Will BXXP Replace HTTP?

Stilgar writes: "Seems like one of the Internet architects, Marshall Rose, is at it again. This time he invented a Blocks Extensible Exchange Protocol (BXXP) which seems a *much* nicer alternative to the aging HTTP (if the IETF will give it a chance). Check out the story at NetworkWorldFusion news." From the article: "One special feature of a BXXP connection is it can carry multiple simultaneous exchanges of data - called channels - between users. For example, users can chat and transfer files at the same time from one application that employs a network connection. BXXP uses XML to frame the information it carries, but the information can be in any form including images, data or text."

changing a standard

[purefizz]

it may be that there are great advantages, but completely changing a protocol that has been the main-stay for so long is difficult, if not impossible!
kick some CAD

KISS

[jafuser]

If BXXP is significantly more complicated than HTTP, I don't see it replacing HTTP. HTTP (and HTML) became widely popular because they are very simple to write code for. If I have a quick program to throw together that makes a socket connection to a remote server to retrieve data from a custom CGI query, I'm going to use HTTP because it's a simple process of sending a URL as a request, then reading until EOF the results of that reqeust. If BXXP requires abstractions such as XML and the overhead of writing multithreaded code just to pull down a single document, then I'll stick to HTTP, thank you.

BXXP may find a niche, but I doubt it will replace HTTP.

Re:KISS

[MrJay]

Relax dude. You are way off.

You're griping about "HTTP", which is a *protocol*, reguarding menus and DHTML, which is a *FORMAT*.

I think what he means is BXXP may provide easy to use persistant connections, as opposed to HTTP which does not keep state between connections (keeping state is at best simulated with the use of cookies, and of course people can turn off or filter out cookies at their discretion... YAY!). His dependant-list problem may be eased by a better underlying protocol, since his DHTML apparantly needs to be in communication with the server. In order to communicate with the server, which protocol do you propose he should use? You guessed it...

Now as a software engineer I can tell you that writing JSP apps and Servlets become tedious at times because of HTTP. It was a decent thought at the time, and now is reaching critical mass. You know that there are spelling errors in various parts of the protocol that cannot be corrected? What kind of software has spelling errors? Not something that I could say was put through a fine-toothed comb.

Re:KISS

[bolthole]

What the hell are you talking about?
You're griping about "HTTP", which is a *protocol*, reguarding menus and DHTML, which is
a *FORMAT*.

And you top it all off with
"XML is a [...] truly robust protocol". Except again, XML is a FORMAT, not a protocol!

I really, really hope people aren't paying you money to design websites, if you cant tell the difference between a protocol and a format.

Re:KISS

[SlightlyMadman]

Well, as is stated in the article, the intent is not to replace HTTP, but, rather excell is certain areas where it currently falls short, namely robust online applications. HTTP is great for static web pages, but when you really get into coding business applications on the web, the current standard of perl/asp/jsp on-the-fly creation of html, with javascript/dhtml for cool and tricky visual effects, along with applets, and other such things, a project of all but the most minimal scope gets real messy real quick.

I've been waiting for this announcement for a while now. The world wide web just isnt used in the same way it was 5 or 6 years ago. The protocol is out of date. It just doesnt do the job anytmore. When I code a drop-down menu or something with DHTML, I cant help but feel like one of those hack street musicians. I'm just doing a little sleight-of-hand to make it look like a drop down menu, when it's really just a few hidden layers. It's such a mess to do. I knew XML would lead us to the revolution of a truly robust protocol ro make a REAL application a reality on the world wide web, let's hope BXXP is it!

Re:KISS

[SlipJig]

I agree completely - it's tremendously difficult to build a robust web app these days and still keep the code maintainable and clean, and BXXP sounds like something that (along with XML) could really clean things up and make the environment more like an environment and less like the wild west.

Speaking of XML, I wonder how this might fit in with XUL and/or other proposed standards for building XML-based GUI's? I think I see lots of potential for BXXP to provide a clean way to integrate an XML-based GUI with server processing. For example, the dependent-list problem - you can kluge this right now with DHTML and iframes, but I can see how BXXP might allow you to keep a channel open for updating the GUI on the fly....

BEEP - the correct acronym

[Lemm]

Yes, it's funny, I'll concede that. But when you think about it, it's the ideal acronym.

Blocks
Extensible
Exchange
Protocol.
That looks like BEEP to me. It's easier to pronounce than "ay she cheat chee peep" or however you end up mispronouncing "HTTP".

And as for "beex"... "bee ix bix"... "beep ex pexip"... ah, screw it, I'm calling it beep anyways! You can't make me call it "bxxp"!

(Hell, you can't even help me call it that... I'd rather dictate a thesis on the merits of Peter Piper picking pickled peppers. :) )

What stops a standard?

[WareW01f]

Just to shout out for a bit, in an age where browser source is open (Mozilla) as well as the servers (Apache), if there is a better protocol, implement it! Hell most of what is trendy in HTML is there only because Netscape/Micro$~1 thought they'd throw it in. If you document it, and release working models of the software into the wild, it will get used.

The same thing with DNS entries. The only thing stopping people up to now has been the fact that noone wants to foot the bill for alternative root servers. It makes you wonder if something like the distributed gnutella mentality would work for DNS look ups.

I guess I'm saying ditch this 'they' shit. Do it, and if it's a good idea, or if a ton of people start to use it, you can bet someones going to try and capitalize on it.

If you build it, they will come.

Re:multicasting

[Andreas+Bombe]

Multicasting isn't easy. Multicasting is not something that just needs to be implemented, it is still a subject of research, trying to find efficient ways to handle millions of endpoints on the Internet. The current experimental implementation (MBone) implements some experimental multicasting algorithms - some of them involve flooding to find out who wants something.

The question is who should manage receiver lists - the server, ISP's routers or multiple levels of routers - and how to do that without creating megabyte sized lists that can't be handled by routers without slowing them down immensely. Another question is how should the start/stop of a stream receive be handled - regularily initiated by server/router or by the client.

It's not for ecoonomic reasons that multicast hasn't caught on (hell, there'd be lots of economic reasons to push it on everyone!), it's that there really isn't any widely usable multicast mechanism ready yet.

Re:OO Shithole :)

[Steeltoe]

This is functional programming in my book: You describe what to do, not how to do it. Namely a specification.

OOP and functional programming is not contradictory.

Of course I wouldn't call this programming at all, or a protocol. I would call BXXP a meta-protocol.

- Steeltoe

whats the point?

[delmoi]

There are tons of tools out there that can speak HTTP, infact, HTTP is so simple that you could probably do it by hand (in fact, I know I've been both client and server)

And as far as 'multiple channels' that can be done with multiple HTTP connections over TCP. BXXP may be a little better, but it's got to be a lot better for people to want to use it over HTTP.

Re:Security and Privacy (somewhat OT)

[Kaa]

Well, the hard part in all this is the legal stuff.

Ahem. Communication protocols do not solve legal problems.

instead of needing to sniff on a router, there was a "secret" stream of data that went to some big government of corporate harddrive?

With government this is not a problem. Evidence obtained without a warrant it inadmissible and besides this amounts to illegal wiretapping and will cause huge outcry when (note: not if, when) detected.

With corporation this is somewhat of a problem, yet I don't see any ways in which new protocols would make logging of my actions easier. Not to mention that forking a stream of data is rather trivial and does not need any special protocols.

Kaa

Another layer=more bandwitdth

[Roast+Beef]

The way I'm reading this, BXXP is a framework, or a layer, on top of which it's very easy to implement other protocols. Sounds great for ease-of-use and prototyping, but like most things that make work easier, it adds overhead. If you've got things prewritten, it's not possible to completely optimize it.

Re:Sounds great...but why?

[hargettp]

Actually, I don't think I'm confused. You've hit the nail on the head: why create a protocol in the *application* layer, when there are protocols that solve these problems in lower-level layers?

I'm sure there are good reasons to re-implement these in the application layer. But what are they?

New Protocol

[bob4u2c]

BXXP (or BEEP) is a good start, but not quite what I want or need as a e-commerce developer.

Currently if I want to design a "fully" interactive site that behaves the same way an application would I'd have to write some kind of java gui, for portablility reasons, that communicates back and forth to some central server running a specialized program that listens on some unused port and processes my cryptic and hastily thrown together messages. However, this is a lot of work, and with my message structure changing every few days its extremely difficult to manage, since you have to change the server and client code.

What I'd like to see is a new protocol with its own server, an application server vs. the current web server. I envision something like an asynchronous connection where both ends pass standard messages back and forth in real time, something similar to the messages passed back and forth between an OS and an application. It would also have to have what everybody is screaming for, one persistant connection, encryption, user validation, and a whole slew of other things I can't think of now.

The main problem is agreeing on a standard messaging system that isn't OS specific, allows users to format data however they wish, and still provides a means for expansion without dozens of revisions before a stable and workable model is created.

Along with this there would need to be an update to web programming languages, yet another java package, or maybe even a whole new net language. This would turn the current web browser into an application browser, where one program could act as anything you wanted it to be. I suspect this is what MS is doing or intends to do, however I doubt they'll open the specifics to everyone, at least not without signing a disclosure agreement.

Well with all that out of the way all we need to do is come up with some acronym. I recomend nssmp (not so simple messaging protocol), or how about wrcwicp (who really cares what it's called protocol)?

Re:The Gaming Possibilities

[Th3+D0t]

This isn't really appropriate for games. There have been a lot of people here saying how it's too much overhead; in general, I disagree. But it is WAY too much overhead for games.

• For starters, it's based on TCP. TCP is reliable, delivering an inorder stream of data. In addition it will ALWAYS retransmit lost packets, and has an exponential backoff/slow start that tries to avoid congestion. These are wholy inappropriate for gaming applications, where the state of the game is constantly and rapidly changing, and if a packet is lost, fuck it, it won't matter in 1.5 seconds anyways. The exponential backoff could really screw over a game with lag. In addition streaming is not necessary, data should not always be dependant on earlier data. If reliability or order is needed, it can be solved with a 1-byte sequence number, TCP is overkill.
• XML is overkill. Most game packets are heavily compressed, and very minute. Usually, packets are stuck together and sent as ~400-1400 byte UDP packets. Formating game state data as an XML stream is not just inefficient, it's horribly stupid.
• If a game needed to mutliplex channels, it could do it internally, or open multiple UDP ports.

Sadly, as far as games go, it will probably be just another way to get around corporate firewalls :)
---

Multiple TCP connections

[tenarchits]

Multiple TCP connections don't have to be bad. Look at http://wind.lcs.mit.edu/projects/cm/. A nifty research project that mitigates the negative effects of multiple tcp connections.

BXXP is not a protocol

[Fzz]

I was at the IETF meeting in March where Marshall presented BXXP, and I think there's some misunderstanding about what BXXP really is. It isn't a complete protocol in the same whay that complete HTTP is a protocol. It's more of a protocol framework, which you layer new protocols on top of.

HTTP was designed as a single-use protocol. Because it's understood by firewalls, etc, it gets used for just about everything, even if it's not really appropriate.

BXXP aims to provide a well thought out common building block for a whole class of new network protocols. If HTTP was being designed after BXXP, then the obvious thing would have been to layer HTTP on top of BXXP.

So, really BXXP isn't intended to replace anything. It's intended to make it easier to deploy new protocols in the future.

-Fzz

You're forgetting one thing:

[Ars-Fartsica]

Does the group forwarding the protocol have the market share, or assent of a powerful standards committee, needed to make it a meaningful standard?

In this case, no, not even close.

The W3 has shelved HTTP-NG, and is instead focusing on SOAP/XML transport standards. They would likely ignore BXXP without a second thought.

On their own, Invisible Worlds has zilch chance of making this a de facto standard.

Re:Oh no

[Krellis]

You and others keep making these "example" XML documents, but who is to say that a BXXP document will look anything like them? Why couldn't it be:

<bxxp>
Content-Type: text/html
Content-Length: whatever
Other-Headers: Other-Info

<HTML>
my HTML document here
</HTML>
</bxxp>

There's no reason you need any more of a wrapper than one tag. All these assumptions are totally baseless. It _could_ be bloated, or it _could_ take no more than 13 extra bytes per request.

---
Tim Wilde
Gimme 42 daemons!

Re:Why multiplex over one TCP connection?

[fudboy]

Because multiple TCP connections do not share congestion information, it is possible for a greedy user to get more than his "fair share" of a pipe by using many parallel connections

Doesn't greedy user mean sophisticated user in this case? There's not much trouble there- that's the slashdot demographic(c). Anyway and most people are aolusers or otherwise 'newbies for life'. They are not going to utilize this 'weakness' unless there are apps written to do it for them.

Maybe you mean this would happen by opening too many ports on the remote server kinda (only sorta though) like a ddos attack? are you suggesting the latest in traffic managing protocols won't take ddos-like situations into account?

:)Fudboy

Re:HTTP

[Yamao]

However, the development of useful content on the server side requires each we publisher to incur an additional expense. As such, there must already be a critical mass of supported clients available for it to be cost effective for them to rewrite existing applications.

Would it be terribly difficult to write something that translates HTML into BXXP (or vice versa) for those not wishing to incur the overhead of doing something twice?

Re:Noo!! Not another scourge of hard to say letter

[ralmeida]

I constantly rue the fact that the "www.blahblah.com" convention won out over "web.blahblah.com". The amount of time I waste saying and listening to "Double-Yew Double-Yew Double-Yew" instead of the one syllable "Web" is enough to take an extra week of vacation every year. (thank the gods radio announcers have at least stopped saying "forward slash forward slash")

You know, WWW is the only acronym that has more syllables than the whole name (i.e., world wide web).

--

BXXP vs. PPP

[Edward+Kmett]

"A stream oriented method of encoding multiple simultaneous connections". Hrmm, I'm sorry. I think I heard of one once, in fact 2 or 3 of them, PPP or SLIP anyone?

Despite the moaning and groaning on the forum here about XML, I happen to like it. Its all well and good for keeping information in human readable form, and makes writing extractors fairly painless.

The main strength that it has is it could provide a mechanism to exchange freeform XML metainformation about the channels to the applications without requiring the applications to reinvent the wheel each time. I like this aspect of the protocol, but I think it could be done with less baggage, by leveraging the existing lower level protocols more.

