Presentation is loading. Please wait.

Presentation is loading. Please wait.

Hypertext Transfer Protocol

Published byMyles Beasley Modified over 6 years ago

Similar presentations

Presentation on theme: "Hypertext Transfer Protocol"— Presentation transcript:

1 Hypertext Transfer Protocol
Anupam Joshi

2 HTTP1.0 Basics TCP protocol (not required)
Connection-oriented, 1 connection / request Stateless Request - Reply Version 1.0 is most prevalent -- version 1.1 is picking up

3 HTTP Versions Old: HTTP/0.9 Oldish: HTTP/1.0 Currentish: HTTP/1.1
When?: HTTP Next Generation

4 HTTP Chat between client and server in ISO Latin1 (Negotiable in 1.1)
CR LF separates lines in request/reply Format: request_method URL [protocol_version] <blank line> header_field: header_field_data

5 HTTP Requests Full request syntax: Methods: GET: return requested doc
Method SP Request-URI SP HTTP-Version CRLF Methods: GET: return requested doc HEAD: return header info about requested doc POST: treat doc as script and send data PUT: replace doc with data DELETE: delete doc

6 HTTP Requests Request-URI is an absolute URI (if server is a proxy) or absolute path Request header fields: Authorization From If-Modified-Since Referer User-Agent Accept Accept-Encoding

7 HTTP Requests Request data: if POST or PUT, Content-Length bytes of data follows after empty line

8 GET Requests Unconditional or conditional If-Modified-Since: date

9 HEAD Requests Same as GET, except no body No conditional requests

10 POST Requests Do something based on the URI given
Content-Length bytes long data follows Can result in no reply or some reply Shouldn’t cache responses!

11 HTTP Responses Simple response: no header, just data [ONLY if HTTP/0.9 request or server] Full response syntax: status_line header_fields <blank line> data

12 HTTP Responses Status line: Status code: 3-digit integer:
HTTP-Version SP Status-Code SP Reason-Phrase CRLF Status code: 3-digit integer: 1xx: informational (not used, but reserved) 2xx: Success (action complete) 3xx: Redirection (action incomplete) 4xx: Client error (bad request) 5xx: Server error (no can do) Reason phrase: a comment for humans

13 2xx Status Codes 200 OK 201 Created: URL created by POST
202 Accepted: accepted for later processing 203 Partial Information: “unofficial” info 204 No Content: done, but no output

14 Other Status Codes 304 Not Modified: response to a conditional GET
401 Unauthorized: need authorization to complete 403 Forbidden: have info, but no can do 404 Not Found: huh? 500 Internal Error: ouch

15 Access Authentication
Simple challenge-response authentication mechanism If no perms to get doc, server sends 401 (unauthorized) + WWW-Authenticate field WWW-Authenticate: auth_scheme realm=realm_value params Client re-requests with Authorization field Authorization: auth_scheme stuff

16 Basic Authorization Scheme
Based on user-agent authenticating with user-ID + passwd for each realm Realm is an opaque string for equality comparison with others Example challenge WWW-Authenticate: Basic realm=“SLNet News”

17 Basic Authorization Scheme
Client must send user-ID + passwd separated by ‘:’ in a base64 encoded string (<= 76 chars/line) Example response: Authorization: Basic QWxhZGRpbjpvc=Q2Ft

18 Basic Authorization Scheme
Not secure! Assumes: connection between client and server is a trusted carrier Clients should implement to talk with servers that use it

19 Security Considerations
Client authentication: basic isn’t safe Method safety: GET/HEAD should be just that Allow clients to treat POST in a special way Unannounced side effects of GET/HEAD: can’t hold user responsible! Abuse of server log information

20 Security Considerations
Transfer of sensitive information: applications must be careful Server: field.. can be abused by crackers Referer: field.. can expose private stuff From: field.. can break privacy or security policies

21 Problems with HTTP Doesn’t handle (well):
In class and want to all look at slides Low bandwidth connections “flash crowds” Pages containing dynamically updating text etc. Disconnected browsing Bad network usage Issues: Scaling, latency, bandwidth and disconnection

22 HTTP Next Generation Family of protocols
caching and replication of servers notification of changes client/server transport Replacement of HTTP/1.x, not fix

23 HTTP-NG Proposal Multiple, asynchronous requests over a single sonnection Server responds in any order or interleaved: “parallel” transfer Session layer protocol implemented with separate channels for control and data One data channel for each object. ASN.1 and PER for describing and encoding requests

Download ppt "Hypertext Transfer Protocol"

Similar presentations

Hypertext Transfer PROTOCOL ----HTTP Sen Wang CSE5232 Network Programming.

