Daniel Stenberg, profile picture
Uploaded byDaniel Stenberg
531 views

HTTP/3 is next generation HTTP

The document discusses the evolution of HTTP from versions 1.1 and 2 to HTTP/3, which utilizes QUIC, a new transport protocol over UDP. It highlights the benefits of HTTP/3, including faster handshakes and improved performance, while acknowledging the challenges in transitioning due to middle-boxes and existing infrastructure. Overall, HTTP/3 promises enhanced encryption and stream management, with its adoption expected to build over time.

Embed presentation

Downloaded 16 times
is next generation HTTP Is it enough? Daniel Stenberg GOTOpia November 2020
Daniel Stenberg @bagderhttps://daniel.haxx.se
Daniel Stenberg @bagder
Daniel Stenberg @bagder
HTTP 1 to 2 to 3HTTP 1 to 2 to 3 ProblemsProblems Why QUIC and how it worksWhy QUIC and how it works HTTP/3HTTP/3 ChallengesChallenges Coming soon!Coming soon! @bagder@bagder
Q&A in the end!Q&A in the end! @bagder@bagder …… and in #programming in the GOTOpia slackand in #programming in the GOTOpia slack
HTTP/1 HTTP/2 HTTP/3 @bagder@bagder
Under the hood GET / HTTP/1.1 Host: www.example.com Accept: */* User-Agent: HTTP-eats-the-world/2020 HTTP/1.1 200 OK Date: Thu, 09 Nov 2018 14:49:00 GMT Server: my-favorite v3 Last-Modified: Tue, 13 Jun 2000 12:10:00 GMT Content-Length: 12345 Set-Cookie: this-is-simple=yeah-really; Content-Type: text/html [content] @bagder@bagder
HTTP started done over TCP @bagder@bagder
TCPTCP TCP is transport over IP Establishes a “connection” 3-way handshake Resends lost packages A reliable byte stream Clear text @bagder@bagder
HTTPS means TCP + TLS + HTTP @bagder@bagder
@bagder@bagder Web pages over HTTPS in Firefox
@bagder@bagder Web pages over HTTPS
TLSTLS TLS is done over TCP for HTTP/1 or 2 Transport Layer Security Additional handshake Privacy and security @bagder@bagder
Classic HTTPS stack IP TCP TLS HTTP @bagder@bagder
HTTP over TCP @bagder@bagder
HTTP/1.1HTTP/1.1 Shipped January 1997 Many parallel TCP connections Better but ineffective TCP use HTTP head-of-line-blocking Numerous work-arounds @bagder@bagder
HTTP/2HTTP/2 Shipped May 2015 Uses single connection per host Many parallel streams TCP head-of-line-blocking @bagder@bagder
OssificationOssification Internet is full of boxes Routers, gateways, firewalls, load balancers, NATs... Boxes run software to handle network data Middle-boxes work on existing protocols Upgrade much slower than edges @bagder@bagder
Internet WWW @bagder@bagder
Middle-boxes prevent HTTP/2 in clear textHTTP/2 in clear text TCP improvements like TFOTCP improvements like TFO TCP/UDP replacementsTCP/UDP replacements HTTP brotliHTTP brotli Future innovationsFuture innovations …… unless encryptedunless encrypted @bagder@bagder
Improvement in spite of ossification @bagder@bagder
@bagder@bagder
@bagder@bagder
A new transport protocol @bagder@bagder
Built on experiences by Google QUIC Google deployed “http2 frames over UDP”-QUIC in 2013Google deployed “http2 frames over UDP”-QUIC in 2013 Widely used clientWidely used client Widely used web servicesWidely used web services Proven to work at web scaleProven to work at web scale Taken to the IETF in 2015Taken to the IETF in 2015 QUIC working group started 2016QUIC working group started 2016 IETF QUIC is now very different than Google QUIC wasIETF QUIC is now very different than Google QUIC was @bagder@bagder
Improvements TCP head of line blockingTCP head of line blocking Faster handshakesFaster handshakes Earlier dataEarlier data Connection-IDConnection-ID More encryption, alwaysMore encryption, always Future developmentFuture development @bagder@bagder
Build on top of UDP TCP and UDP remain “the ones”TCP and UDP remain “the ones” Use UDP instead of IPUse UDP instead of IP Reliable transport protocol - inReliable transport protocol - in user-spaceuser-space A little like TCP + TLSA little like TCP + TLS @bagder@bagder
Independent streamsIndependent streams TCPTCP QUICQUIC @bagder@bagder
Application protocols over QUICApplication protocols over QUIC Streams for free Could be “any protocol” HTTP worked on as the first Others are planned to follow @bagder@bagder
HTTP/3 = HTTP over QUIC @bagder@bagder
HTTP – same but different RequestRequest - method + path- method + path - headers- headers - body- body ResponseResponse - response code- response code - headers- headers - body- body @bagder@bagder
HTTP – same but different HTTP/1 – in ASCII over TCP HTTP/2 – binary multiplexed over TCP HTTP/3 – binary over multiplexed QUIC @bagder@bagder
HTTPS stacks: old vs new TCP TLS HTTP/2 UDP HTTP/3 QUIC TLS 1.3 IP HTTP/1 @bagder@bagder streams
HTTP feature comparison @bagder@bagder HTTP/2 HTTP/3 Transport TCP QUIC Streams HTTP/2 QUIC Clear-text version Yes No Independent streams No Yes Header compression HPACK QPACK Server push Yes Yes Early data In theory Yes 0-RTT Handshake No Yes Prioritization Messy Changes
HTTP/3 is fasterHTTP/3 is faster Faster handshakes Improved loss-recovery Early data that works The independent streams By how much remains to be measured! @bagder@bagder (Thanks to QUIC)(Thanks to QUIC)
