Essential Points
The following summarizes the most important points described in this chapter.
HTTP can run on any port as needed, although port 80 is the default.
HTTP GET requests carry a limited amount of data from client to server, POST requests can carry unlimited amounts.
HTTP is a stateless protocol. State can be added by using cookies, URL rewriting, or using SSL as a transport (which produces HTTPS).
HTTP on port 80 is usually allowed out of firewalls, so HTTP is a common choice for tunnelling.
HTTPS is HTTP over SSL
SSL gives encryption, validation of parties, and an identifiable session for maintaining state.
Encryption and validation in SSL depend on configuration and capabilities of both ends, and might be negotiated to nothing.
SSL, and ...
Get Sun Certified Enterprise Architect for J2EE™ Technology Study Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
