Fair warning: Half baked thoughts ahead.
Mark Baker counts as thought leader for me, esp. subtopic REST. He rails on the importance of visibility in internet scale systems in a recent post. So, this is for you, Mr. Baker: What is your opinion on HTTP's Connect and SSL/TLS tunneling in light of the need for visibility as a key enabler of internet scale? Doesn't security (specifically confidentiality) throw a pretty huge monkey wrench into the nice properties visibility affords the architecture? There is a lot of data that can flow cleartext, but businesses don't like it as much in my experience. I know I have seen Mr. Fielding highlighting the issue as something to attend to.
Once you are inside the firewall, is the term "internet-scale" really material anymore? Especially in the sense that the internet is a collection of autonomous but interconnected networks? That is, the relevant bits wrt internet scalability are the messages flowing between the firewalls. It would seem that the majority of the visibility necessary to gain the scale qualities in the architecture exist at the tcp and, more importantly, ip levels rather than the http levels (in spite of the increased semantic visibility provided by a RESTful protocol). I think that web services would benefit from that visibility as much as the REST.
Posted by: Mark Baker | 2005.04.05 at 12:31 PM