What they sayWhat they say “We've found that IETF QUIC significantly outperforms HTTP over TLS 1.3 over TCP.” / Google “QUIC and HTTP/3 generally outperform TCP and HTTP/2, which in turn outperform TCP and HTTP/1.1.” / Facebook @bagder@bagder
HTTPS:// is TCP? HTTPS:// URLs are everywhereHTTPS:// URLs are everywhere TCP (and TLS) on TCP port 443TCP (and TLS) on TCP port 443 @bagder@bagder
This service - over there! The Alt-Svc: response header Another host, protocol or port number is the same “origin” This site also runs on HTTP/3 “over there”, for the next NNNN seconds @bagder@bagder
Race connections? Might be faster Probably needed anyway QUIC connections verify the cert HTTPS RR – alt-svc: done in DNS @bagder@bagder
Will HTTP/3 deliver? @bagder@bagder
UDP challenges 3-7% of QUIC attempts fail Clients need fall back algorithms QUIC looks like a DDOS attack @bagder@bagder
CPU hog higher CPU use Unoptimized UDP stacks Non-ideal UDP APIs Missing hardware offload @bagder@bagder
The TLS situation (1/3) TLS was made for TCP TLS is sent over TCP as records containing individual messages QUIC uses TLS messages No TLS library support(ed) TLS messages QUIC also needs additional secrets @bagder@bagder
The TLS situation (2/3) @bagder@bagder Record 0 Message 0 Message 1 Record 1 Message 2 Message 3TCPTCP Message 0 Message 1 Message 2 Message 3 QUICQUIC
The TLS situation (3/3) OpenSSL is the world’s leading TLS library OpenSSL postponed QUIC work to “after 3.0” OpenSSL was an issue already for HTTP/2 deployment while further along @bagder@bagder
Userland All QUIC stacks are user-land No standard QUIC API Will it be moved to kernels? @bagder@bagder
Tooling Needs new tooling Hooray for qlog & qvis @bagder@bagder
Ship date @bagder@bagder Early 2021?
Implementations Over a dozen QUIC and HTTP/3 implementations Google, Mozilla, Apple, Facebook, Microsoft, Akamai, Fastly, Cloudflare, F5, LiteSpeed, Apache, and more C, C++, Go, Rust, Python, Java, TypeScript, Erlang Monthly interops @bagder@bagder
HTTP/3 Implementation Status curl Chrome and Edge Canary, Firefox Nightly, Safari 14 Beta Caddy and LiteSpeed NGINX “tech preview” nginx-patch + quiche BoringSSL and GnuTLS Wireshark @bagder@bagder No Apache httpd No IIS No OpenSSL (PR #8797)
Browsers doing HTTP/3 @bagder@bagder --enable-quic --quic-version=h3-29 about:config network.http.http3.enabled Settings > Advanced > Experimental WebKit Features > HTTP3
Sites on HTTP/3 – right now! Facebook Instagram Google Youtube Cloudflare https://bagder.github.io/HTTP3-test/ @bagder@bagder
in ExperimentalExperimental h3-32 works! Alt-svcAlt-svc support is there Based on ngtcp2ngtcp2 and FallbackFallback is tricky @bagder@bagder Try it! Try it!
$ curl --http3 https://example.com/ HTTP/3 200 date: Wed, 09 Oct 2019 11:16:06 GMT content-type: text/html content-length: 10602 set-cookie: crazy=d8bc7e7; expires=Thu, 08-Oct-22 11:16:06 GMT; path=/; domain=example.com; alt-svc: h3-32=":443"; ma=86400 @bagder@bagder curl HTTP/3 command line
HTTP/3 will take timeHTTP/3 will take time HTTP/3 will grow slowerHTTP/3 will grow slower Some will stick to HTTP/2Some will stick to HTTP/2 QUIC is for the long termQUIC is for the long term @bagder@bagder
FutureFuture MultipathMultipath Unreliable streamsUnreliable streams More application protocolsMore application protocols @bagder@bagder Partial reliabilityPartial reliability
Take-aways HTTP/3 is comingHTTP/3 is coming HTTP/3 is always encryptedHTTP/3 is always encrypted Similar to HTTP/2 but over QUICSimilar to HTTP/2 but over QUIC QUIC is transport over UDPQUIC is transport over UDP Challenges to overcomeChallenges to overcome Early 2021?Early 2021? @bagder@bagder
HTTP/3 Explained https://daniel.haxx.se/http3-explained @bagder@bagder
Daniel Stenberg @bagder https://daniel.haxx.se/ Thank you!Thank you! Questions?Questions? @bagder@bagder
License This presentation is provided under the Creative Commons Attribution 4.0 International Public License @bagder@bagder
Links to data and more info QUIC drafts: https://quicwg.github.io/ DATAGRAM: https://tools.ietf.org/html/draft-pauly-quic-datagram-05 QUIC multipath: https://tools.ietf.org/html/draft-deconinck-quic-multipath-03 HTTPS stats Firefox: https://letsencrypt.org/stats/#percent-pageloads Chrome is deploying HTTP/3 and IETF QUIC: https://blog.chromium.org/2020/10/chrome-is-deploying-http3-and-ietf-quic.html How Facebook is bringing QUIC to billions: https://engineering.fb.com/2020/10/21/networking-traffic/how-facebook-is-bringing-quic-to-billions/ Web Transport: https://w3c.github.io/webtransport/ Images: http://www.simonstalenhag.se/ and https://pixabay.com/ HTTP/3 Explained: https://http3-explained.haxx.se/ QUIC implementations: https://github.com/quicwg/base-drafts/wiki/Implementations Nginx + quiche: https://github.com/cloudflare/quiche/tree/master/extras/nginx HTTPSSVC: https://tools.ietf.org/html/draft-ietf-dnsop-svcb-httpssvc-03 qlog: https://github.com/quiclog/internet-drafts qvis: https://qvis.edm.uhasselt.be Build curl with HTTP/3: https://github.com/curl/curl/blob/master/docs/HTTP3.md @bagder@bagder

