Security Models of HTTP
- HTTP has a dual nature as an access protocol and as a message syntax
- As an information access protocol:
- Akin to SMTP, Telnet, RPC, etc
- Needs Session-oriented, channel protection
- As a message exchange syntax:
- Akin to MIME or WAIS/Z39.50
- Needs Message-oriented protection
Rohit Khare