> Something of the sort could be done. But to do so would require the HTTP > WG to be re-opened and there are many other proposals that would also > have to be considered. At least from a process point-of-view, it would just require a 4 week last call. Even if a WG were formed, it could have a narrow scope. it would not need to consider every proposal for a change or extension to HTTP. > Before any change is made to the HTTP protocol there has to be a > strategy for deployment of a new version of the HTTP protocol. Seems like HTTP has been haphazardly modified so many times that it is beyond the point where a 'strategy' could help. Nor is it immediately clear that a new version of the protocol would be needed or even useful in helping to add a negotiate kind of authentication scheme. Both of these arguments read like symptoms of second-system effect. Keith _______________________________________________ Ietf@xxxxxxxx https://www1.ietf.org/mailman/listinfo/ietf