The main barrier it has to adoption is that it is yet another protocol that will have to be micromanaged by firewalling software. I do like the fact that this could probably be run raw over any serial link, but again, you could just use PPP.

Re:BXXP vs. PPP

[Edward+Kmett]

I was not comparing PPP and HTTP. I was comparing PPP and BXXP. BXXP provides a free form method of creating communication channels over a single serial communication channel. PPP does the same.

The comparison of BXXP and HTTP was made by the author of this article NOT BY ME, and I am quite aware that HTTP and PPP have nothing to do with one another.

As I stated, the value provided by BXXP is that it can exchange freeform metainfo. I am agreeing with you here, but READ my post before flying off the handle.

I wasn't evaluating BXXP in an HTTP context, but merely as a means of opening channels and exchanging metainformation.

Troll Alert

[Ross+C.+Brackett]

This is a good troll - the best kind, actually. This is obviously not Sig 11, as anyone who checks the user profile can tell. However, the language of the troll is particularly convincing. Best of all, he/she/it makes a lot of good points. The gist of their argument is that BXXP is unnecessary - that TCP/HTTP already does everything that is needed. TCP does support more than 700kbps, HTTP 1.1 does permit persistence, etc. Very well done, and it's already trolled one or two people.

Moderate them down Troll. Moderate them up Funny. Just PLEASE don't moderate them Interesting, Informative, Insightful, or Flamebait, because they're not.

Re:Troll Alert

[Signal+11]

Actually, it really is me. There's a bug in the system - I can't login correctly, which is why I have to "shotgun" the system by posting without logging in - which is why all my posts for the past week have been +2'd by default. Sorry.. normally I wouldn't inflict this on people.. however, on with the show...

I'm going to skip over you calling me a troll. I may be misinformed. I may be wrong. but I'm not a troll.

Now, first, you got it backwards - TCP is not rate limited perse, however, if you consider that your max RWIN is typically 64k, and that it'll take 5ms to ack it, this means that 64 * (1000/5) = 12800, or alittle over 12MB/s. That's a good lan connection! However, if you increase it to about 100ms, which is my typical ping for my cable modem, my maximum bandwidth is a mere 640KB/s. Ow. Biiig difference. So, there's where my numbers come from. Now, about the persistence..

Persistence does you no good as you still need to request the data. Now, let's assume you have a 50kb webpage to download. We'll say the html is 5k, and there are 3 graphics on the page, 15k each.

TCP handshake will take about 150ms. This means 50ms to get there, 50ms to get back, and another 50 to get the final SYN/ACK. Now for the first request, another 50ms to send it. We're at 200ms. Server gets HTML page, we'll say it takes 5ms to do that and pipe it back out. We'll also say it does this all at once. 255ms later, we have the page. Now, we'll open 3 new connections for the images - 150ms for each. Now we're at 405ms. Images each take another 5ms to grab it, 50 ms to come back. 460ms. Rendering begins on your system by your browser. Now, we want to close the connection - the server already closed its remote connection probably with an RST pkt on the last piece of data. So another 50ms to send your RST pkt, 50ms to ack that, and now we're done.. grand total: 560ms.

Now, let's assume we could have done this via UDP all at once... again.. 50ms to send the query. 5ms to retrieve all 4 parts. another 50 to send it back. 105ms, your system begins rendering. As this is a stateless connection, no need to close it - if it failed, we'll retry. Congrats, you're done at a smoking 105ms vs. 560ms.

Now then, about me not being informative...

Re:Troll Alert

[Reality+Master+101]

However, if you increase it to about 100ms, which is my typical ping for my cable modem, my maximum bandwidth is a mere 640KB/s. Ow. Biiig difference. So, there's where my numbers come from.

Well, that would be true if morons designed TCP/IP, but fortunately that sort of protocol hasn't been used since XMODEM. TCP/IP will continue to transmit packets without waiting for an ACK of the previous one. This is referred to as a "sliding window" protocol. Of course, it will transmit only so many packets before it has to wait, which is the "window size".

Look up "sliding window" in your TCP/IP book ("Internetworking with TCP/IP by Comer is the usual recommendation) or you might even try a web search.

--

Re:Troll Alert

[Ross+C.+Brackett]

(Hands clapping slowly)

A very good show. You may have fooled everyone else, but you'll never fool me. The real Signal 11 will show himself - and you will be defeated.

Okay, *maybe* you've got some points, but you have to admit the combination of brazen bombastic statements and the wrong user ID did make for a highly suspicious post. Each of your points, if proven non-factual (especially the 780kbps comment) could be intpreted as sarcastic or trollish without a fair degree of context you failed to provide.

Sigh, at least in my mind it will always be a troll.

Re:Troll Alert

[Signal+11]

Either you didn't read my post and figure out that this IS what I was talking about, or your IQ is smaller than your waistline.

Re:Troll Alert

[TrollBoy3]

What the hell is it with all of this +2 rated crap?

Re:Aging??

[Guanix]

Actually, Dan Bernstein, the author of qmail, is already ready with QMTP (Quick Mail Transfer Protocol), a replacement for SMTP.

Sounds great...but why?

[hargettp]

I understand the limitations of HTTP (too many connections that are expensive to set up, no multiplexing of channels, not robust or consisent when handling errors, etc.) but why a new protocol--why not just use basic TCP or UDP sockets over IP? After all IP handles packet sizes, TCP manages packet retransmissions, etc. For protocols that don't need TCP services there's UDP.

After all, HTTP has only become overloaded because that's the one protocol that was pretty much guaranteed to make it through everyone's firewall, whether the firewall just blocked ports or actually sniffed packets. It would make sense to have a new meta-protocol, on a standard port or set of ports, so that true Net applications can communicate even through firewalls, but...does it justify a whole new protocol?

I dunno. It seems to me that current firewall designs--valuable though they are--are not a reason to duplicate existing protocols. With all due respect to BXXP's creator, it smacks to me of a case of NIH--building it just because he wanted to write a new protocol.

??

Firewall friendly != goes through firewalls...

[Cato]

Firewalls are there for a reason - if you tunnel other protocols over HTTP, you are bypassing the firewall and had better have a very good reason for doing so. Lots of vendors do this, including Microsoft with DCOM and many CORBA vendors as well, but that's not much of an excuse.

Firewall-hostile is a better term for protocols that carry many different types of data.

As a QoS weenie (see http://www.qosforum.com/) I also don't like the way that HTTP can carry many different types of data requiring different QoS (performance) levels, e.g.:

- DCOM over HTTP: needs fairly low latency
- CGI transactions: ditto
- RealAudio over HTTP: needs low loss, consistent bandwidth
- static pages and images: no particular QoS needed

The only way to handle this is to classify every type of HTTP interaction separately, using URLs to map packets into Gold, Silver, and Bronze QoS levels. This is feasible but fragile - as soon as the web-based app or website is updated, you may have to re-write these rules.

Even worse, HTTP/1.1 puts all interactions with a given host into a single TCP session (a good idea in many ways), which makes it a waste of time to prioritise some packets ahead of others - the receiving TCP implementation simply waits until the out of order packets arrive, sending a duplicate ACK in the meantime. Severe packet re-ordering may even lead to slow start in the sending TCP (three duplicate ACKs means slow start from a single packet window size).

Similar issues apply to security - you might want to encrypt only the transaction data and not bother encrypting images, for example, or route some data via a more secure network. SSL does solve some of these problems but requires application support.

Oh well, enough ranting - HTTP is a great protocol in many ways, but there are costs as well as benefits to abusing it to do things it was never meant to do...

Re:reliable datagrams

[Cato]

Do you have references on the reliable unicast protocols being worked on for IPv6 and Linux?

There are many reliable multicast protocols around, some of which at least should work for reliable unicast as well, e.g. RAMP (
http://www.metavr.com/rampDIS.html). See http://www.faqs.org/rfcs/rfc2357.html for criteria for reliable multicast protocols, has some good references.

There is also T/TCP, a variant of TCP which is intended for request/reply transactions - it lets you send data with the initial SYN request and get data back with the ACK, so it's not much less efficient than UDP-based protocols. It would be ideal for HTTP/1.0 but has not really been deployed much.

RADIUS uses its own reliable unicast approach over UDP, and is widely deployed, but it's not a separate re-usable protocol. See www.faqs.org for details.

Some problems with reliable unicast are:

- congestion control - there's no congestion window so it's very easy to overload router buffers and/or receiving host buffers, leading to excessive packet loss for the sender and for other network users

- spoofing - it's even easier to spoof these protocols than with TCP (I think this is why T/TCP never took off)

As for BXXP - I agree about difficulty of understanding what's going on. QoS-aware networks and firewalls all prefer one application mapping to one (static) port.

Java-like Protocol?

[Scythe0r]

"...provides reusable code for basic data exchange between systems"

Does this smell like Java to people? Obviously, the comparisons have to be limited considering the disparate usages of these two systems. It's definitely an exciting technology, and provided that backwards compatiability with the HTTP protocol is maintained (this should be trivial considering the extensibility of this spec)this could be a god-send (Just make sure it MAINTAINS STATE)

One thing that I'm worried about is the extensible nature of the spec. This would seem to present the same possibilities as the Sun/MS controversy over the proprietary MS instructions contained in their VM - what's to say that can't be done in a browser?

The article doesn't concentrate the exact nature of the extensibility of the BXXP speca and that worries me somewhat. Obviously, since it uses XML, objects can have context, but still I'm worried about 3rd parties (i.e. M$) creating proprietary "extensible" features.

Is there any more sources of information (other than the links provided) on this spec?

Re:multicasting

[Cato]

One big reason for multicast not catching on is the ability for a single multicast sender to cause congestion at many different points of a network, along with the problems of multicast network management. Until multicast becomes manageable its adoption will be quite slow. A useful paper on this is at
http://www.winsock2.com/multicast/whitepapers/ma naging.htm

There's some interesting work on fixing this, though - I forget the details but a recent IEEE Networking magazine had a special issue on multicast including info on why it's not been deployed yet.

Also, for small groups, there is a new protocol called SGM that runs over unicast UDP and unicast routing - the idea is that if you want to multicast to a group of 5-10 or so people, and there's a large number of such groups, you're better off forgetting about IGMP and multicast routing, and just including the list of recipients in the packet. Very neat, though it still requires router support. Some URLs on this:

http://www.computer.org/internet/v4n3/w3onwire-b .htm

http://www.ietf.org/internet-drafts/draft-boivie -sgm-00.txt

http://icairsvr.nwu.icair.org/sgm/

Re:The IETF draft for BXXP

[hobbit]

Here is your Daddy-o.

Hamish

Re:HTTP

[carlos_benj]

.... look at how long it's taking for HDTV or IPv6 to be adopted! Moving from a legacy communications protocol will probably take at least 5-10 years in a best case scenario.

Except that the difference between rolling out HDTV and a replacement for http is where the changes take place. With HDTV you have to upgrade the equipment at the broadcast and receiver end. You also have to deal with limited bandwidth for broadcasting that makes it difficult to serve both technologies at the same time. With a protocol change, you can transition more easily by including both standards in your browser and on the websites. How many sites already keep multiple formats on hand? Do you want frames or no frames? Do you want shockwave or no shockwave? Would you like to view the video in RealPlayer or Quicktime? I can update my browser for free. How much does that new HDTV box cost?

carlos

how would this work with apache?

[happystink]

The article mentions that they'll be writing this into apache hopefully (or a mod I guess), so can someone maybe give a succinct explanation on what exactly this would do? If it's governing the interacion between apache and the browser, would the browser need to completely be overhauled to be BXXP-aware also? Or am I missing something?

and yeah, I realize that the goal of this is for protocol development, but I am curious on how the apache stuff they mentioned would work. Thanks!

Re:How do we spell??

[Tigger's+Pet]

Can we learn to spell 'wheel' correctly please!! Or is this an Americanism that I'm not aware of as a 'dumb limey'??

Re:Aging??

[Phexro]

on the other hand, http is fairly simple, is proxy and firewall friendly, and it's ubiquitous. http is going to be here for quite some time, simply because of the amount of deployment - bxxp or no bxxp.

of course, look at how fast http superseded gopher.

of slightly more interest to me is the security implications of bxxp. since it's two-way, it could be difficult to filter, and opens up all sorts of interesting possibilities for propagation of virii and spam.

--

So what does IETF think of Napster/Gnutella?

[Loge]

The idea of new protocols being approved by the IETF got me thinking about what other technologies they might consider. It occurred to me that Napster and Gnutella potentially open up considerable possibilities for new application architectures as well, since they essentially provide a nice distributed storage & lookup mechanism that could be used for a variety of purposes besides pirating music.

Has the IETF weighed in on the Napster/Gnutella debate? If so, what do they have to say about the technical merits of those protocols?

Re:So what does IETF think of Napster/Gnutella?

[rbenech]

Good point. N/G should define a new 'shared' protocol...

Why HDTV?

[Pseudonymus+Bosch]

From what I understood, HDTV is a failure because it doesn't solve problems.

When you ask what's wrong with TV now, you find "content", "it's boring",...

The problems are with the content (that's why you are reading Slashdot instead of watching TV), not the image quality.

1050 o 1250 horizontal lines are not enough to spend the money at both the emitting and the receiving ends.
Of course, prices would go down after massive engagement, but there is not enough of inital adoption.

Digital TV on the other side promises more channels on the same medium. The content will as bad or worse, but there will be more of it. So Digital TV has more of a chance to replace PAL, SECAM & NTSC
__

Re:Marshall Rose's description

[Lozzer]

If he calls it a framework why isn't the acronym BXXF (or better still BEEF)?

Security and Privacy (somewhat OT)

[finkployd]

Not specifically in regards to this protocol, but I have a small reservation about dropping certain, well used protocols in favor of new ones.

When the Internet was being constructed by a few visionaries like Gore, there was little thought given to security, which is why we are still plagued with insecure protocols like http, (yes, I'm aware of https), telnet, ftp, pop3, etc. However, a blessing is that these protocols were not designed with privacy in mind one way or the other. Specifically, they were not designed to allow the powers that be (government, corporation, etc) to monitor and track activity on them. Let's face it, the internet is still by and large a pretty anonymous place. If I want to be paranoid, I have the ability to pretty much move about undetected.

