RFC 9113 - HTTP/2

Data di pubblicazione: giugno 2022
Stato: Standards Track
Autori: M. Thomson (Mozilla), C. Benfield (Apple Inc.)
Rende obsoleto: RFC 7540, RFC 8740

---

Riassunto (Abstract)

Questa specifica descrive un'espressione ottimizzata della semantica dell'Hypertext Transfer Protocol (HTTP), denominata HTTP versione 2 (HTTP/2). HTTP/2 consente un uso più efficiente delle risorse di rete e una latenza ridotta introducendo la compressione dei campi (Field Compression) e consentendo scambi simultanei multipli sulla stessa connessione.

Questo documento rende obsoleti gli RFC 7540 e 8740.

---

Indice (Contents)

• 1. Introduction (Introduzione)
• 2. HTTP/2 Protocol Overview (Panoramica del protocollo HTTP/2)
  • 2.1 Document Organization
  • 2.2 Conventions and Terminology
• 3. Starting HTTP/2 (Avvio di HTTP/2)
  • 3.1 HTTP/2 Version Identification
  • 3.2 Starting HTTP/2 for "https" URIs
  • 3.3 Starting HTTP/2 with Prior Knowledge
  • 3.4 HTTP/2 Connection Preface
• 4. HTTP Frames (Frame HTTP)
  • 4.1 Frame Format
  • 4.2 Frame Size
  • 4.3 Field Section Compression and Decompression
• 5. Streams and Multiplexing (Flussi e multiplexing)
  • 5.1 Stream States
  • 5.2 Flow Control
  • 5.3 Prioritization
  • 5.4 Error Handling
  • 5.5 Extending HTTP/2
• 6. Frame Definitions (Definizioni dei frame)
  • 6.1 DATA
  • 6.2 HEADERS
  • 6.3 PRIORITY
  • 6.4 RST_STREAM
  • 6.5 SETTINGS
  • 6.6 PUSH_PROMISE
  • 6.7 PING
  • 6.8 GOAWAY
  • 6.9 WINDOW_UPDATE
  • 6.10 CONTINUATION
• 7. Error Codes (Codici di errore)
• 8. Expressing HTTP Semantics in HTTP/2 (Esprimere la semantica HTTP in HTTP/2)
  • 8.1 HTTP Message Framing
  • 8.2 HTTP Fields
  • 8.3 HTTP Control Data
  • 8.4 Server Push
  • 8.5 The CONNECT Method
  • 8.6 The Upgrade Header Field
  • 8.7 Request Reliability
  • 8.8 Examples
• 9. HTTP/2 Connections (Connessioni HTTP/2)
  • 9.1 Connection Management
  • 9.2 Use of TLS Features
• 10. Security Considerations (Considerazioni sulla sicurezza)
  • 10.1 Server Authority
  • 10.2 Cross-Protocol Attacks
  • 10.3 Intermediary Encapsulation Attacks
  • 10.4 Cacheability of Pushed Responses
  • 10.5 Denial-of-Service Considerations
  • 10.6 Use of Compression
  • 10.7 Use of Padding
  • 10.8 Privacy Considerations
  • 10.9 Remote Timing Attacks
• 11. IANA Considerations (Considerazioni IANA)
  • 11.1 HTTP2-Settings Header Field Registration
  • 11.2 The h2c Upgrade Token
• 12. References (Riferimenti)
  • 12.1 Normative References
  • 12.2 Informative References

Appendici (Appendices)

• Appendix A. Prohibited TLS 1.2 Cipher Suites (Suite di cifratura TLS 1.2 proibite)
• Appendix B. Changes from RFC 7540 (Modifiche rispetto a RFC 7540)

---

Risorse correlate

• Testo ufficiale: RFC 9113
• Pagina ufficiale: RFC 9113 DataTracker
• Errata: RFC Editor Errata

---