[viraptor]

With all the buzz already surrounding SPDY and the number of existing implementations out there... what are the chances that HTTP-2.0 will simply never get the traction it needs for real applications?

I mean SPDY is here and almost every server can handle it already. (where can != is configured to by default) If google pulls features from HTTP-2.0 into SPDY-1.x in the next couple of months, what would be the benefit of anyone doing HTTP-2.0?

[pilif]

It is my understanding that it's very likely that HTTP 2.0 will be SPDY - maybe with some added extensions, but the basis will be SPDY.

A clear case where a working and apparently perfectly well backwards compatible vendor-specific implementation worked so well that it actually might get to be an official standard.

Now if only we could have SSL with name based virtual hosts or much wider use of IPv6 so that SPDY will actually be useful for a wide range of server administrators.

[kelnos]

Now if only we could have SSL with name based virtual hosts

We can: it's called SNI (http://en.wikipedia.org/wiki/Server_Name_Indication). Unfortunately browser support isn't quite there; recent versions the major desktop browsers do support it, but e.g. the stock Android browser does not (because Apache HttpClient does not).

[aaronblohowiak]

We wouldn't need SSL with name-based virtual hosts if web browsers could use SRV records (and thus connect to different ports, so the server would know which cert to cough up without requiring the name.)

[kelnos]

This doesn't really scale. Every SSL-protected vhost then needs its own port on the server. In current practice there are probably plenty of free ports, but it just seems like a poor choice overall.

(Regardless, as I mentioned above, name-based vhosts work just fine with HTTPS, using SNI. Much easier to fill in the gaps in browser support for SNI than to get everyone to adopt SRV records.)

[sp332]

HTTP 2.0 has been in the works for a long time. It's picked up again recently, after the HTTP-NG working group disbanded in 1998. The working group will take some features that SPDY has shown to be useful and stable and integrate them into the spec. They are also looking at parts of Microsoft's "Speed and Mobility" protocol.

[lolcraft]

I understood the article said that SPDY would be the next version of HTTP 2.0, just standarized and not in control of Google (in theory). Which makes a lot of sense, for both server and browser implementors, and Google. I guess they wouldn't want to be the next Microsoft, not on purpose at least.

[josteink]

SPDY is overrated and only has traction because Google decided to make it. So far the data shows that the severely limited gains it provides, it provides at the cost of significant complexity.

I sure as hell could appreciate a new HTTP-standard, which was brought to the field by having professionals (maybe even IETF!) work together and reason about things publically, not just have Google hijack the process, dump shit out, saying "that's what we have implemented. if you want to compete with us, you will have to take this package", and then after the fact release some docs and claim it's open.

You know. SPDY just smells bad wherever you look. I'd like for the new HTTP protocol to be something you can trust

[elktea]

> So far the data shows that the severely limited gains it provides, it provides at the cost of significant complexity.

Source?

[josteink]

HTTP: Stateless, simple, plain-text, open, extendable. One request, one resource. Etc.

SPDY: Not-stateless, not-plaintext, includes complecting factors like prioritization and multiplexing. I say that is several orders of magnitudes of increased complexity and uncertainty baked into a protocol.

Result: Much less than an order of magnitude in improved response-time.

I say SPDY comes at such a cost that it cannot be considered worth it. Especially when you consider it comes at the added cost of handing over control of one of internet's main protocol's to a single company to be developed behind closed doors, such as Google is already doing with SPDY.

I'm flabbegastered that people aren't reacting to this. Had Microsoft being doing anything like this, people would be calling their senators to start investigations. But with Google it is evidently all cool.

You'd think people would remember the cost of handing over the internet to one single company, when the results of last time we did that is still plaguing us today (IE).

As for source, this one should do: http://www.theverge.com/2012/5/3/2995881/google-spdy-speed-t...

[0xABADC0DA]

> I sure as hell could appreciate a new HTTP-standard, which was brought to the field by having professionals (maybe even IETF!) work together and reason about things publically

This is a good point, for instance the developers of Spdy don't actually compare it to HTTP pipelining. They don't measure the effect of 'head of line blocking', just assuming it is a major problem. They don't consider that the protocol performs worse than HTTP over satellite and similar links. Neither the design choices nor specific details have been vetted or backed up by real deliberations.

There are tons of ways a committee of experts could improve Spdy, but it looks like Google is just going to show up with their draft RFC and demand a rubber stamp.

But this is just typical Google. Even when they do work with committees they show up and for instance say 'add big integers to JavaScript or else' (the 'or else' being Dart).

[josteink]

Spdy is already being further developed behind closed door, like a closed standard, owned by Google.

This should really be enough of a reason not to trust them with the task of developing this protocol.

http://www.theverge.com/2012/5/3/2995881/google-spdy-speed-t...

[0xABADC0DA]

https://developers.google.com/speed/articles/spdy-for-mobile

- doesn't include DNS lookup times

- doesn't include packet loss

- doesn't compare to pipelining

First two mean the claimed speedup isn't measuring the whole real time. Third is just amazing... the stock Android browser even uses pipelining. Basically pipelining gives the same benefits as Spdy and they really, really don't want to admit this.

http://www.belshe.com/2012/03/29/comments-on-microsofts-spdy...

This is what I'm talking about... every one of Microsoft's changes he identifies as b-h is a positive change. That he can't see it I guess is a testament to being young and inexperienced.