Enter the 00s (as in year 2000), now the Internet has everyone's attention, and government (and corporations) are kicking themselves that they didn't approach Gore and have him build in monitoring into the protocols since they would LOVE to watch every little thing we do (companies want it because they would monitor customers for marketing reasons, governments want it because they could monitor citizens for 'security' reasons, kids want it because it tastes good, and parents like it because it's good for you).

Given this new era of "how can I get as much info as I possibly can on everyone", I'm always leary of new protocols and such, especially when they are designed to "replace" current ones. Perhaps my fears are completly unfounded in this case, but I think we should all be very watchful about anything 'new' protocol wise.

Finkployd

Re:Security and Privacy (somewhat OT)

[MattLesko]

I would care to disagree. The protocols in their current manner offer less security from censorship and tracking than other protocols. HTTP is done via plain-text communication channels, what's to stop a government entity from searching through that to find keywords (ever heard of ECHELON?), or a company like DoubleClick to carefully track your IP address across requests. Hell, check out this example of what HTTP tells the world about you. Servers give away information, ever heard of http://www.netcraft.com and how they get their statistics? The internet is hardly anonymous, any person with enough determination or resources could eventually trace back IP addresses or email to the sender. As recent articles on /. have shown (sorry, but not linked here), even creations like Gnutella, specifically designed to be free and anonymous, can be easily traced. While BXXP may not have security in mind as other replacements for outdated protocols have (like Secure Shell), it is unlikely a sinister govenment/coporate/communist conspiracy to make the internet less free.

Re:Security and Privacy (somewhat OT)

[Kaa]

Let's face it, the internet is still by and large a pretty anonymous place. If I want to be paranoid, I have the ability to pretty much move about undetected.

Well, that ain't so simple.

Internet has a lot of pseudo-privacy. This means that for Joe Q. Luser (and even for his sister Joanne D. Not-So-Luser) it is hard to find out who is the person behind a handle or a nick or a screen name or an e-mail address. However that's not true for for law enforcement. If you are not engaging in useful but inconvenient paranoia, it's fairly trivial for law enforcement (==gubmint) to trace you (usually courtesy of your IP) and produce a basic sequence of your activities (generally courtesy of your ISP's logs).

Thus "normal" internet usage is opaque to public but can be made transparent (at high cost in time and effort) to law enforcement agencies.

Of course, there are a bunch of tools that are capable, if skillfully used, to mask your identity. However by my highly scientific guess less than 0.001% of internent users actually use them.

government (and corporations) are kicking themselves that they didn't approach Gore and have him build in monitoring into the protocols since they would LOVE to watch every little thing we do

And what is it that you want to monitor? Most everything is unencrypted and freely readable by anybody with a sniffer or access to a router. If I want to know everything you do I can get a court warrant and attach a large hard drive to your ISP's gateway. I don't need anything from the protocols: the stream of IP packets is perfectly fine, thank you very much.

Kaa

Re:Security and Privacy (somewhat OT)

[finkployd]

And what is it that you want to monitor? Most everything is unencrypted and freely readable by anybody with a sniffer or access to a router. If I want to know everything you do I can get a court warrant and attach a large hard drive to your ISP's gateway. I don't need anything from the protocols: the stream of IP packets is perfectly fine, thank you very much.

Well, the hard part in all this is the legal stuff. You have to get a court order and go through all that. Imagine if a new protocol came into use where that wasn't necessary. Say, something that could open up multiple connections in a single socket (like the bxxp one) and instead of needing to sniff on a router, there was a "secret" stream of data that went to some big government of corporate harddrive? That is my concern with these "new" protocols.

Finkployd

URNs or URIs, Freenet, WBI

[Pseudonymus+Bosch]

For some years now, the W3C has been playing with the idea of URNs or URIs (I don't remember). These are an evolution of URL that don't specify machine location. But I have never found if there are suitable implementations.

Hacking HTML for multiple destinations is at most a kludge.

A promising thing is at Freenet. You specify what document you want and say nothing about it's location.

About load balancing, I remember that the WBI web proxy (somewhere at IBM's AlphaWorks) had an option to do a ping for every link in the page and insert an icon marking slow from fast ones. I found it interestin until I realized that final layout of the page had to wait for the slowest ping.
__

Re:XML for framing ?

[zero_offset]

You probably have that much unused blank space in the last packet of any file you send. Non-issue.

NFS does not assume UDP is reliable

[Christopher+Craig]

and niether should anything else. Datagrams are by nature unreliable. Anyone who believes otherwise needs to go right now to someone in protocol research and tell them the solution to the two generals problem.

NFS is stateless and works by sending the same datagram repeatedly until it receives an aknowledgement. That is, IMHO, a terrific use of UDP and shows the lack of need for a so called reliable datagram protocol. For a datagram protocol to be reliable it will have to send (and cache) some sort of packet number or something and then send a response back. You could already do the same thing by doing your own packet number chaching and acknowledgement with UDP.

Re:NFS does not assume UDP is reliable

[jetson123]

NFS used to run without NFS checksumming, meaning that it relied on the error correction of the underlying Ethernet. Nowadays, I suppose it is mostly run with checksumming.

As for implementing "my own packet number in user code", what kind of argument is that? I could also implement some form of reliable byte streams based on UDP in user code fairly easily.

But standardizing these kinds of protocols, we get several advantages. For example, we get interoperability. And people don't have to reinvent the wheel every time and the problem can be solved well once and for all (even a simple strategy like "resend if no acknowledgement" has many parameters, and it isn't necessarily even the right thing over a WAN). And, with a standard protocol, routers and other infrastructure actually knows more about the traffic and can help it along.

You are right that reliable datagrams aren't hard to implement: that's an argument that they should become standardized and become part of the TCP/IP protocol. Because even they are simple to implement, standardizing them has many advantages.

Re:Will acronyms replace words?

WTF? IMHO, and BTW, IANAL, but IIRC, BXXP is A-OK, i.e., BXXP != HTTP/FTP (so STFU about that), but AFAIK, BXXP could be used for chat via TCP/IP (like IRC, et al). OTOH, BXXP == XML, and with XML, YMMV.

Most of that was nonsense, but hey, it shows where things are heading. But NEways, I'm going AFK, BBIAM.

AC on /.
EOF

Re:A modest proposal

[FigWig]

There's an RFC covering an extension to TCP for LFPs (long, fat pipes). It allows larger packets to be sent by increasing the space used to hold packet size info (I think it uses some unused field). I don't know which RFC exactly, but it should be easy to look up.

The reason this is an issue is because a link that can transfer a huge amount of data but with high latency will end up being limited by having to wait for ACKs before advancing the window. Of course you have more ACKs to wait for if you have more, smaller packets. The easy fix is to increase the packet size. You have to counter this however with the reliability of the link, or you end up constantly resending a huge amount of data.

Re:Aging compared to how it's being used

[elandal]

That's not an SMTP problem. It's a problem with RFC822 (STANDARD FOR THE FORMAT OF ARPA INTERNET TEXT MESSAGES) -based email. SMTP is a *transport* protocol that does the job quite well.

And actually, MIME extensions allow for multipart email, where each part can be encoded differently. I think that works pretty well, too: You can send a bunch of stuff, all of it gets bundled into a single file which again is transferred to the resipient using transport protocols, and the resipient is then free to do whatever he wants with the bundle - usually opening it using a program that knows how to handle such bundles (mail user agents) is a reasonable option. Using software that tries to run every file it gets its hands on is another thing, unrelated to this.

An Even Simpler Alternative

[dgenr8]

There is a lesser-known but even simpler extensible protocol designed to do the same thing as BXXP. The draft was published in February 1999 and expired unchanged in August 1999. Have a look at the draft defining Extensible Protocol (XP).

I read the article...

[exploder]

...and I'wondering if the titles ("Will BXXP replace HTTP?") are designed to make it easy to discern who read the article and who didn't. As I understand it, BXXP mainly functions as a platform on which to build other protocols, with most of the "dirty work" abstracted away for you, not just some replacement for an existing protocol. Sounds pretty nifty to me.

A new household word?

[idiot900]

"http://www" is now a household word. Imagine moving to "bxxp://www"...all those advertising dollars lost... ;)

And bXXXp

[Ron+Harwood]

Will be for multi-stream transfering of pornography, right?

Re:And bXXXp

[Frac]

1 breast per stream. Because we all love breasts!!!

Go get your free Palm V (25 referrals needed only!)

Re:And bXXXp

[commodoresloat]

no way; this stuff is strictly for trading pirated Metallica songs.

Re:And bXXXp

[Zulu+One]

Of course it will. Now we can d/l pr0n at the same time as talking in a chat room AND checking for the latest stories on /.!
Just what I always wanted...

This is excellent.

[jcr]

This addresses the biggest limitation in HTTP, which is that HTTP is essentially a page-based protocol. It's like the difference between 3270 terminals, and raw-mode ASCII. The 3270 was essentially a glass Hollerith card: fill out a form, send it in, get a whole screen back. This approach will make it possible to do things like interactive chat without resorting to abortions like Java. -jcr

Headline news ain't.

[MSG]

Not to cast dispersions upon fellow slashdot readers, but it seems that many of us don't read beyond the headline. WTF!? There's almost a hundred posts to this story, and like 5 that actually understand why this will be useful. Slow down, and try to understand what's going on.

As I see it, replacing HTTP is probably not going to be the first application of the BXXP protocol. In order to see the beauty of BXXP, you must consider the plethora of existing protocols (SMTP, HTTP, FTP, AOL-IM, ICQ...) none of which would be seriously hurt by a minor increase in overhead. Using a common language means that you don't have to write an RFC822 (or other RFC) parser for every application that wants to send mail, or request a file, or send an informational message/status update. You can parse the XML, and get the relevant info with much less effort using common code. You could share common headers between email and instant messanger clients. They're similar enough to speak IM to IM, or IM to mail server... Share libraries == less programming. Shared libraries == fewer bugs (theoretically).

I speak from experience. I'm working on a client/server framework for a project that I've been doing for too long, and I've reached the end of my original communication protocol's useful life. I've switched over to an XML based format, and I'm happy with it. If I'd had BXXP to start out, I could have avoided writing two different communications protocols, and spent that time working on better things.

Have they checked M$?

[slickwillie]

Since they announced they own the Internet/Web last week, I wonder if they will approve this new protocol? How about BXXP#?

Re:Have they checked M$?

[GeZ117]

No, it will be BXXP.NET, it already use XML !

Re:Have they checked M$?

[Masked+Marauder]

Yeah, but which XML? XML, or MSXML?

Re:Have they checked M$?

[slickwillie]

sigmentation fault?

I have a bunch of freckles. Is that pigmentation fault?

another protocol from the man behind SNMP...

[BIFFSTER]

Anyone who's actually had to deal with ASN.1 or SNMP will think twice about instantly embracing another Rose protocol. (Last I heard, though, he had admitted that using ASN.1 was probably a bad idea.)

What problem is this solving?

[sunset]

After reading the article, and as one who has done a fair bit of programming using TCP, I can only see this as a solution to a non-problem. One you've figured out your client/server application requirements, implementing what you need on top of TCP or UDP in a suitable way is just not that big a deal.

I wish all these brilliant minds would work on providing unique and interesting Internet content, which is the part that is sorely needed now.

Re:What problem is this solving?

[Malamud]

Actually, content was the whole point behind the protocol. We were trying to solve a class of problems, all driven by content requirements. Examples are the SEC's EDGAR database, a variety of other "deep wells", and a class of problems ranging from mapping network topology to creating personalized "maps" (views) of the Internet. See here for more on the philosophy behind the content requirements.

The protocol emerged from long discussions about how to solve these content problems. We tried as hard as possible to reuse existing protocol infrastructure, but quickly found that there were no protocols that handled the metadata problems we were trying to attack.

The (IMHO) brilliant thing Marshall did was to build two levels into the solution. BXXP is the general-purpose framework that was used for the Simple Exchange Profile application we were going for in the first place. The nice thing was that BXXP works for a broad range of other applications, such as asynchronous messaging.

The bottom line is why reinvent the wheel more than once?

Carl

the name

[David+Ham]

bxxp... i dunno, i kinda like the alternative - "beep!"
--
DeCSS source code!
you must amputate to email me.

BEEP?

[cxreg]

Don't you think that BEEP is more pronouncable than BXXP? Plus, it would be fun to tell people that I write in BEEP. We could even use the censopship icon for related Slashdot stories =)

Re:BEEP?

[Tower]

Nah, 'bicksp' is a perfectly pronouncable word... 'cept fer mebbe that last leetle bit... o vell...

Re:BEEP?

[ClayJar]

Actually, I think somebody should document this little suggestion. Seeing how things have the tendency to develop in our line of work, it's entirely possible that "BEEP" might end up being the accepted pronounciation.

I'd enjoy it more than "bee-eks-eks-pee" -- "aych-tee-tee-pee" is hard enough to say four times fast.

Of course, we all know geeks would _never_ go with "inside jokes", right?

Re:BEEP?

[Corty]

Seeing IT ppl like weird names like Y2K, why not call it B2XP???

HTTP

[LaNMaN2000]

HTTP is a universally accepted legacy protocol. Unles BXXP is adopted by MS and Netscape for inclusion in their latest browser releases, the average Internet user will probably not have the opportunity to even see it in action. It is nice to think that technically superior methodologies/products will ultimately render older, less efficient, ones obsolete; but look at how long it's taking for HDTV or IPv6 to be adopted! Moving from a legacy communications protocol will probably take at least 5-10 years in a best case scenario.

Re:HTTP

[_xeno_]

Unless BXXP is adopted by [Microsoft's] and Netscape['s latest browsers]...

And by Apache, and in Java... Don't forget the server end. The radio in my car can pick up many different frequencies, but unless someone is actually broadcasting on a given frequency, I'll be getting static.

Apache 2.0 including BXXP support would go a long way towards it being used, as over half the websites in the world are run on Apache. Support in the Java java.net package for BXXP URL connections would also help enabled BXXP in a wide variety of applications.