More Related Content

PDF
curl better
byDaniel Stenberg
 
PDF
curl roadmap 2020
byDaniel Stenberg
 
PDF
common mistakes when using libcurl
byDaniel Stenberg
 
PDF
HTTP/3 in curl
byDaniel Stenberg
 
PDF
Getting started with libcurl
byDaniel Stenberg
 
PDF
HTTP/3 for everyone
byDaniel Stenberg
 
PDF
HTTP/3 in curl 2020
byDaniel Stenberg
 
PDF
Landing code in curl
byDaniel Stenberg
 
curl better
byDaniel Stenberg
 
curl roadmap 2020
byDaniel Stenberg
 
common mistakes when using libcurl
byDaniel Stenberg
 
HTTP/3 in curl
byDaniel Stenberg
 
Getting started with libcurl
byDaniel Stenberg
 
HTTP/3 for everyone
byDaniel Stenberg
 
HTTP/3 in curl 2020
byDaniel Stenberg
 
Landing code in curl
byDaniel Stenberg
 

What's hot

PDF
curl - a hobby project that conquered the world
byDaniel Stenberg
 
PDF
Testing curl for security
byDaniel Stenberg
 
PDF
HTTP/3, QUIC and streaming
byDaniel Stenberg
 
PDF
Http3 fullstackfest-2019
byDaniel Stenberg
 
PDF
Curl with rust
byDaniel Stenberg
 
PDF
Just curl it!
byDaniel Stenberg
 
PDF
HTTP/3
byDaniel Stenberg
 
PDF
HTTP/3 an early overview
byPraveen Kottarathil
 
PDF
DNS over HTTPS
byDaniel Stenberg
 
PDF
HTTP/3 over QUIC. All is new but still the same!
byDaniel Stenberg
 
PDF
stackconf 2020 | Speeding up Linux disk encryption by Ignat Korchagin
byNETWAYS
 
