I started going to IETF meetings. Those events take place 3 times a year, with ~1000 people attending in person and another ~1000 remotely. A good chunk of those are paid to be there and some are employed by big companies like Apple and Google. This is the place where the fundamental fabric of the internet is constantly being improved. TLS 1.3, HTTP/3, MLS to name a few.
With this in mind I have no fucking clue what Moxie was on about when he said interoperable protocols are stuck in the 1990s.
Issa
in reply to Daniel Gultsch • • •who is moxie? moxie marlinspike ?
also, any agenda for crypotgraphy sujbects?
Giacomo Tesio
in reply to Daniel Gultsch • • •#QUIC (and #HTTP3) exists to serve the interests and needs of #Google.
In particular 0-RTT is basically a low-level cookie that allows deterministic user tracking below and before #http: if it will ever spread, disabling or deleting cookies, even out-lawing them, won't be a issue for #SurveillanceCapitalism.
So these days what happens at #IETF is much more lobbying than engineering. Overpaid engineers lobby against the users to further cement the power of their corporations.
I wouldn't call these as "improvements".
These days, sadly, IETF is the place where the fundamental fabric of the internet is constantly being ^^enshittified**.
@lorenzo@snac.bobadin.icu
Electrostep
in reply to Giacomo Tesio • • •@giacomo @lorenzo
@bagder , you've written a book on the subject. It's the above claim of about #QUIC (and #HTTP3) true?
daniel:// stenberg://
in reply to Electrostep • • •Electrostep
in reply to daniel:// stenberg:// • • •@bagder @giacomo @lorenzo
Thank you for responding.
Just to add to the discussion, it would be great to see any counter-arguments for blog.cloudflare.com/even-faste…, if anyone has the time to contribute
Even faster connection establishment with QUIC 0-RTT resumption
The Cloudflare Blogchrysn
in reply to Giacomo Tesio • • •chrysn
in reply to chrysn • • •Giacomo Tesio
in reply to chrysn • • •Well @chrysn@chaos.social, I really appreciate your good intentions and will to fight for users' #privacy.
But I was not talking about you or the few independent developers who still volunteer at #IETF these days.
I was talking about IETF effects on the Internet standards as a whole.
I'm afraid the impact of a few independent engineers is not going to balance the power of organized and well funded #BigTech lobbyists.
As an example, let's stay on topic and look at RFC 9001, "Using #TLS to Secure #QUIC".
All that is said about the impoved ability of the server to identify (and thus track) the user are in two lines about session resumption (emphasys mine):
Now please notice the #hypocrisy: the wording is set up as if clients should opt-in, but it's pretty unlikely that users will be given a choice between a personal data leak at protocol level and an imperceptible increase in connection time, in particular with 0-RTT where " Endpoints cannot selectively disregard information that might alter the sending or processing of 0-RTT".
So while I'm pretty curious about @bagder@mastodon.social's perspective, I see that #Google managed to get a protocol designed to thwart user privacy and reduce its own server costs (even just the energy consumed during TLS hadshakes, amount to thousands dollars each day).
This way, if EU would decide to forbid tracking cookies at all, Google would get a competitive advantage over all other #AdsTech companies.
Now a properly working IETF would have rejected such shit, knowing that it would have been leveraged against people (and democracies) though #Chrome browsers and #Android defaults.
CC: @daniel@gultsch.social @lorenzo@snac.bobadin.icu
RFC 9001: Using TLS to Secure QUIC
www.rfc-editor.orgdaniel:// stenberg://
2025-11-10 00:06:47
daniel:// stenberg://
in reply to Giacomo Tesio • • •@giacomo @chrysn @lorenzo
> Now a properly working IETF would have rejected such shit
I think this shows that you don't really understand how IETF works and the how its specifications are made. Please keep me out of further comments in this thread.
Andrew Gallagher
in reply to Daniel Gultsch • • •