Support for new technologies client-side is nice - but unless there's also support server-side, the technology can't be used.

HDTV is taking a long time to be adopted simply because of the expense to purchase a set - at $1000 a set, it's not surprising people aren't rushing to get one. Yeah, it'll take time - but all it takes is a few sites to start using BXXP, a few services, and a few web browsers to support that, and eventually, it can come into it's own right as a internet protocol. But it may be coming sooner than you think.

Re:HTTP

[/]

HTTP and HTML are two completely different beasts -- the former is a protocol while the latter is a markup language (as one discovers by expanding the respective abbreviations) for describing files which happen to be commonly transfered by the former. BXXP will happily transfer HTML files. At this point, you should realize that your question doesn't make any sense.

Re:HTTP

[CMiYC]

You're implying that BXXP's only purpose (or ability) is to replace HTTP. The article clearly states that replacing HTTP is just one of things it can do. BXXP provides a new way to create protocols, so things like Gnutella, napster, and freenet could be developed more quickly.

So yes users have a very good chance of seeing BXXP in action, however, I think you are correct in that it won't replace HTTP (yet).


---

Re:HTTP

[DavidTC]

Yes, Apache's site got hacked...by the FTP server. And, AFAIK, Apache is still the most used HTTP server software.

-David T. C.

Re:HTTP

[FJ!!]

Yeah, it'll take time - but all it takes is a few sites to start using BXXP, a few services, and a few web browsers to support that, and eventually, it can come into it's own right as a internet protocol.

Only if it is compelling for the user experience. From the article it doesn't seem like it will make current transactions better, but make it easier to create future ways of communicating. If it does not provide a compelling experience now, there is no impetus to adopt it to work or replace HTTP. It will be adopted when something new built on BXXP comes along, and that something new will have to be compelling.

FJ!!

Re:HTTP

[mindstrm]

Okay. But look at it another way.
What if Apache supports it, along side http? This sounds possible. And perhaps mozilla would support it. That's all it would take, really...

As for how long it's taking ipv6 to be adopted.. the main reason nobody is adopting it is because there is currently not reason to use it!

Re:HTTP

[LaNMaN2000]

I disagree. The most popular web server is Apache, which can easily be extended to support new protocols because it is a popular open source project. The question is not whether the capability to serve BXXP is available on the server side, but whether anybody takes advantage of it. Unless there is support on the client side (which is, of course, transparent to the end user), there will be no reason to expend the additional effort to code for it on the server side.

The difficult part of phasing BXXP in will not be supporting it in popular web servers/browsers, but rather programming for the protocol itself. It only takes two companies/organizations--Apache and either Netscape or MS--to allow the protocol to be used on the Internet, on many machines. However, the development of useful content on the server side requires each we publisher to incur an additional expense. As such, there must already be a critical mass of supported clients available for it to be cost effective for them to rewrite existing applications.

Re:HTTP

[kawlyn]

unless MS adopts it? this is just asking to be embraced and extended.

That aside I think the browser market will follow the server market, If apache is serv'n up BXXP and managers are seeing improved performance the client side will follow

I like HTTP, I think I would miss it.

[Yarn]

The main reason I like it is because its one of those protocols where you can just telnet to a port and type and you can do something useful. SMTP is similar, as is IRC, whereas FTP you need to set up netcat or something to listen. (Its also more complicated)

I doubt it would be practical to talk directly to bxxp. Plus, it seems to be jumping on the XML bandwagon.

overhead

[djinn87]

is extra overhead really an issue? compared to the amount of data, the overhead of the protocol is minimal (in terms of both processing time and connection speed). on top of that, as we move to broadband for the web, the protocol size and complexity becomes even more insignificant.

Internet Scam!!

[Montressor]

Look! They've already raised $12 million! This must be an internet con! Just watch out for their sponsorship of some reunion concert....

Seriously, this seems like good-looking technology, but I don't think file transfer is a good application of it - with file transfer, you want packets to be as bare as possible, with as much data as possible. No XML wrapping.

We're in the $$

[kid_wonder]

For those of you who don't actually read the articles, here was an interesting tid bit:

Standardization of BXXP would be a boon to Invisible Worlds, a start-up founded by Rose that is developing BXXP-based intranet search and data management applications for large corporations. Several Internet luminaries are affiliated with Invisible Worlds including Carl Malamud, who helped get the Securities and Exchange Commission's Electronic Data Gathering, Analysis and Retrieval database online, Internet book publisher Tim O'Reilly and UUNET founder Rick Adams.

I am not saying this is a good or a bad thing, its just interesting. Draw your own conclusions.

It will be interesting to see if all these highly intelligent people can get together and make money.

__________________________

Re:We're in the $$

[dublin]

It will be interesting to see if all these highly intelligent people can get together and make money.

They already have to some degree. I know Rose worked with Adams in forming PSI, O'reilly, Rose, and Malamud (I think) were involved in the ahead of its time GNN, arguably the world's first Web "destination" (although they didn't manage to make the transition to portal with the arrival of the search engines), and Rose and Malamud have worked togehter on a number of projects from Malamud's Internet TownHall and radio.com (both now defunct) to the Free tpc.int fax bypass network, which failed to generate much interest, although I think it soldiers on in a few locales.

In any case, Rose is one of the best protocol jocks in the world, so in general his suggestions should be taken seriously. One of the most enjoyable classes I ever took was his on Internet mail protocols back at the "old" Interop years ago, back when it was a get-together for the people actually building the Internet rather than a slick merchandise mart with suits hawking the latest lock-in.

Re:What's the advantage of channels

[scott@b]

Looks like your app could do the blocking, although it will take more work at the proxy level. The other side does have to request the new channel, after all, you should be able to fence off resources.

The possiblity of sneaking past router filtering, and the enhanced privacy support. Add the peer-to-peer aspect ...

BEEP Colon Slash Slash...

[8Complex]

Sorry, it just sounds hilarious. :-)

IMHO, I think we're in too deep to get away from HTTP completely, though if it was integrated into the browsers smoothly, noone would complain.

Think about it, how many people are on the web that don't even know what FTP is compared to HTTP? Their life revolves around http://www.whatever.com, and they even have troubles with .org or .net sometimes too! Makes you wonder how many of these people even know about places like lyrics.ch.

FTP

[slim]

... whereas FTP you need to set up netcat or something to listen. (Its also more complicated) ...

Telnet is a very handy way of diagnosing FTP problems. If you're not happy with setting up listeners for the data connections, use PASV instead of PORT.

I'm all for protocols with which you can do this -- and FTP is one of them!

Unfortunately, the need for secure protocols is going to make this more difficult as time goes on. Don't expect something like OCSP to be human-readable.
--

Re:XML for framing ?

[zero_offset]

Section 2.2 of the IETF Draft begins to detail the formatting. The first example is:

C: REQ . 1 14 94 0
C:
C: <start number='1'>
C: <profile uri='http://xml.resource.org/profiles/sasl/OTP' />
C: </start>
C: END

Longer, more complicated examples are shown later, but this pretty clearly illustrates there probably won't be significant overhead.

Re:Noo!! Not another scourge of hard to say letter

[Mirk]

Tim berners lee reportedly says 'whu-whu-whu'

I just say ``ooo'', as in the first sound you make if you say the word ``water'' with the first phoneme extended. Works OK - everyone understands what's meant by it, any road up.

--

Re:Embrace and extend (TM)

[tweek]

As much as I dislike the Microsoft business practices, I wouldn't say they abused Kerberos. They worked within the letter of the spec alltough I think the Kerberos team was expecting whomever used the ability to extend it would release that information back to the public.

existing protocols

[Lazy+Jones]

VNC will do some of these things already. It just isn't particularly efficient as far as bandwidth is concerned. The X protocol will also do, it's easier on the bandwidth, but also more complicated and less powerful (if you use it as intended, and not to emulate another protocol).

You can run both VNC and X11 inside a web browser using Java these days - not that I see a need to do that.

Re:Why multiplex over one TCP connection?

[Shimbo]

For example, a webpage may contain 4k of text, and say, 20 2k images. Why make 21 TCP connections, when you can make one, and send the whole page in one XML stream?

Yes, but this was fixed in HTTP/1.1 with persistent connections. The RFCs have recommended it for three years. That's a lifetime on the web.

Re:How do we spell??

[acor87]

Nope, never seen it before, at least in NJ :)

What is is about unpronouncable acronyms?

[mrogers]

Blocks Extensible Exchange Protocol - B.E.E.P. Pronounced "beep". But what did they call it? B.X.X.P. Pronounced "bee ex ex pee" or perhaps "eggs", just to exclude a few more people.

BXXP Can Be Piecemeal, HDTV, IPv6 Not

[BlueMonk]

I think part of the reason HDTV and IPv6 take so long to be adopted is because they affect existing established standards and, in some ways, have to be accepted all-or-none. When you decide on the HDTV standard or the IPv6 standard, everyone has to accept it at once (or you have to spend extra time working out a way that not every one needs to accept it at once). These entail technologies that affect existing users. However, in the case of BXXP, I expect that it is more of an add-on. You can have a BXXP-capable client without any BXXP-capable servers without affecting existing HTTP support. Conversely you can have BXXP servers without yet having any clients implementing BXXP, and as long as the existing HTTP servers are still up, no HTTP service is lost. You can't however, have a TV station broadcast an HDTV signal instead of a standard TV signal on its reserved frequencies, and then expect the standard TV service to be unaffected. My understanding is that it took a good deal of work to make HDTV service not affect existing sservice... and then to coordinate efforts with the FCC etc.
So at this level, something like BXXP should be easier to adopt.

Re:Unpronounceable -- better idea

[blj8]

...Or beep://beep.roadrunner.com, or beep://theclown, or beep://ing.darned.beeping.protocols...

(Just couldn't resist :)

Agreed... Also consider IIOP, LDO?

[Christopher+B.+Brown]

The bibliography for BXXP seems only to consider the old Internet protocols, and doesn't include anything like IIOP.

It sounds to me like they're recreating what IIOP provides, and with the added cost that you need to encode data in the rather wasteful XML format.

I half figure that someone will eventually build an "XML over IIOP" scheme that will allow compressing it.

The Casbah project's LDO provides another alternative.

Re:Ne[x]t geenration

[Valdrax]

Actually, we could build something significantly better than the Snow Crash Multiverse with current standards (i.e. Ditch the major security holes everywhere)

Yeah, no kidding. Anyone else ever think it's funny how programs in the cyberpunk genre have complex GUIs for their security holes? I mean slashing through ICE with claws and blades? What the hell does THAT actually accomplish code-wise, especially when it's all done with generic interoperable third-party tools?

--
I wish I could turn off the auto +1 w/o enabling cookies and logging in...

Re:Missed Buzzword opportunity

[Xofer+D]

I did. When I hit "reply" there weren't any. Guess I should submit before browsing the rest of the headlines...

Re:Ne[x]t geenration

[a_cussword]

Anarchy Online.

Please don't tell me...

[Chiasmus_]

... that we're going to have to actually use the header "bxxp://".

I mean, for people who just surf around, I'm sure IE and Netscape will quickly adapt to be able to fill that in themselves, and that just typing "Yahoo" will be enough to find either bxxp://www.yahoo.org or http://yahoo.com depending on how the defaults are set.

But for those of us writing CGIs, this kind of sucks. Sometimes the "http" has to be very explicit. It's a simple matter to know when to use http://, ftp://, telnet://, etc., because the protocols are so unrelated, but with these related ones, it will be a headache.

Of course, if bxxp can handle http, I guess this problem shouldn't exist at all. It still will.

Programming and Effort

[eric2hill]

It seems odd to me that we should have to embrace yet another protocol in an effort to web-enable everything. What ever happened to opening a socket and sending the info you need? TCP/IP seems like a fairly reliable data transport, and if your app uses XML packets internally to represent data, all you need to do is stuff the data into a stream and you're done. Why is it that we need a thousand different protocols for the coffee pot and microwave? Let the devices that need to be connected have their own IP stack and DHCP, and for God's sake, leave my microwave alone!
</rant>

Didn't Al Gore invent this?

[8Complex]

Well, I'll give him a few years to claim it. I'm positive he invented this one.

Re: READ THE ARTICLE

[CMiYC]

The only purpose of BXXP is not to replace HTTP. It is just one of things that BXXP can do. BXXP is a protocol framework.

---

Re:Why multiplex over one TCP connection?

[Th3+D0t]

TCP has a lot of connection overhead, with the three-way handshake and four-way disconnect. And, with small datasets, it is a waste to send too many TCP segments.

For example, a webpage may contain 4k of text, and say, 20 2k images. Why make 21 TCP connections, when you can make one, and send the whole page in one XML stream? That is a big overhead savings, and the page will load MUCH faster. Even for something like slashdot comments, where there's about 200k of text and maybe 10 images, that's still a savings, although not as much.

Simply bandwidth wise, (assuming 0 RTT), a TCP/IP segment header is 40 bytes. A connection requires 3 packets + 4 to disconnect = 280 bytes per connection. An sequence of XML tags would probably be smaller, in addition to reducing wait time and processor load.
---

About the acronym...

[blj8]

Alright, I know this is bloody silly, but why not call it B.E.E.P. ? Why do they have to put Xs is there?

It's easier to pronounce, and doesn't sound like a trash compactor speaking Klingon ("Bee ex ex pee colon slash slash"...)

Just my little useless gripe about all the hard-to-pronounce acronyms out there on the net...

Seems like a good idea...

[Diablerie]

I really like this idea. From my understanding of the article, it seems that BXXP will be a "wrapper" for any file types (like HTML is a "wrapper" for plain text). This could allow us to properly embed all sorts of data within a nice, formatted page. Also, I hope that the BXXP standard will be powerful, extensible, and well documented. I would really hate to see more of the same browser-specific tag silliness that plagues Netscape and Internet Explorer. It's interesting to note, though, that if this really flies, then we may be in for another round "browser wars", especially if BXXP replaces HTTP.

Article quote: Instead of creating a metadata-specific protocol, he built BXXP as a general-purpose foundation upon which he could stack a metadata protocol he calls Blocks.