PDF
gRPC vs REST: let the battle begin!
byAlex Borysov
 
PDF
gRPC vs REST: let the battle begin!
byAlex Borysov
 
PDF
2018 IterateConf Deconstructing and Evolving REST Security
byDavid Blevins
 
PDF
Demystifying Docker Networking Devoxx MA 2017
byImad Hsissou
 
PDF
Learning Python with Minecraft and my Dad - PyOhio 2018
byHank Preston
 
PDF
What's new in FreeBSD 10
byGleb Smirnoff
 
PDF
Useful Python Libraries for Network Engineers - PyOhio 2018
byHank Preston
 
PDF
Modern Reconnaissance Phase on APT - protection layer
byShakacon
 
PDF
XFLTReat: a new dimension in tunnelling
byShakacon
 
curl - a hobby project that conquered the world
byDaniel Stenberg
 
Testing curl for security
byDaniel Stenberg
 
HTTP/3, QUIC and streaming
byDaniel Stenberg
 
Http3 fullstackfest-2019
byDaniel Stenberg
 
Curl with rust
byDaniel Stenberg
 
Just curl it!
byDaniel Stenberg
 
HTTP/3
byDaniel Stenberg
 
HTTP/3 an early overview
byPraveen Kottarathil
 
DNS over HTTPS
byDaniel Stenberg
 
HTTP/3 over QUIC. All is new but still the same!
byDaniel Stenberg
 
stackconf 2020 | Speeding up Linux disk encryption by Ignat Korchagin
byNETWAYS
 
gRPC vs REST: let the battle begin!
byAlex Borysov
 
gRPC vs REST: let the battle begin!
byAlex Borysov
 
2018 IterateConf Deconstructing and Evolving REST Security
byDavid Blevins
 
Demystifying Docker Networking Devoxx MA 2017
byImad Hsissou
 
Learning Python with Minecraft and my Dad - PyOhio 2018
byHank Preston
 
What's new in FreeBSD 10
byGleb Smirnoff
 
Useful Python Libraries for Network Engineers - PyOhio 2018
byHank Preston
 
Modern Reconnaissance Phase on APT - protection layer
byShakacon
 
XFLTReat: a new dimension in tunnelling
byShakacon
 

Similar to HTTP/3 is next generation HTTP

PDF
http3-quic-streaming-2020-200121234036.pdf
byJunZhao68
 
PDF
HTTP/3 in curl - curl up 2022
byDaniel Stenberg
 
PDF
A New Internet? Introduction to HTTP/2, QUIC and DOH
byAPNIC
 
PDF
PAC 2019 virtual Scott Moore
byNeotys
 
PDF
HTTP/3 where are we now? State of the art in our servers.
byJean-Frederic Clere
 
PDF
A new Internet? Intro to HTTP/2, QUIC, DoH and DNS over QUIC
byAPNIC
 
PPTX
HTTP 3.pptx
byDavidEzekiel14
 
PDF
Solving HTTP Problems with Code and Protocols
byC4Media
 
PDF
So that was HTTP/2, what's next?
byDaniel Stenberg
 
PDF
Http2
byDaniel Stenberg
 
PDF
03_clere-HTTP2 HTTP3 the State of the Art in Our Servers.pdf
byJean-Frederic Clere
 
PPTX
Next generation web protocols
byDaniel Austin
 
PDF
Learning HTTP 2 a practical guide for beginners First Edition Garza
byheynsmagat8k
 
PDF
HTTP/2 and QUICK protocols. Optimizing the Web stack for HTTP/2 era
bypeychevi
 
PDF
Web Performance Optimization with HTTP/3
bySangJin Kang
 
PPTX
HTML5, HTTP2, and You 1.1
byDaniel Austin
 
PPTX
Get Hands-On with NGINX and QUIC+HTTP/3
byNGINX, Inc.
 
PDF
HTTP/2 - for TCP/IP Geeks Stockholm
byDaniel Stenberg
 
PPTX
HTTP/2 : why upgrading the web? - apidays Paris
byQuentin Adam
 
PPTX
HTTP/2 : why upgrading the web? - DjangoCon Europe 2016 Budapest
byQuentin Adam
 
http3-quic-streaming-2020-200121234036.pdf
byJunZhao68
 
HTTP/3 in curl - curl up 2022
byDaniel Stenberg
 
A New Internet? Introduction to HTTP/2, QUIC and DOH
byAPNIC
 
PAC 2019 virtual Scott Moore
byNeotys
 
HTTP/3 where are we now? State of the art in our servers.
byJean-Frederic Clere
 
A new Internet? Intro to HTTP/2, QUIC, DoH and DNS over QUIC
byAPNIC
 
HTTP 3.pptx
byDavidEzekiel14
 
Solving HTTP Problems with Code and Protocols
byC4Media
 
So that was HTTP/2, what's next?
byDaniel Stenberg
 
Http2
byDaniel Stenberg
 
03_clere-HTTP2 HTTP3 the State of the Art in Our Servers.pdf
byJean-Frederic Clere
 
Next generation web protocols
byDaniel Austin
 
Learning HTTP 2 a practical guide for beginners First Edition Garza
byheynsmagat8k
 
HTTP/2 and QUICK protocols. Optimizing the Web stack for HTTP/2 era
bypeychevi
 
Web Performance Optimization with HTTP/3
bySangJin Kang
 
HTML5, HTTP2, and You 1.1
byDaniel Austin
 
Get Hands-On with NGINX and QUIC+HTTP/3
byNGINX, Inc.
 