Hypertext Transfer PROTOCOL ----HTTP Sen Wang CSE5232 Network Programming.
TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.

TCP/IP Protocol Suite 1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 22 World Wide Web and HTTP.
HTTP – HyperText Transfer Protocol

HTTP – HyperText Transfer Protocol
HTTP By: Becky Fultz, Joe Flager, Katie Huston, Tom Packard, Allison Wilsey.

HTTP By: Becky Fultz, Joe Flager, Katie Huston, Tom Packard, Allison Wilsey.
Hypertext Transfer Protocol Kyle Roth Mark Hoover.

Hypertext Transfer Protocol Kyle Roth Mark Hoover.
HTTP Hypertext Transfer Protocol. HTTP messages HTTP is the language that web clients and web servers use to talk to each other –HTTP is largely “under.

HTTP Hypertext Transfer Protocol. HTTP messages HTTP is the language that web clients and web servers use to talk to each other –HTTP is largely “under.
How the web works: HTTP and CGI explained

How the web works: HTTP and CGI explained
2/9/2004 Web and HTTP February 9, 2004. 2/9/2004 Assignments Due – Reading and Warmup Work on Message of the Day.

2/9/2004 Web and HTTP February 9, /9/2004 Assignments Due – Reading and Warmup Work on Message of the Day.
Hypertext Transport Protocol CS - 328 Dick Steflik.

Hypertext Transport Protocol CS Dick Steflik.
 What is it ? What is it ?  URI,URN,URL URI,URN,URL  HTTP – methods HTTP – methods  HTTP Request Packets HTTP Request Packets  HTTP Request Headers.

 What is it ? What is it ?  URI,URN,URL URI,URN,URL  HTTP – methods HTTP – methods  HTTP Request Packets HTTP Request Packets  HTTP Request Headers.
Rensselaer Polytechnic Institute CSC-432 – Operating Systems David Goldschmidt, Ph.D.

Rensselaer Polytechnic Institute CSC-432 – Operating Systems David Goldschmidt, Ph.D.
FTP (File Transfer Protocol) & Telnet

FTP (File Transfer Protocol) & Telnet
_______________________________________________________________________________________________________________ E-Commerce: Fundamentals and Applications1.

_______________________________________________________________________________________________________________ E-Commerce: Fundamentals and Applications1.
HyperText Transfer Protocol (HTTP).  HTTP is the protocol that supports communication between web browsers and web servers.  A “Web Server” is a HTTP.

HyperText Transfer Protocol (HTTP).  HTTP is the protocol that supports communication between web browsers and web servers.  A “Web Server” is a HTTP.
CP476 Internet Computing Lecture 5 : HTTP, WWW and URL 1 Lecture 5. WWW, HTTP and URL Objective: to review the concepts of WWW to understand how HTTP works.

CP476 Internet Computing Lecture 5 : HTTP, WWW and URL 1 Lecture 5. WWW, HTTP and URL Objective: to review the concepts of WWW to understand how HTTP works.
Sistem Jaringan dan Komunikasi Data #9. DNS The Internet Directory Service  the Domain Name Service (DNS) provides mapping between host name & IP address.

Sistem Jaringan dan Komunikasi Data #9. DNS The Internet Directory Service  the Domain Name Service (DNS) provides mapping between host name & IP address.
The HyperText Transfer Protocol. History HTTP has been in use since 1990 (HTTP/0.9) HTTP/1.0 was defined in RFC 1945 (May 1996) and included metainformation.

The HyperText Transfer Protocol. History HTTP has been in use since 1990 (HTTP/0.9) HTTP/1.0 was defined in RFC 1945 (May 1996) and included metainformation.
Web HTTP Hypertext Transfer Protocol. Web Terminology ◘Message: The basic unit of HTTP communication, consisting of structured sequence of octets matching.

Web HTTP Hypertext Transfer Protocol. Web Terminology ◘Message: The basic unit of HTTP communication, consisting of structured sequence of octets matching.
_______________________________________________________________________________________________________________ E-Commerce: Fundamentals and Applications1.

_______________________________________________________________________________________________________________ E-Commerce: Fundamentals and Applications1.
HTTP Hypertext Transfer Protocol

HTTP Hypertext Transfer Protocol

Similar presentations

Ads by Google