So, it's a metametadata protocol. Very cool!

Re:Aging??

[erichschubert]

And as qmail is a really great MTA it's spreading on high-volume servers.
For example hotmail and gmx do as far as i know use qmail.
And egroups.com appears to use qmail, too. (but i see they use some protocol called "NNFMP" internally???)
So QMTP should be useable for some servers already. I often have mail transfers with all hosts using qmail. ;)

Re:Performance Hit?

[The+Raven]

Of course there is a performance hit. Every time we add abstraction there is some level of performance loss.

C is slower than Assembly
Linux is slower than DOS
Windows NT is slower than Windows 95
X is slower than Windows

In every case, the slower version is more flexible, powerful, and is generally regarded as better for most situations. It's quite acceptable to trade some performance for a lot of flexibility. Computers are getting faster every year, and adding flexibility and power to the underlying technologies of our system is one way in which we 'spend' that power.



And my soul from out that shadow that lies floating on the floor

Re:Noo!! Not another scourge of hard to say letter

[gwalla]

A lot of people say it "dubya-dubya-dubya"...

Wait...Oh no!

George W. Bush has stolen Al Gore's thunder! Gore may have invented the internet, but the World Wide Web is George W. Bush's middle name!

---
Zardoz has spoken!

Defective user

[Felinoid]

You can send e-mail in mime and uuencode as a hack to solve a problem of getting files from one user to annother.
It's a hack solution for a rare (but obnoxous) problem.
[Oh ok I'll e-mail you an mp3 of the audio recorded at the last meeting]

The idea of normal e-mail is to send text. Not HTML and certenly not MsWord.

Windows helps premote this problem (not Microsoft.. just an example of "one world one os" being bad.. Microsofts todays example Linux may be tomarows bad guy in this respect.. maybe some day Apple).
Basicly a user sees a file format is native to his operating system he mistakenly believes it's "normal" and sends this file in e-mail.
If he has less than a 50-50 chance of getting someone who can accually use that file then he'll get a clue and stop. But if he has a greater than 60% chance of getting a user who supports it then he'll just assume the others are losers.

For the most part it's annoying. It's not e-mail and it dosn't do the job.

Now with e-mail viruses I'd hope that even Windows users would say NO! to Windows files simply becouse this shouldn't be commen practace in the first place. True Windows makes it EASY but that is still with the idea of two executives using commen (or compatable) software with an agreed on format with an agreed on goal (such as e-mailing the database of a daily budget or an audio file of an interview in a format both sides support [such as mp3])
If both users use Windows and Microsoft office then hay thats great go for it. But if one side uses Linux with KDE Office and the other Mac with AppleWorks then it's a matter of finding a commen format between AppleWorks and KDE Office.

Anyway.. sending MsWord files as a way to send text is a bad thing. But when there is a greater than 60% chance that the guy on the other end can read MsWord files it dosn't occure that sending e-mail in acuall text will work 100% of the time.

PS. yes I throw away ALL MsWord files unread

This doesn't seem revolutionary

[piku]

"For example, users can chat and transfer files at the same time from one application that employs a network connection." It's called Internet Explorer. You may have used it before.

DNS and Fancier Load Balancers Already Do This

[billstewart]

Already been done. The standard way people accomplish this is to use URLs like http://www.foo.com/image.gif, and have their DNS server at foo.com rotate what IP addresses it gives out, pointing to machines that are also called www1.foo.com, www2.foo.com, etc.. The simple round-robin model just rotates between them; fancier load balancing servers from a variety of vendors check which servers are least busy.

Another approach that some fancy load-balancers use is to always give the same IP address, but fake out the packet requests using NAT or other routing tricks, or having the web servers themselves change their IP addresses dynamically. It's a bit uglier, but browsers and DNS resolvers often cache their results, so a web server might die or get overloaded but users are still requesting pages from it because they've cached its IP address - this way you spread out the load more evenly at the cost of more dynamic address-shuffling translation work by the load balancing server.

Re:Noo!! Not another scourge of hard to say letter

[look]

Ambrose Bierce, author of "The Devil's Dictionary" (pick it up -- it's $1 and it's funny, even 100+ years later), argued for renaming the letter "W" to "wow" or "woo".

I'm with him. "Double-yu" is too damn long to say. www is fast to type, but lame to say. But if it was "woo woo woo", that'd be funny!

Doh.

[DavidTC]

Guess I wasn't paying enough attention. :)

-David T. C.

Re:Security and Privacy and BXXP

[penguinicide]

Well founded concerns. One thing that may be of use, is the fact that since it is such a new protocol there is no established base to fight against.

Whats to stop us from taking the protocol, removing te things we hate, modify the apache release(due end of year) to match, and distributing that? Modify the Mozilla sources to support the altered protocol. Build more apps quicker that support it (the altered protocol).

If we get it out faster and wider and everyone uses the modified version first, that should go a long way to making it the defacto standard. (Almost like an inverse msft/kerberos thing, excpet we probably won't care if we can call it bxxp or not.)

Re:Why multiplex over one TCP connection?

[warmi]

"DEMUXing is more work for the client at the application-protocol level."

I don't think it is a problem. Offloading work to client side is almost always a good thing ( witness javascript success.)

Hah!

[Uruk]

Does it offer the user more than they have?

Or alternatively, can it make us more money by screwing our competitors out of marketshare?

Is it simpler to maintain? (XML is nasty!)

It can be if you want it to be. It doesn't have to be. It can be quite elegant, really.

What's the learning curve?

XML? If you know HTML, I can teach you XML in about 5 minutes really. For protocols, who really cares what the learning curve is? PHB says to developer, "You will support this", and once it's supported, it's completely transparent to the user. Only the developer has to bother to learn the protocol. And if they built it around XML, it probably just ain't that hard.

What's the cost to switch? (Time & Cash)

Potentially huge. Potentially nothing. Depends on who you are. For some people, it will require downloading a new version of a browser. For others, millions on new software licenses for their crappy proprietary web servers, and developing support for this in.

Can a 5 yr old explain it to an adult?

Can a 5 year old explain the latest FPS to an adult? That didn't stop their acceptance and humongous sales. :)

OO Shithole :)

[Uruk]

So what you're saying is that BXXP is an abstract class, and doesn't really do anything by itself, it just exists to be "inherited" by other classes and used in that way.

Whatever happened to functional programming? Why is earth going into an OOP shithole ever since java showed up?

Re:Oh no

[localman]

Well, if it was that simple it would be essentially useless - so why even add the 13 bytes? I'm not saying it's good or bad (who could tell yet?), but it's very likely that BEEP will be substantially heavier than HTTP. After all, it fits all the patterns for Second System Effect.

Re:What's the advantage of channels

[finkployd]

Perhaps that is the idea. I imagine there is a big desire for this kind of thing in government and big corporations. Wouldn't pushing that kind of monitoring through under the guise of being a "new, faster, more modern" protocol be the perfect way to do it?

Finkployd

A modest proposal

[Signal+11]

BXXP looks good, but while we're creating a new standard, might I suggest a few things?

What we really need is a protocol that can, upon receipt of a single authenticated request, determine the speed that the remote end is running at, and then rapidly chunk out an entire page in a single request - instead of a few images here, a few javascript files there, and don't forget the stylesheet in the LINK tag!

It is obvious we are quickly moving into a high-bandwidth network where consumers will routinely have access to multi-megabyte streams. The TCP protocol is, by design, limited to a mere 780kb/s. You cannot go faster due to network latency and the max size of the RWIN buffer. Therefore, it's obvious this protocol needs to be UDP.

Security is also a concern - we need some way to authenticate that the packet came from where it said it did before we blast out a chunk of data - as likely there won't be time for the remote host to respond before we've sent out most of the request to it by then.. so some form of secure handshake is needed. If you could make this handshake computationally expensive for the client but not the server, so much the better for defeating any DDoS attacks.

But really.. we need a reliable file transfer protocol that supports serialized queuing and higher speeds than we do now.. and that means either ditching TCP, or setting up parallel streams between each.. with all the overhead that goes with that solution.

BXXP doesn't do that, unfortunately.. and if we're going to define a new protocol, let's plan ahead?

Re:A modest proposal

[wowbagger]

The TCP protocol is, by design, limited to a mere 780kb/s.

WHAT? I've moved over 10Mbytes/sec over TCP! The receive window in certain alleged operating systems *cough|windows|cough* may be too small for high speed over the 'Net, but any real OS can automatically adjust the TCP windows to be big enough to fill the pipe.

Re:A modest proposal

[vsync64]

First you say:

It is obvious we are quickly moving into a high-bandwidth network where consumers will routinely have access to multi-megabyte streams. The TCP protocol is, by design, limited to a mere 780kb/s. You cannot go faster due to network latency and the max size of the RWIN buffer. Therefore, it's obvious this protocol needs to be UDP.

Then you say:

we need a reliable file transfer protocol... [emphasis mine]

Signal 11, are you insane? TCP was specifically designed for reliability. UDP was designed for unreliable connections. Non-guaranteed. No assurance. Unreliable.

So maybe TCP needs an overhaul. Maybe another protocol would be better. But UDP? If you're going to "ditch TCP", don't build your new protocol on TCP's just-as-old cousin/brother/whatever.

Re:A modest proposal

[QBasic_Dude]

What we really need is a protocol that can, upon receipt of a single authenticated request, determine the speed that the remote end is running at, and then rapidly chunk out an entire page in a single request - instead of a few images here, a few javascript files there, and don't forget the stylesheet in the LINK tag!

TCP already provides flow control using a 16-bit window size field:

TCP provides a means for the receiver to govern the amount of data sent by the sender. This is achieved by returning a "window" with every ACK indicating a range of acceptable sequence numbers beyond the last segment successfully received. The window indicates an allowed number of octets that the sender may transmit before receiving further permission.

Window size is limited to 64K, but the TCP option Window Scale can be used to indicate the window size should be shifted by a certain number of bits, allowing a maximum window size of 2GB.

Therefore, it's obvious this protocol needs to be UDP.

UDP does not support virtual circuits -- data has to be sent in packets less than or equal to the size of the Maximum Tranmission Unit. UDP is also unreliable, has no flow control, and UDP datagrams can arrive out of order.

and then rapidly chunk out an entire page in a single request

HTTP 1.1 supports persistant connections for this purpose:

Prior to persistent connections, a separate TCP connection was established to fetch each URL, increasing the load on HTTP servers and causing congestion on the Internet. The use of inline images and other associated data often require a client to make multiple requests of the same server in a short amount of time. Analysis of these performance problems and results from a prototype implementation are available [26] [30]. Implementation experience and measurements of actual HTTP/1.1 (RFC 2068) implementations show good results [39]. Alternatives have also been explored, for example, T/TCP [27].

Security is also a concern

With IPv6, strong encryption can be used.

BXXP doesn't do that, unfortunately.. and if we're going to define a new protocol, let's plan ahead?

Fixing HTTP would be a better option.

HTTP/NG

[Jobe_br]

Just a real quickie comment:(meaning I don't have time to read anything but the /. abstract right now)

HTTP/NG has been in development for at least 2 yrs (probably slightly more) and it was designed to handle the deficiencies of HTTP while remaining based on many similar principles. Multiple channels was a HUGE part of the differences between HTTP and HTTP/NG.

I'll take some time to read about BXXP and compare it to my knowledge of HTTP/NG - but just wanted to throw this out ...

Regards,
Brice.

Re:What about Jabber?

[scott@b]

Isn't Jabber basically an "instant messaging" ((aaahhhiiii)) system? BXXP is a full general purpose protocol, IRC/messaging is just one thing it can do well.

Re:HTTP---apache and Java

[kawlyn]

No kidding. The client side is almost irrelevant. If the servers are using it it'll happen.

I mean nobody pays for client side software, well browsers anyway. So the browsers compete on features. If the servers are using BXXP then the browsers will too.

not to mention the next version of gnutella.

The Gaming Possibilities

[Alien54]

Imagine the gaming possibilities.

the humanity, oh my lord the humanity .....

Will acronyms replace words?

[British]

>Extensible Exchange Protocol (BXXP) which seems >a *much* nicer alternative to the aging HTTP (if >the IETF will give it a chance).

Soon, all slashdot articles will be composed of entirely in acronyms(probably ESR is the worst acronym. Can't you just call him by name like everyone else?) for faster transfer speeds.

Re:Will acronyms replace words?

[Gender+!=+Sex]

>>Extensible Exchange Protocol (BXXP) which seems
>>a *much* nicer alternative to the aging HTTP (if
>>the IETF will give it a chance).

>Soon, all slashdot articles will be composed of entirely in acronyms(probably ESR is the worst acronym. Can't you just call him by name like everyone else?) for faster transfer speeds.

Of course these really aren't acronyms, but are abbreviations. Acronyms are abbreviations that form a word, e.g. NASA.

Pedantic Man

grin :)

[Morrigu]

Heh, saw this in an email less than an hour ago:

Date: Tue, 27 Jun 2000 13:42:56 -0400 (EDT)
From: (sender deleted)
To: (recipient deleted)

According to (recipient deleted):
>
> (sender),
>
> If you are on the phone with Invisible Worlds re:
> (machine deleted), then disregard the page. Thanks.

actually with marshall rose, who owns the machine. he is rebooting to see
if that clears up a large packet loss problem.

-(sender)

It's kinda fun when you figure out who your employer's clients are. :)


------------------

Come on people, read the afticle.

[CMiYC]

I really with the slashdot editors would stop just putting 10% of the story on the front page. Before you go off ranting and raving BXXP won't replace HTTP, or that it is useless because it never will, READ THE ARTICLE.

"When you're building a protocol, you have to decide how you're going to do error- message reporting and how you're going to handle the size of objects"...."BXXP solves all of that for you. Ninety percent of the [work] is done"

BXXP is more about just replacing HTTP. It is more like a protocol framework.

"BXXP is essentially a tool kit that developers can use to quickly create protocols"

The people that are ranting and raving that we don't need more protocols are giving this a limited view. Did you ever stop to think that the internet is more than just http and ftp? POP3, IRC, ICQ, Napster, etc... everything has its OWN protocol. What BXXP is going to help get rid of, is using HTTP for more than what it was designed to do... which was transfer Hypertext documents. Sure HTTP can transfer entire files now (in both directions) but that's not what it was orginially designed for. I wish I could give a better example, but it really makes sense.