HTTP/2 - for TCP/IP Geeks Stockholm
byDaniel Stenberg
 
HTTP/2 : why upgrading the web? - apidays Paris
byQuentin Adam
 
HTTP/2 : why upgrading the web? - DjangoCon Europe 2016 Budapest
byQuentin Adam
 

More from Daniel Stenberg

PDF
AI slop attacks on the curl project - Daniel Stenberg
byDaniel Stenberg
 
PDF
giants, standing on the shoulders of - by Daniel Stenberg
byDaniel Stenberg
 
PDF
What comes after world domination with Daniel Stenberg, April 2025
byDaniel Stenberg
 
PDF
digital infrastruktur är open source-1.pdf
byDaniel Stenberg
 
PDF
Tightening every bolt at FOSDEM 2025 by Daniel Stenberg
byDaniel Stenberg
 
PDF
curl security by Daniel Stenberg from curl up 2024
byDaniel Stenberg
 
PDF
rust in curl by Daniel Stenberg from- curl up 2024
byDaniel Stenberg
 
PDF
trurl 2024 by Daniel Stenberg from curl up 2024
byDaniel Stenberg
 
PDF
curl future 2024 by Daniel Stenberg from curl up 2024
byDaniel Stenberg
 
PDF
The state of curl 2024 by Daniel Stenberg from curl up 2024
byDaniel Stenberg
 
PDF
mastering libcurl part 2
byDaniel Stenberg
 
PDF
mastering libcurl part 1
byDaniel Stenberg
 
PDF
curl - openfourm europe.pdf
byDaniel Stenberg
 
PDF
curl experiments - curl up 2022
byDaniel Stenberg
 
PDF
curl security - curl up 2022
byDaniel Stenberg
 
PDF
The state of curl 2022
byDaniel Stenberg
 
PDF
Let me tell you about curl
byDaniel Stenberg
 
PDF
The state of curl 2020
byDaniel Stenberg
 
AI slop attacks on the curl project - Daniel Stenberg
byDaniel Stenberg
 
giants, standing on the shoulders of - by Daniel Stenberg
byDaniel Stenberg
 
What comes after world domination with Daniel Stenberg, April 2025
byDaniel Stenberg
 
digital infrastruktur är open source-1.pdf
byDaniel Stenberg
 
Tightening every bolt at FOSDEM 2025 by Daniel Stenberg
byDaniel Stenberg
 
curl security by Daniel Stenberg from curl up 2024
byDaniel Stenberg
 
rust in curl by Daniel Stenberg from- curl up 2024
byDaniel Stenberg
 
trurl 2024 by Daniel Stenberg from curl up 2024
byDaniel Stenberg
 
curl future 2024 by Daniel Stenberg from curl up 2024
byDaniel Stenberg
 
The state of curl 2024 by Daniel Stenberg from curl up 2024
byDaniel Stenberg
 
mastering libcurl part 2
byDaniel Stenberg
 
mastering libcurl part 1
byDaniel Stenberg
 
curl - openfourm europe.pdf
byDaniel Stenberg
 
curl experiments - curl up 2022
byDaniel Stenberg
 
curl security - curl up 2022
byDaniel Stenberg
 
The state of curl 2022
byDaniel Stenberg
 
Let me tell you about curl
byDaniel Stenberg
 
The state of curl 2020
byDaniel Stenberg
 

Recently uploaded

PDF
Here are the winners of KALIDASA SAMMAN.
byglcppro
 
PPTX
Overview-of-Anti-DDoS-Solutions-On-Premise-vs-On-Cloud.pptx
bybunhongkruy
 
PDF
Greetings All Students Update 3 by LDMMIA
by©LDMMIA, ©Reiki Yoga
 
PDF
Beacon Kit slides tech framework for world game (s) pdf
bySteven McGee
 
PDF
Novi.LMS.Veseli.Cetvrtak.001 (1).pdfjjjj
byzoran radovic
 
DOCX
BestMaker.ai: The Complete Brand Story, Founder's Vision, and AI Creative Pla...
byssuser7381d6
 
