Phoronix reports the Mozilla Security Engineering team is planning to make their browser useless for browsing much of the World Wide Web, by deprecating insecure HTTP.
Richard Barnes of Mozilla writes:
In order to encourage web developers to move from HTTP to HTTPS, I would like to propose establishing a deprecation plan for HTTP without security. Broadly speaking, this plan would entail limiting new features to secure contexts, followed by gradually removing legacy features from insecure contexts. Having an overall program for HTTP deprecation makes a clear statement to the web community that the time for plaintext is over -- it tells the world that the new web uses HTTPS, so if you want to use new things, you need to provide security.
See also this document outlining the initial plans.
(Score: 5, Insightful) by c0lo on Wednesday April 15 2015, @06:37AM
How about for the reason of increasing the "encrypted noise" traffic, to make the detection of "encrypted, thus possible tasty, transmission" a bit harder for the snoops.
Be it only for increasing the pressure on various censoring firewalls of various countries in this world (pressure to move the majority of Web sites to "encrypted by default"). We'll take care of SSL's and CA's shortcomings a bit later, but let's start this journey, shall we?
https://www.youtube.com/watch?v=aoFiw2jMy-0 https://soylentnews.org/~MichaelDavidCrawford