---

Re:Come on people, read the afticle.

[artdodge]

What BXXP is going to help get rid of, is using HTTP for more than what it was designed to do... which was transfer Hypertext documents.

More accurately, HTTP was designed for moving documents around in a hypertext context. Which actually encompasses a whole lot of things if you don't artifically constrain your definition of "document".

And BXXP won't get rid of all the different protocols; what it might do is provide a common framing mechanism for protocols. Which means you have to do just as much work in protocol design determining semantics of what each extension and flag and whatnot else carried within the framework means. (And HTTP has some very well-developed and real-world-motivated concepts and semantics, f.e. in the caching and proxying and transactional areas; don't expect those to disappear any time soon.) It could, I suppose, makes it easier to build parsers, to which I say two things:

1. Violating protocol synatax/grammar is commonplace. BXXP will not cause people to magically get it right.
2. Many modern protocols have similar/identical parsing rules already. Consider RTCP's similarity to HTTP... you can basically parse them with the same code, just hook them up to different semantic backends.

Re:Why multiplex over one TCP connection?

[artdodge]

Why multiple connections are a bad idea:

1. Because multiple TCP connections do not share congestion information, it is possible for a greedy user to get more than his "fair share" of a pipe by using many parallel connections
2. Each TCP socket takes up system (kernel) resources on the server. Forcing the server to maintain a larger number of connections will cause its overall performance to take a hit.
3. It introduces throttling/aggregation difficulties for proxies (see RFC2616's requirements for maximum upstream/inbound connections from a proxy; a server throwing lots of parallel connections at a complient proxy will be sorely disappointed itself, and will waste the proxy's resources [see 2], ergo degrade its performance).

Why MUX (HTTP-NG's name for this idea) is a bad idea:

1. (If not done intelligently) it introduces artificial synchronization between responses, i.e., your quick-to-serve GIF could get stuck "behind" a slow-to-serve Perl-generated HTML page in the MUX schedule
2. As a general case of [1], creating the MUX schedule and framing the data is hard, and difficult to parameterize (Where do progressive GIFs chunks go in the schedule? What if the browser doesn't support progressive rendering of HTML? What size chunks should be used in the schedule - a low bandwidth client might prefer smaller chunks for more "even" fill-in of a document, while a high bandwidth client would prefer bigger chunks for greater efficiency)
3. DEMUXing is more work for the client at the application-protocol level.

Re:overhead?

[Th3+D0t]

client: SYN (40)
server: SYN ACK (40)
client: ACK (40) "GET / HTML/1.0"

Hmm, only 134 bytes!
---

Huh? BitchX Exchange Protocol?

[I_Machine]

Mebbe I should read the article...

Apache Support

[Spasemunki]

If you read down through the rest of the article, it mentioned that work was already underway to produce Apache support for BXXP. They estimated that there would be the version of Apache due out this fall would include support for BXXP.

"Sweet creeping zombie Jesus!"

draft url

[dped]

Check out a draft of bxxp at:
http://xml.resource.org/profiles/BXXP/bxxp.html

Aging compared to how it's being used

[Cardinal]

The difference between FTP/SMTP and HTTP is that FTP/SMTP are still to this day used for exactly what they were speced out to be used for. File transfers, and mail handling. So even if they are older than HTTP, they haven't aged in the sense that very little is being asked of them beyond what they provide.

HTTP, on the other hand, has been stretched far beyond what it was intended for by today's web. It's stateless and simplistic, yet we that write web applications need it to be more than that. This gives it the sense of being an "aging" protocol. Session management of any form with HTTP is a dirty hack at best, and web applications needs a better answer if they are to expand beyond what it is now. If BXXP can speak to those shortcomings of HTTP, then all the better.

Re:Aging compared to how it's being used

[kevin+lyda]

smtp is being used for what it was designed for? someone in our marketing debt. emailed quicktimes of portugal's three goals against england.

i sincerely doubt that was considered and mime is not pretty.

Re:HTTP & HDTV

[linuxlover]

Exactly.
For a techonology to spread wide, it should be affordable. There is no freaking way I am foking out that much money for a decent HDTV. Yeah I know it will enhance your 'viewing pleasure' yada, yada. But to watch news for 20 mins a day my trusty SAMSUNG is good enough, thankyou.

Same deal with Home theatre systems. Unless they have some affordable version, no one except sound-heads going to get the latest system with THX processor & AC-7.

I am also sick of the technology companies charging the premium for early adoptors. Say in CPU world, if you are the first one to buy 2Ghz Intel chip, you pay through your nose. I understand the cost of R&D. But there should be a way to spread the cost, and still sell it for 19.95 :-)

Someday, we'll learn

[_underSCORE]

How to properly abbreviate... Is it me, or should BXXP be abbreviated BEEP? Since when do we abbreviate Extensible with an X? Ever since XML came out, I have puzzled over this.
Are x's really that much cooler than e's?

Doesn't BEEP sound better?

W3C doesn't do protocols

[Wesley+Felter]

These days the W3C doesn't seem to be interested in standardizing protocols (even HTTP); they've shifted all that work to the IETF.

Re:HTTP-NG is shelved, and BXXP is going nowhere

[slycer]

I don't know that the w3 will ignore a person that was a contributor to POP3, SMTP, and SNMP. These are all pretty major parts of the Internet right now.

IPv6 supports gradual transition, too

[Wesley+Felter]

IPv6 was specifically designed to work alongside IPv4; some people have already started using it (it's flexible enough that you can use it even before all the specs are finalized).

Security, for one thing

[Wesley+Felter]

Do all your homegrown app protocols support TLS and SASL? Do you want to spend a month just working on the authentication part of one of your new protocols? I don't.

Although if you don't need mux, security, or any kind of negotiation in your protocols, you may be right.

You're right

[Wesley+Felter]

I don't know if HTTP-NG ever made it to the IETF; I know the W3C was working on it for a while, but I get the impression some people realized that they didn't really know why HTTP-NG was needed or exactly what it should do, so they put it on the back burner.

If HTTP-NG ever comes back, it may end up using BXXP as its mux layer.

Marshall Rose's description

[mdecerbo]

The author, Marshall Rose, goes into more detail about what motivated BXXP and its design, at http://mappa.mundi.net/features/mtr/.

He calls it a framework, not a protocol:

when someone else needs an application protocol that requires connection-oriented, asynchronous request-response interactions, they can start with BXXP.

Re:Noo!! Not another scourge of hard to say letter

[CDanek]

I always liked 'Dub-dub-dub.'

Paranoia!

[Uruk]

If I want to be paranoid, I have the ability to pretty much move about undetected.

Depends on how paranoid is paranoid. You're not really anonymous anymore. There are things like the anonymizer, remailers, and so on, but due to abuse, I bet they keep bitchin' logs.

Spoofing used to be an issue, but AFAIK, (and I haven't even thought about it in quite a while) it's not really possible anymore due to bind updates. Everywhere you turn, you're being logged. Doesn't matter if it's an HTTP server, the banner ads on that server, downloading a file through "anonymous" FTP (yeah right) or logging into your own box. I don't see much anonymity at all on the web, since your IP is scattered all over the universe whenever you so much as connect to another server. If anybody knows ways to get around that, please let me know.

You can be anonymous in the sense that the server only knows that some loser on an @Home cable modem is the one who's looking up this goat pr0n or reading about ralph nader, but when it really comes down to it, you're not.

I've always wondered if anybody will ever implement some type of reverse lookup system through ISPs. I know it wouldn't be easy, but imagine something like this - you dial up, and connect to goatpr0n.com. Since they want to market to you, they send a request to your ISP's server invader.myisp.com asking which customer is connected to ISP IP hostname foo.bar.baz.dialup.myisp.com. At that point, myisp.com sends back some "relevant" information to the "client".

Or even completely different servers. I bet pepsi .com would love to have the identities of coke.com visitors for counter-marketing. I bet microsoft would love to have information on non-IE users. I bet some company pitching DSL would love to have information on people who seem to be coming in on slower modems to pitch to.

In a world where companies are getting busted for backdooring their own software, people are rioting against doubleclick abuses, and you're logged every time you take a shit, does privacy really still exist? The answer is yes, but only as long as you're doing something that nobody thinks they can make money off of.

What about redundancy / load balancing?

[SONET]

I think something that would be awesome to include in something like this would be a form of redundancy. I'm not sure how it could be done, but one drawback of HTML is that if you can only provide a single location that the browser can grab an image from an image tag for example. If you could list several locations in the code for the same image and have it be transparent to the browser, that would be helpful for example if a web server went down that was holding your images. Or if you could do the same with links, where there's only one place for the viewer to click, but it will try all of them in the list until the browser finds one that works. This could even be extended to randomly choose one of the servers in the list. This could be a form of HA for people that can't afford the Real Thing(tm), and it goes without saying that it could help at least meet some of the shortcomings of today's web.

Another thought that I had was a [somewhat primative] form of load balancing for servers that actually took place on the client side (which would sort of crudly happen with the randomized link idea above). Before downloading everything off a site (images, video, etc.) the browser could go through some sort of ping function to see which server was closest to it in terms of latency or availability, or better yet it could be coded into the server to report it's bandwidth/CPU load or some sort of combination of relevant data to the browser and let the browser decide which server would be best to obtain the data from. This routine would be outlined at the beginning of the code for the web page. This could also be extended a great deal to even include things like distinguish between data types to help choose servers accordingly, etc.

If you think about it, HTML/web servers could be much more intelligent than they are now, and the best time to add intelligence would be when adopting a new format like this. While we're at it, we should also do a bit more to protect privacy. Intelligence combined with privacy... could it be possible? :P

Something similar to this in terms of redundancy also needs to happen with DNS and is long overdue. Just had to add that.

My two cents...
--SONET
"Open bombay doors!"

Re:What about redundancy / load balancing?

[alleria]

The idea of loadbalancing in a transfer protocol is kind of cool.

For Windoze download managers like Getright, it knows about mirrors to popular sites (like C|Net), and will automagically do the thing where it pings, checks download speed, and then breaks off whatever server it's downloading from at the moment, and resumes on the faster one, etc. until all servers are checked.

It seems that it would not be all that difficult to just extend the anchor tag, and let the web page designer specify multiple links to the same thing. It would then be up to the HTTP client/browser to actually go forth and load balance.

Re:Forward slashes vs. Backslashes.. yoy.

[cprincipe]

DUH!

Sorry, I was caught up in the heady excitement of the moment.......

Simplicity is the key

[Citrix]

The beauty of HTTP is it is so damn simple. That is why it so successful. It's simplicity and flexibility has allowed it to grow and adapt. XML may be simple but not at simple as HTTP. HTTP may not be perfect but it works. How are you going to have an efficient caching BXXP proxy. yick! the proxy will have to parse 2 BXXP connections. That is way more complex than parsing a header and just passing the content through. My only grip with HTTP is you can't set a cookie after your started sending the content. (any lazy web programmer will agree)
Citrix

Re:Ne[x]t geenration

[SlightlyMadman]

Ah, sure we've got the bandwidth. We have plenty of stuff out there right now exactly like the metaverse (except for the cool goggles, but we have stuff sorta similar with VR). Look at an MMORPG like EverQuest or Asheron's Call. That's pretty much exactly as Neal Stephenson described the metaverse (technically, sure, it's medeival instead of modern, and not really commercialized in the same way). The only difference, really, is that they're maintained by a set of developers, without any real opportunity for the same level of user interaction.

What would really rock is a MMORPG, like EQ, but with a sci-fi feel. I'd throw them my $10 a month at the drop of a hat. Well, it'd have to run on Linux, too ;)

HTTP will win, BXXP will be an XML wrapper

[WillAffleck]

OK, calm down. RTFM already.

HTTP will continue to be the protocol for 90% of the web, BXXP will only become useful for massive data interchange aspects, such as those for B2B exchanges.

Expect to see IE, Netscape, and Opera extensions to allow BXXP, but don't expect to see it anytime soon, at least until they start to fully implement XHTML and XML standards. I'd guess 2002 for reasonable code that works fairly well.

If you're trying to crank out massive data exchanges, you should definitely get into this; if you're trying to do a web site, especially one with lots of text content, you may never use it.

Noo!! Not another scourge of hard to say letters!!

[brad.hill]

I constantly rue the fact that the "www.blahblah.com" convention won out over "web.blahblah.com". The amount of time I waste saying and listening to "Double-Yew Double-Yew Double-Yew" instead of the one syllable "Web" is enough to take an extra week of vacation every year. (thank the gods radio announcers have at least stopped saying "forward slash forward slash")

While "X" is still technically one syllable, it doesn't trip off the tounge quite like "T". There are two tounge motions in that one syllable, "Eks". We need a more streamlined protocol name. Make it something catchy like Extensible Exchange Enabler and call it Tripoli. Easy to type, too.

Forget the network performance tests! Any new protocol should have to undergo verbal performance tests.

Also, if I see one more thing with an unnecessary secondcap X in it, I'm going to hurl.

*AHEM* - BXXP is not intended to replace HTTP

[orpheus]

Despite what the author of the linked article suggests, even the experts he interviews agree that BXXP is intended to be a more flexible and capable alternative to HTTP, but its major use will be as an alternative to completely custom (open or proprietary) protocols for new applications, not for webserving ordinary HTML.

"Think of BXXP as HTTP on steroids," says Kris
Magnusson, director of developer relations at
Invisible Worlds. "People are trying to jam all
kinds of things into HTTP, and it has become over-
extended. BXXP won't replace HTTP for everything,
but it can be used when new applications protocols
are developed."

As such, it does not conflict with, or supplant HTTP-NG, or many other standards being hammered out by the IETF. It's just another tool developers and info provider may choose, depending on their needs.

Re:*AHEM* - BXXP is not intended to replace HTTP

[orabidoo]

Speaking of HTTP-NG, is it still in development? is it planned to be deployed eventually? I remember reading about it more than 3 years ago! Anyway, maybe BXXP doesn't mean to supplant HTTP-NG, but it does look like it has the one key feature that HTTP-NG is/was supposed to bring over to HTTP: multiple channels.