PPTX
Lesson 3 - Methodology of Green Computing - part2 - dela cruz.pptx
byOmar Fernandez
 
PDF
Key Duties and Roles of an Ecommerce Developer Singapore
byHachi Web Solution
 
PPTX
Number_Guessing_Game_Dsbsbssbzboc[1].pptx
byfbinsta3426
 
PPTX
tacacstrianingforwirelessnetworkengineers
byRaviTejaTammineni
 
PPTX
Artificial Intelligence (AI) Technology Project Proposal _ by Slidesgo.pptx
byadhyaadi804
 
PPTX
Lesson 5 - Cyber attack Pt 3 - Matsuhashi.pptx
byOmar Fernandez
 
PDF
LMS.Golconda.Vanredni.Broj.001.pdfjjjjjjj
byzoran radovic
 
PPTX
Dalhousie University Diploma
by文凭办理维多利亚大学购买毕业证学位认证知乎【Q微:1954292140】
 
PPTX
Why-Enterprises-Should-Build-Their-Own-Core-Network-and-Own-Their-ASN-and-Pub...
bybunhongkruy
 
Here are the winners of KALIDASA SAMMAN.
byglcppro
 
Overview-of-Anti-DDoS-Solutions-On-Premise-vs-On-Cloud.pptx
bybunhongkruy
 
Greetings All Students Update 3 by LDMMIA
by©LDMMIA, ©Reiki Yoga
 
Beacon Kit slides tech framework for world game (s) pdf
bySteven McGee
 
Novi.LMS.Veseli.Cetvrtak.001 (1).pdfjjjj
byzoran radovic
 
BestMaker.ai: The Complete Brand Story, Founder's Vision, and AI Creative Pla...
byssuser7381d6
 
Lesson 3 - Methodology of Green Computing - part2 - dela cruz.pptx
byOmar Fernandez
 
Key Duties and Roles of an Ecommerce Developer Singapore
byHachi Web Solution
 
Number_Guessing_Game_Dsbsbssbzboc[1].pptx
byfbinsta3426
 
tacacstrianingforwirelessnetworkengineers
byRaviTejaTammineni
 
Artificial Intelligence (AI) Technology Project Proposal _ by Slidesgo.pptx
byadhyaadi804
 
Lesson 5 - Cyber attack Pt 3 - Matsuhashi.pptx
byOmar Fernandez
 
LMS.Golconda.Vanredni.Broj.001.pdfjjjjjjj
byzoran radovic
 
Dalhousie University Diploma
by文凭办理维多利亚大学购买毕业证学位认证知乎【Q微:1954292140】
 
Why-Enterprises-Should-Build-Their-Own-Core-Network-and-Own-Their-ASN-and-Pub...
bybunhongkruy
 

