103


I would suggest QUIC protocol which is in development and base on UDP instead of TCP/TLS but still has the benefit like SPDY and Chrome has supported it

0

上一篇:

下一篇:

精彩评论

暂无评论...
验证码 换一张
取 消

最新问答

问答排行榜