I just hope they don't make BXXP a binary protocol. All the major app-level internet protocols (HTTP, SMTP, FTP, POP, IMAP, IRC) are text-based, and it's one of these things that make life much easier on developers.

It's all just a game

[WillAffleck]

Yup, now here's a place where BXXP (BEEP?) will really come in useful. Lots of data transfer, lots of channels, lots of potential.

If I were Nintendo or Sega (or MSFT - hah!) I'd be making sure I was up on this spec soonest. Heck, I'd be sending people to the steering committees.

[yeah, I own Nintendo and MSFT, but that doesn't mean Sega doesn't have cool games]

Re:XML for framing ?

[jacobm]

Compared to the vastly superior: ...

You meant to say vastly smaller. Whether it's superior or not depends on what you want to do. For example, your sample XML had 126 bytes more overhead than the equivalent HTTP, and 126 extra bytes is likely quite acceptable when sending documents that are usually several kilobytes in length, and those bytes buy you all sorts of XML goodies that the HTTP version doesn't have. On the other hand, if your document is on the order of a few bytes and you're sending a jillion of them, you clearly couldn't accept that much overhead.
--
-jacob

Re:`nother important aspect

[Th3+D0t]

Because of the way IP is designed, everything is a client-server.

IP is a connectionless, stateless packet protocol. There is no concept of "client" "server" "connection".

BOTH parties must have be listening for IP packets. Then they send IP packets at each other. There isn't even a concept of port numbers.

TCP is designed to be client/server. Then, one party must act as a server and have a listening socket, while another tries to establish a connection with an active open. You also introduce, with TCP, the concept of port numbers, which allow multiplexing of connections to different machines, and different processes on those machines. But TCP is built on top of IP, and there is a lot of overhead that goes into establishing and maintaining those connections.

UDP is built on top of IP, and there is absolutely no concept of "client/server"*. UDP simply provides the multiplexing capabilities of port numbers and a checksum facility to improve reliability.

* You can have a connected UDP socket, that throws out packets not from a specified ip/port, but really, it's just a big hack.
---

the obvious answer

[gtx]

bxxp sounds like a good idea, and i'm sure that it would work better than http.

but... will people actually pick it up? that's the question. as is the case in the all-too-often-used example of betamax vs. vhs, a format (or protocol) is only good if people actually use it, no matter how superior it is. perhaps people will pick it up, though.

XML for framing ?

[GeZ117]

But isn't XML slow ? There was remarks like these about microsoft's dotnet stuff, which also use an XML dialect for data transfers.

MS' dotnet isn't a protocol like HTTP or FTP or this BXXP, so maybe this comparison isn't justified, but, nonetheless, what can we expect about performance ?

Re:XML for framing ?

[vsync64]

XML is very slow. A typical transmission might be as verbose as this:

But doesn't XML have abbreviated forms as well? Like:

<stream-length/65535/

et cetera. So it's a little bit of a savings. Plus, there's two other factors. First, if this is just control data, it's still going to be tiny compared to the actual content. Second, I wouldn't be at all surprised if these XML-based protocols use a gzip-encoded stream or something.

Re:XML for framing ?

[exploder]

I think the number of XML tags would be relatively small, compared to a more data-centric application of XML that is trying to tag every unit of data in the trasnfer. Surely nothing inside the "payload" itself would be tagged in XML by the BXXP protocol, so the performance hit wouldn't be as large as it is in other XML applications.

Ne[x]t geenration

[BgJonson79]

So when's someone gonna invent the language to let people surf the net like in Neuromancer or Snow Crash?

Re:Ne[x]t geenration

[Chandon+Seldon]

We already have all the technology, standards, and most of the protocals for a Snow Crash like Multiverse. What we don't have is sufficient bandwith.

Actually, we could build something significantly better than the Snow Crash Multiverse with current standards (i.e. Ditch the major security holes everywhere)

It will take off when BXXXP becomes available

[Error+404]

As described here

The usual compelling content that drives every new technology.

Our secret is gamma-irradiated cow manure
Mitsubishi ad

Abstraction

[Dungeon+Dweller]

I think that the central idea behind the protocal is that you can provide additional layers of abstraction (for those not in the know, "libaries" and "objects") between the protocol and the programmer (hence the "extensible" part of it). This would make it easier to write programs that work in similar ways since you could embed all of the protocol work into simple functions. This would make the prototyping of programs much quicker. Always to be remembered is that more function calls mean more overhead, but if the overall functionality and efficiency is increased, this is well justified. Sounds like a great idea to me, as a person who like it when everyone is on the same page (and this would make that a lot easier when designing web apps).

Re:The IETF draft for BXXP

[hopping+yak]

Here is another internet draft, which describes the thinking that went into the design of the protocol.

But what a shot! ;)

[Cardinal]

Granted, I was pretty annoyed when one of our sales reps sent three large slapstick mpegs to every employee of a small office I consult IT work for.

He doesn't get to use that mail server anymore, though, so it's all good. :)

why is a 4 letters? Just like http...

[topdogg]

Why not 5 or 6 letters? heh. Who comes up with these things?

Sorry, wrong standard

[ChrisDolan]

Your HTML ideas are very interesting, especially the redundant image sources.

However, BXXP is a protocol (like HTTP) not an authoring language (like HTML). HTTP and HTML have nothing to do with each other, except that they are both very popular standards for online content. Thus, your post is off-topic.

is it worth the trouble

[Sanchi]

look at the amount of fun they are having getting IPv6 working. And they want to get this up and running soon? Good luck

Re:is it worth the trouble

[DivideX0]

BXXP will never make it out of the gates. I think the RIAA is already preparing a lawsuit to stop BXXP in the chance that it may promote illegal trading of mp3's!

WTF

[Oldspice]

"BXXP won't replace HTTP for everything, but it can be used when new applications protocols are developed."

Just wondering if anyone actually reads the articles. It clearly states that they're not trying to replace HTTP.

I may be wrong...

[Rombuu]

...but wasn't there already a HTTP-NG standard already working its way though the beast that is the IETF?

More connections == More overhead

[DragonHawk]

Why multiple connections are a bad idea ...

Because multiple TCP connections do not share congestion information, it is possible for a greedy user to get more than his "fair share" of a pipe by using many parallel connections.

And any number of additional protocols, be they layered on top of IP (like TCP is) or TCP (like BXXP is) will not solve this problem.

Each TCP socket takes up system (kernel) resources on the server.

One way or the other, multiple connections are going to use more resources. 'Tis inescapable.

Where those resources are allocated is entirely implementation dependent, and indeed, only makes sense in terms of specific implementations. Look at an MS-DOS system, where there is no kernel, or something like khttpd, which implements HTTP inside the Linux kernel.

Layering additional protocols on top of existing protocols which do the same thing because some number of existing implementations don't handle resource allocation well is highly bogus.

... a server throwing lots of parallel connections at a complient proxy will be sorely disappointed itself ...

The thing is, any time you flood a system with more connections then it can support (whether those connections are at the TCP level or something higher), it is going to suck mud. BXXP isn't going to change that fact; it is simply going to relocate it. See above about bogus.

Personally, BXXP looks to me to be redundant and needlessly repetitive. The core is basically TCP running on TCP, and then there is some higher level stuff that doesn't belong in channel-level code to begin with. It would be better to design some standard wrapper protocol to layer on a TCP connection to describe arbitrary data, thus providing something new without reinventing the wheel while we're at it.

Re:Performance Hit?

[seer]

There may be, but that might not be an issue for two long. Think of it this way: You got ethernet on the wire which carries TCP/IP wrapping some HTTP going to a port in your OS. There are routers that understand both TCP/IP and HTTP now, so it won't take long for BXXP to make it onto the silicon. And even before then, if it's not to bulky it won't be too bad.

As for your 2nd question, it might as well, but that also has to do with the exact specs of the protocol, which I don't know.

You know, I got NetworkWorld mag at work today and I thought the artical on the Oxygen Project was much cooler and made me think a lot more about Our Networked Future(tm).(or visit Scientific American

Seer

Security, firewalling etc

[The+Butler]

OK - one good use I can think of this BXXP - if this evolves into a "meta-protocol", like HTTP has done in the way it can cross firewalls with ease (anyone read the RFC for the hyper-text coffee pot control protocol?), then since its based on XML, it will presumably be able to describe what content is being passed over each stream - like mime types, but able to pass a whole lot more info.

This means that a firewall could conceivably be configured to parse the XML stream, and then firewall the individual streams. This also expands on the possibilities of things like the pics-rating scheme - a piece of content could describe itself in detail - not limited to those categories. Firewalls and logs could be based on this data.

OK, all well and good - but how much overhead is this going to put on the firewalls? If it has to parse an entire XML stream for each request, far too much. Sure, we'll know exactly what's being downloaded, but will your average user wait around to download it? So these kind of features probably wont be implemented.

But if it opened a new TCP socket each time, and placed any content header info right at the top, where headers belong, it would work....hmmm, does this sound anything like a certain protocol beginning with a 'H' to you?

To sum up - yes, its a great idea, but practical considerations make it a bad idea, IMHO. But who knows? Everything could change, and maybe slashdot will have to change that line below the comment box from "Don't forget the http://" to "Don't forget the bxxp://"... :)

Unpronounceable -- better idea

[Pike]

Hmm...H-T-T-P is much easier and nicer to say than B-X-X-P. But if they just used the first letter instead of going for those X's, we could just say BEEP! Wouldn't that be cool?

beep://slashdot.org

I like that much better.

-JD

The IETF draft for BXXP

[NOC_Monkey]

Here is the IETF working draft of the protocol. Lots of good info on the architecture of the protocol.

Re:Rewriting the weel, and the axle, and the car..

[Th3+D0t]

It would not be in place of TCP, it would be on top of it. But you knew that. My point is, TCP is still necessary, and this new protocol could extend the functionality and efficiency of TCP to deal with more modern applications.

Sure, TCP is already multiplexed, but there is a lot of overhead inherent in this mulitplexing scheme as TCP cannot distinguish between 10 connections to 10 different machines or 10 connections to one machine. They are all completely seperate connections, all with seperate kernel space buffers, all doing their DNS lookups, all having seperate windows and flow control and connection states, etc, etc. There is a lot of overhead that goes into making a TCP connection; it is very noticeable to the end user.

This protocol, by allowing ONE TCP connection to describe ALL transactions between two machines, can reduce overhead on both machines, and reduce load times and processing consumption. See my reply to the post above yours.

It does serve a purpose. And it is in no way a replacement for TCP. It does not provide the connection, reliability, flow control, etc, capabilites of TCP. It is a stream format, not a packet-level format, as such, it MUST be built on top of TCP, as TCP provides a state-oriented, stream oriented connection on top of a connectionless, unreliable, stateless datagram packet protocol that is IP.
---

Re:Rewriting the weel, and the axle, and the car..

[Endymion]

Could this possibly solve the IPv6 deployment problem? If everything is mux'ed over one socket, with most of the work being done above it, it would only require one socket between computers as a generic data channel.

In theory, it would only take a few OS utils to generate this connection, and apps could use it, not knowing if it was running over IPv4 or v6, and therefor one wouldn't have to rewrite the apps for the new IP protocol. Of course, you have to rewrite the apps for bxxp, so I suppose you havn't really gained that much.

Arrg. You're corrent - this is re-inventing way too much... time would be better spent fixing current protocols to be firewall friendly and such.

Re:What's the advantage of channels

[QBasic_Dude]

With HTTP I'll see another connection being made HTTP 1.1 supports persistant connections. Persistant connections allow multiple files to be retreived and sent in one TCP connection. Since TCP connections are expensive to set up, persistant connections can improve efficiency and speed.

When I see proposal with too many layers...

[Alex+Belits]

...and all are incompatible with things that already exist, I suspect that some intent other than improvement of the protocol is present. For example, XML demands to use Unicode (to be exact, standard was designed to make it really hard to do anything else unless everything is in ASCII). HTTP 1.1 is a one huge spec with various wild demands to applications made across all levels of content, presentation and transmission means, that can't be implemented separately of each other while remaining compliant to a spec. Java is both a language and a bunch of libraries that can't be ported or reimplemented in anything but java itself. And now more or less reasonable proposal of having one more level of multiplexing (compared to multiple TCP connections -- one however may argue that it would be better to attack the problem at its root and make a congestion control mechanism that can work across connections) is tied with use of XML instead of well-known, more efficient and more flexible MIME.

Good ideas that can be implemented separately are used to push dubious-quality "standards" that provide no benefits but pushing useless, semi-proprietary or simply harmful "inventions" by combining them in the same spec.

Re:Noo!! Not another scourge of hard to say letter

[0x0000]

We need a more streamlined protocol name. Make it something catchy like Extensible Exchange Enabler and call it Tripoli. Easy to type, too.

I agree, but why not use BEEP - Block Extensible Exchange Protocol? Why go to the second letters for the acronym? Is BEEP already taken?

Re:Aging??

[Spasemunki]

I'm not sure that http is inadequite for what it was designed for; what I do know, as someone else mentioned (and right on, if I might add), is that http is one of the few protocals that has been greatly expanded and stretched out in the pursuit of new web apps. When you think about the fact that this protocal was designed to pump simpe, marked up text documents over the Internet, and that it now handles dynamically generated content, binaries, Java applets, and a whole passle of other technologies, it is a miracle that it has aged as well as it has.
I would say that http does a good job of the basic work that it was designed for, and I doubt that it will dissapear from that too soon. But as networked applications grow more and more complex, http is going to be harder and harder pressed to adapt. Hopefully, simple apps will keep using the simple http protocal, and newer, more complex technologies will have access to a protocal framework with the power and flexability they need.

"Sweet creeping zombie Jesus!"

Re:overhead?