HTTP/3 is next generation HTTP

  • 1.
    is next generationHTTP Is it enough? Daniel Stenberg GOTOpia November 2020
  • 2.
  • 3.
  • 4.
  • 5.
    HTTP 1 to2 to 3HTTP 1 to 2 to 3 ProblemsProblems Why QUIC and how it worksWhy QUIC and how it works HTTP/3HTTP/3 ChallengesChallenges Coming soon!Coming soon! @bagder@bagder
  • 6.
    Q&A in theend!Q&A in the end! @bagder@bagder …… and in #programming in the GOTOpia slackand in #programming in the GOTOpia slack
  • 7.
  • 8.
    Under the hood GET/ HTTP/1.1 Host: www.example.com Accept: */* User-Agent: HTTP-eats-the-world/2020 HTTP/1.1 200 OK Date: Thu, 09 Nov 2018 14:49:00 GMT Server: my-favorite v3 Last-Modified: Tue, 13 Jun 2000 12:10:00 GMT Content-Length: 12345 Set-Cookie: this-is-simple=yeah-really; Content-Type: text/html [content] @bagder@bagder
  • 9.
    HTTP started doneover TCP @bagder@bagder
  • 10.
    TCPTCP TCP is transportover IP Establishes a “connection” 3-way handshake Resends lost packages A reliable byte stream Clear text @bagder@bagder
  • 11.
    HTTPS means TCP+ TLS + HTTP @bagder@bagder
  • 12.
  • 13.
  • 14.
    TLSTLS TLS is doneover TCP for HTTP/1 or 2 Transport Layer Security Additional handshake Privacy and security @bagder@bagder
  • 15.
  • 16.
  • 17.
    HTTP/1.1HTTP/1.1 Shipped January 1997 Manyparallel TCP connections Better but ineffective TCP use HTTP head-of-line-blocking Numerous work-arounds @bagder@bagder
  • 18.
    HTTP/2HTTP/2 Shipped May 2015 Usessingle connection per host Many parallel streams TCP head-of-line-blocking @bagder@bagder
  • 19.
    OssificationOssification Internet is fullof boxes Routers, gateways, firewalls, load balancers, NATs... Boxes run software to handle network data Middle-boxes work on existing protocols Upgrade much slower than edges @bagder@bagder
  • 20.
  • 21.
    Middle-boxes prevent HTTP/2 inclear textHTTP/2 in clear text TCP improvements like TFOTCP improvements like TFO TCP/UDP replacementsTCP/UDP replacements HTTP brotliHTTP brotli Future innovationsFuture innovations …… unless encryptedunless encrypted @bagder@bagder
  • 22.
    Improvement in spiteof ossification @bagder@bagder
  • 23.
  • 24.
  • 25.
    A new transportprotocol @bagder@bagder
  • 26.
    Built on experiencesby Google QUIC Google deployed “http2 frames over UDP”-QUIC in 2013Google deployed “http2 frames over UDP”-QUIC in 2013 Widely used clientWidely used client Widely used web servicesWidely used web services Proven to work at web scaleProven to work at web scale Taken to the IETF in 2015Taken to the IETF in 2015 QUIC working group started 2016QUIC working group started 2016 IETF QUIC is now very different than Google QUIC wasIETF QUIC is now very different than Google QUIC was @bagder@bagder
  • 27.
    Improvements TCP head ofline blockingTCP head of line blocking Faster handshakesFaster handshakes Earlier dataEarlier data Connection-IDConnection-ID More encryption, alwaysMore encryption, always Future developmentFuture development @bagder@bagder
  • 28.
    Build on topof UDP TCP and UDP remain “the ones”TCP and UDP remain “the ones” Use UDP instead of IPUse UDP instead of IP Reliable transport protocol - inReliable transport protocol - in user-spaceuser-space A little like TCP + TLSA little like TCP + TLS @bagder@bagder
  • 29.
  • 30.
    Application protocols overQUICApplication protocols over QUIC Streams for free Could be “any protocol” HTTP worked on as the first Others are planned to follow @bagder@bagder
  • 31.
    HTTP/3 = HTTPover QUIC @bagder@bagder
  • 32.
    HTTP – samebut different RequestRequest - method + path- method + path - headers- headers - body- body ResponseResponse - response code- response code - headers- headers - body- body @bagder@bagder
  • 33.
    HTTP – samebut different HTTP/1 – in ASCII over TCP HTTP/2 – binary multiplexed over TCP HTTP/3 – binary over multiplexed QUIC @bagder@bagder
  • 34.
    HTTPS stacks: oldvs new TCP TLS HTTP/2 UDP HTTP/3 QUIC TLS 1.3 IP HTTP/1 @bagder@bagder streams
  • 35.
    HTTP feature comparison @bagder@bagder HTTP/2HTTP/3 Transport TCP QUIC Streams HTTP/2 QUIC Clear-text version Yes No Independent streams No Yes Header compression HPACK QPACK Server push Yes Yes Early data In theory Yes 0-RTT Handshake No Yes Prioritization Messy Changes
  • 36.
    HTTP/3 is fasterHTTP/3is faster Faster handshakes Improved loss-recovery Early data that works The independent streams By how much remains to be measured! @bagder@bagder (Thanks to QUIC)(Thanks to QUIC)
  • 37.
    What they sayWhatthey say “We've found that IETF QUIC significantly outperforms HTTP over TLS 1.3 over TCP.” / Google “QUIC and HTTP/3 generally outperform TCP and HTTP/2, which in turn outperform TCP and HTTP/1.1.” / Facebook @bagder@bagder