[Phexro]

a http 1.1 request to www.yahoo.com:

-- snip --
GET http://www.yahoo.com/ HTTP/1.1

HTTP/1.0 200 OK
Date: Tue, 27 Jun 2000 18:48:16 GMT
Content-Type: text/html
X-Cache: MISS from cache_host
Age: 0
X-Cache: MISS from cache_host
Proxy-Connection: close
-- snip --

for a grand total of 232 bytes.

my previous post was slightly incorrect; i passed a bad http request, which generated a few more headers:

-- snip --
GET /
HTTP/1.0 400 Bad Request
Server: Squid/2.0.RELEASE
Mime-Version: 1.0
Date: Tue, 27 Jun 2000 18:02:27 GMT
Content-Type: text/html
Content-Length: 811
Expires: Tue, 27 Jun 2000 18:02:27 GMT
X-Squid-Error: ERR_INVALID_REQ 0
X-Cache: MISS from cache_host
Proxy-Connection: close
-- snip --
grand total: 289 bytes.

and that's not counting the tcp/ip headers.

--

I used to giggle...

[AntiPasto]

when I'd hear people spell out h-t-t-p-colon-slash-slash, but now I'll be able to maybe even listen to the Spanish channels on DirecTV and listen to them... b-x-x-p-colon-slash-slash........

----

SOAP over BXXP would be great

[Dacta]

I think SOAP mandates the use of HTTP, though.

Other things (like ICE) would work well over BXXP, though.

Performance Hit?

[Proteus]

#- disclaimer: I don't know what the hell I'm talking about, this is a question.

From what I can decipher, this seems to be a more extensible protocol, which would allow easy creation of network-aware applications. My question is, since there is an added layer of abstraction, wouldn't there be an overall performance hit?

Besides, wouldn't multiple "layers" of data on the same connection open tons of potential security risks?

Or am I off my rocker on both counts?

--

Re:Noo!! Not another scourge of hard to say letter

[ph43drus]

or just dud-dub-dub (as in, rub-a), as we all do around here.

Jeff

Oh no

[KillBot]

I remember the last article that mentioned using xml for something. Everybody was complaining about how stupid and bloated and non-universal and overhyped xml is. Maybe it was just because it had something to do with microsoft and that makes people more apt to complain. Can't say that I blame them.

Why is it only the direct3d games that won't run in w2k!?

Aging??

[Mark+F.+Komarinski]

HTTP is the youngest of the Internet Building Block protocols. Heck, all the other protocols are at least twice the age of HTTP.

Inadequade, inefficient, and slow are adjectives I'd use with HTTP. Aging I wouldn't use. That implies that FTP and SMTP are both old and thus should be replaced. The age of a protocol doesn't matter. What matters is if it does the job.

Why multiplex over one TCP connection?

[stevied]

What's the point of multiplexing different data streams over a single connection? Why not let TCP do the hard work, that's what it's there for...

Re:Why multiplex over one TCP connection?

[titus-g]

The only difficulty with that is quite a lot of sites use different servers to err serve stuff, e.g. for slashdot all the pics are coming from images.slashdot.org, although I guess if you had a boss server to tie all the info together it should still be faster.

It would of course make having several hundred '127.0.0.1 ads.doubleclick.net' type entries in my hosts file a bit obsolete.

If you have everything in one stream does that mean it's all or nothing as well?

Re:Why multiplex over one TCP connection?

[Helge+Hafting]

For example, a webpage may contain 4k of text, and say, 20 2k images. Why make 21 TCP connections, when you can make one, and send the whole page in one XML stream?

That is a good point, but the article was way beyond that. "chat and transfer files at the same time..." I use multiple applications for that sort of thing, thank you. A protocol supporting multiple connections in one gets more overhead. Rolling all the stuff in a webpage into a "transfer blob" makes sense though.

Re:Why multiplex over one TCP connection?

[Shimbo]

They are not going to utilize this 'weakness' unless there are apps written to do it for them.

Like Netscape or IE then? It was the whole point of persistent connections in HTTP/1.1 to avoid having to open a new connection for every image (frame or whatever) on a page.

With HTTP/1.0 you had to open separate connections, and of course, the browser writers opened them concurrently because it was faster to the end user.

Rewriting the weel, and the axle, and the car...

[moderation]

One special feature of a BXXP connection is it can carry multiple simultaneous exchanges of data - called channels - between users. For example, users can chat and transfer files at the same time from one application that employs a network connection.

We have it right there - finally, a TCP/IP protocol that replaces TCP/IP! What'll they think of next? Maybe the next advance in computing technology will be emulating a 386 in my shiny Pentium III?

Replacing HTTP is a stupid thing to do because any "replacement" isn't a replacement for HTTP at all - it's a replacement for everything. HTTP does what it needs to do (and then some):

1. It sends documents of any type.
2. It deals with mime-types of those documents.
3. If you're using a proxy, it'll even get files over FTP.

Why would we use a chat protocol (or one that can do chat) to do file transfers (which is what HTTP is all about)? Seems to me, it's trying to replace all of TCP/IP and all established protocols. We already have seperate protocols (IRC, FTP, TFTP, HTTP, RA, etc.) so why do we need what amounts to an XML wrapper around them? Someone obviously is spending too much time trying to reinvent the wheel - all because they like the sound of the letters XML - the sound of the almighty Venture Capital and Media Buzz.

Re:Noo!! Not another scourge of hard to say letter

[petervessenes]

Tim berners lee reportedly says 'whu-whu-whu', which is fast, and fun to say too.

Re:reliable datagrams

[fanf]

A fairly widely available way to get better connection setup performance for TCP is a variant called TCP for Transactions, or T/TCP (RFC 1644). This allows you to e.g. set up the connection and send the HTTP request all in the first packet. It's been in BSD for 5 years, but software has to be written slightly differently to use it and most software isn't, so T/TCP isn't widely used.

Re:Rewriting the weel, and the axle, and the car..

[Spasemunki]

BXXP is no more a replacement for TCP/IP than an API is a replacement for the underlying system. As the article said, the purpose of BXXP is to serve as a toolkit for the development of higher level protocals that can piggyback on the existing TCP/IP infrastructure. What it is there to do is to give developers a way to create new protocals for complex applications, without having to reinvent the wheel everytime they want to build a network aware app. It's a tool, so that every time you write network software you don't have to fiddle with low-level details of bitfields and error checking when you want to create a way to let multiple applications talk. I think the "replace HTTP" angle is being overemphasized. That doesn't seem to be the primary purpose of this tool- it has some uses that might be related to giving some new functionality over and above http, but it has a lot more flexible uses. Existing protocals are not appropriate for every application; if there is a good framework for building custom communications methods, why try and shoehorn a square into a circle.

Man I love mixing metaphors. . .

"Sweet creeping zombie Jesus!"

telnet host 80

[weston]

One thing I like about HTTP and POP3 (and some
other protocols) is that I can just telnet into
the appropriate port and type the commands if I
want to. I actually check my mail this way fairly
frequently.

BXXP may complicate this.....

HTTP too entrenched - this will go nowhere

[Ars-Fartsica]

This has zilch chance of going anywhere. The W3 couldn't even agree on HTTP-NG - what makes you think they would even waste their time with this?

As it stands, with SOAP and other XML-based protocols coming down the line, there is actually very little real need for BXXP. There is little demand for mutliplexing mutliple channels over one TCP connection...and it looks like that is all this protocol really offers.

Not going to replace HTTP

[XScott]

The protocol might be a good one. It's tough to tell from the article. (personally I'm skeptical of anything that jumps on the XML band wagon lately)

However, it's not going to replace HTTP for the following reasons:

• This appears to be designed for peer to peer communications where the connection is maintained, and multiple messages can be sent back and forth. HTTP on the other hand is like a remote procedure call - you pass in data and get a response. Do you think Yahoo or Slashdot wants to keep an open socket for each person connecting?
• HTTP is already standardized and firmly in place. I don't think FTP would be done the same way today if they had to do it again, but it's a standard and it's staying. Same with HTTP.
• HTTP is simple enough for novice programmers to implement on top of BSD socket calls. This new creature is going to require a third party library or a serious investment of time.

HTTP-NG is shelved, and BXXP is going nowhere

[Ars-Fartsica]

Lets be realistic here - Invisible Worlds does not have the market power to create a de facto standard, and the W3 is likely to ignore it - they're busy trying to get SOAP to do pretty much the same thing.

Mmmmm.. New Protocols

[RAruler]

BXXP over IPV6 serving up some .PNG/and .MNG's.. yessuh.. the day of the new acronyms and extensions is upon us. Repent Sinners! Burn thy gifs, to be accepted into the geekdom.

MUXing can be bad

[Huusker]

More reasons why MUXing can be a bad idea:

1. No Type-of-Service (TOS). Routers can't adjust data priority to better handle streams like audio/video versus text/gifs.
2. One dropped packet brings it to a screeching halt. In contrast UDP-based multimedia streams can just skip and go on.
3. Future: It ignores flow labels and other soon-to-come IPv6 features to more intelligently prioritize traffic.

reliable datagrams

[jetson123]

I think it would be preferable to have a reliable datagram service in the kernel, as opposed to yet another messaging library built on top of TCP.

The need for reliable datagrams ("block exchanges") comes up frequently for file servers and similar systems (like the web), as well as distributed computing, and not having such a protocol as part of TCP/IP was a major omissions. For example, NFS simply assumes that UDP is reliable over a LAN, Plan 9 built a reliable datagram server into the kernel, and HTTP/1.0 just treated TCP as a (slow) reliable datagram service (send request/receive response).

An advantage of reliable datagrams is that it avoids most of the overhead of negotiating and establishing a TCP connection, so it can be almost as fast as UDP. Furthermore, reliable datagrams require fewer kernel resources to be maintained, and the send_to/receive paradigm is a better fit to many applications.

BXXP looks like it requires quite a bit of stuff: a TCP/IP implementation, the protocol implementation, and an XML parser. That's going to eat up a lot of space on small devices, and it's going to be unpleasant to implement and debug. The connections on which BXXP runs will also eat up kernel resources (file descriptors, etc.), both a problem on small devices and on very large servers, and it requires even more code and modeling to figure out when to bring up and tear down connections ("is the user going to request another page from that site?").

Furthermore, routers and other devices would have a much harder time understanding what is happening inside BXXP; that's important for things like multicasting and predicting bandwidth utilization. In comparison, reliable datagrams are a simple addition to a TCP/IP stack and require no protocols or parsing. And routers and other infrastructure can deal with them much more intelligently.

Plan 9 has a reliable datagram service called IL, although it is only optimized for LANs. People have also been working on reliable datagram services as part of IPv6, and for Linux.

overhead?

[Phexro]

sounds like it would have a lot of overhead. on the other hand, http isn't all that lightweight either; a simple request to yahoo.com takes 289 bytes. so it has merit.

it will be interesting to see some http vs. bxxp benchmarks whenever there is code behind it.

--

Embrace and extend (TM)

[geirt]

I like simple protocols/standards with no possibilities for extensions. Look at history:

Kerberos: It has a field which is reserved. The standard was abused by MS, and the extension is now a "trade secret" making "MS-Kerberos" a property protocol.

SMTP mail: Can be extended with X- headers. Used is many incompatible manners by diverse email software.

HTML: A standard which is designed to be easy to extend. Need I say more ?

Keep the protocols simple with no possibilities for extensions, and make sure that implementations don't fail gracefully when abused. If so, all implementations will work together, and MS and other will fail when they apply their "embrace and extend" tactics.

`nother important aspect

[scott@b]

from the docs :

Typically, a BXXP peer acting in the server role is also acting in a listening role. However, because BXXP is peer-to-peer in nature, no such requirement exists.

which is a bit different than HTTP. This may become important as more IP-speaking devices ( "appliances" ) show up. Even more so as short range wireless connections such as Bluetooth increase, where there might not be a handy server around. Be nice if your left shoe could talk to your right shoe without a server.

Interesting, but...

[jliebbe]

It's a rather interesting article, but I'm gonna have to say that it won't be replacing HTTP anytime soon like some would like to think. Whether we like it or not, the Internet is based upon commodity protocols (some are getting quite old yes, but their usefulness is still rather high) that work rather well in their niches when you look at the limitations that are placed upon them.

The Net community as a whole isn't going to up and replace a tried and tested protocol with some new upstart just becuase the designers claim it is better. After all, haven't we seen this before with the marvelous new construct known as JAVA? And what was JAVA's fate, again?

multicasting

[jetson123]

I'm not surprised multicasting hasn't caught on, and I think the reasons for it are economic. With multicasting, no matter how many users your site serves, you only need a low-end server and a slow network connection; it would be difficult for the web hosting company to extract a lot of money that way. On the other hand, if you send a separate stream to each client, you need a high speed connection, and you need to pay for it. Thus, I think, the economic incentive for web hosting companies is not to install multicasting support.

What's the advantage of channels

[FascDot+Killed+My+Pr]

I don't understand the advantage of "channels". Is this just so you don't have to open a new socket?

I might also note that putting all these channels into one big pipe makes it harder for a user (or administrator) to block something--or even know it is there. For instance, what if RealAudioBxxp devotes a channel to sucking data from my harddrive? With HTTP I'll see another connection being made and I have to option to block it. With BXXP--no such luck?
--

Oh Really

[Chubbyman]

TOR himself was at the IETF presentation, wonder when we'll have an O'Reilly book on BXXP?

New protocols

[jd]

There are more protocols than there are flakes of snow in Alaska over the course of a millenium.

The problems with getting anyone to adopt a new protocol can be summarised as:

• Does it offer the user more than they have?
• Is it simpler to maintain? (XML is nasty!)
• What's the learning curve?
• What's the cost to switch? (Time & Cash)
• Can a 5 yr old explain it to an adult?

To be adopted requires more than functionality. It requires a market. No users, no use.

Multicasting suffers a lot from this (partly because ISPs are die-hard Scruges (minus any ghosts to tell them to behave), but mostly the lack of users, plus the high cost of ISPs switching will forever prevent this genuinely useful protocol ever being used by Joe Q Public. (Unless he really IS a Q, in which case, he won't need an ISP anyway.)

Unless they shoehorn it in...

[limbostar]

Unless they shoehorn this into the mainstream, I have doubts that it will catch on. The newly net-enabled techno-romantics have grown up seeing http://... - making the change to the (imho, unweildy) bxxp:// will not be easily done.

Coming soon to an internet near you:

bxxp://stallman.fsf/index.xml

...brave new world, I guess.