  • 38.
    HTTPS:// is TCP? HTTPS://URLs are everywhereHTTPS:// URLs are everywhere TCP (and TLS) on TCP port 443TCP (and TLS) on TCP port 443 @bagder@bagder
  • 39.
    This service -over there! The Alt-Svc: response header Another host, protocol or port number is the same “origin” This site also runs on HTTP/3 “over there”, for the next NNNN seconds @bagder@bagder
  • 40.
    Race connections? Might befaster Probably needed anyway QUIC connections verify the cert HTTPS RR – alt-svc: done in DNS @bagder@bagder
  • 41.
  • 42.
    UDP challenges 3-7% ofQUIC attempts fail Clients need fall back algorithms QUIC looks like a DDOS attack @bagder@bagder
  • 43.
    CPU hog higher CPUuse Unoptimized UDP stacks Non-ideal UDP APIs Missing hardware offload @bagder@bagder
  • 44.
    The TLS situation(1/3) TLS was made for TCP TLS is sent over TCP as records containing individual messages QUIC uses TLS messages No TLS library support(ed) TLS messages QUIC also needs additional secrets @bagder@bagder
  • 45.
    The TLS situation(2/3) @bagder@bagder Record 0 Message 0 Message 1 Record 1 Message 2 Message 3TCPTCP Message 0 Message 1 Message 2 Message 3 QUICQUIC
  • 46.
    The TLS situation(3/3) OpenSSL is the world’s leading TLS library OpenSSL postponed QUIC work to “after 3.0” OpenSSL was an issue already for HTTP/2 deployment while further along @bagder@bagder
  • 47.
    Userland All QUIC stacksare user-land No standard QUIC API Will it be moved to kernels? @bagder@bagder
  • 48.
    Tooling Needs new tooling Hoorayfor qlog & qvis @bagder@bagder
  • 49.
  • 50.
    Implementations Over a dozenQUIC and HTTP/3 implementations Google, Mozilla, Apple, Facebook, Microsoft, Akamai, Fastly, Cloudflare, F5, LiteSpeed, Apache, and more C, C++, Go, Rust, Python, Java, TypeScript, Erlang Monthly interops @bagder@bagder
  • 51.
    HTTP/3 Implementation Status curl Chromeand Edge Canary, Firefox Nightly, Safari 14 Beta Caddy and LiteSpeed NGINX “tech preview” nginx-patch + quiche BoringSSL and GnuTLS Wireshark @bagder@bagder No Apache httpd No IIS No OpenSSL (PR #8797)
  • 52.
  • 53.
    Sites on HTTP/3– right now! Facebook Instagram Google Youtube Cloudflare https://bagder.github.io/HTTP3-test/ @bagder@bagder
  • 54.
    in ExperimentalExperimental h3-32 works! Alt-svcAlt-svcsupport is there Based on ngtcp2ngtcp2 and FallbackFallback is tricky @bagder@bagder Try it! Try it!
  • 55.
    $ curl --http3https://example.com/ HTTP/3 200 date: Wed, 09 Oct 2019 11:16:06 GMT content-type: text/html content-length: 10602 set-cookie: crazy=d8bc7e7; expires=Thu, 08-Oct-22 11:16:06 GMT; path=/; domain=example.com; alt-svc: h3-32=":443"; ma=86400 @bagder@bagder curl HTTP/3 command line
  • 56.
    HTTP/3 will taketimeHTTP/3 will take time HTTP/3 will grow slowerHTTP/3 will grow slower Some will stick to HTTP/2Some will stick to HTTP/2 QUIC is for the long termQUIC is for the long term @bagder@bagder
  • 57.
    FutureFuture MultipathMultipath Unreliable streamsUnreliable streams Moreapplication protocolsMore application protocols @bagder@bagder Partial reliabilityPartial reliability
  • 58.
    Take-aways HTTP/3 is comingHTTP/3is coming HTTP/3 is always encryptedHTTP/3 is always encrypted Similar to HTTP/2 but over QUICSimilar to HTTP/2 but over QUIC QUIC is transport over UDPQUIC is transport over UDP Challenges to overcomeChallenges to overcome Early 2021?Early 2021? @bagder@bagder
  • 59.
  • 60.
  • 61.
    License This presentation isprovided under the Creative Commons Attribution 4.0 International Public License @bagder@bagder
  • 62.
    Links to dataand more info QUIC drafts: https://quicwg.github.io/ DATAGRAM: https://tools.ietf.org/html/draft-pauly-quic-datagram-05 QUIC multipath: https://tools.ietf.org/html/draft-deconinck-quic-multipath-03 HTTPS stats Firefox: https://letsencrypt.org/stats/#percent-pageloads Chrome is deploying HTTP/3 and IETF QUIC: https://blog.chromium.org/2020/10/chrome-is-deploying-http3-and-ietf-quic.html How Facebook is bringing QUIC to billions: https://engineering.fb.com/2020/10/21/networking-traffic/how-facebook-is-bringing-quic-to-billions/ Web Transport: https://w3c.github.io/webtransport/ Images: http://www.simonstalenhag.se/ and https://pixabay.com/ HTTP/3 Explained: https://http3-explained.haxx.se/ QUIC implementations: https://github.com/quicwg/base-drafts/wiki/Implementations Nginx + quiche: https://github.com/cloudflare/quiche/tree/master/extras/nginx HTTPSSVC: https://tools.ietf.org/html/draft-ietf-dnsop-svcb-httpssvc-03 qlog: https://github.com/quiclog/internet-drafts qvis: https://qvis.edm.uhasselt.be Build curl with HTTP/3: https://github.com/curl/curl/blob/master/docs/HTTP3.md @bagder@bagder