SPDY

SPDY (pronounced speedy)^[1] is an open networking protocol developed primarily at Google for transporting web content.^[1] As of July 2012^[update], it is an open de facto standard protocol, the group developing SPDY having stated publicly that it is working toward standardization (available as an Internet Draft).^[2] The first draft of HTTP 2.0 is using SPDY as the working base for its specification draft and editing.^[3] Open source reference implementations of SPDY are available in Chromium^[4], Mozilla Firefox^[5] and Opera^[6]. SPDY is similar to HTTP, with particular goals to reduce web page load latency and improve web security. SPDY achieves reduced latency through compression, multiplexing, and prioritization.^[1] The name "SPDY" is a trademark of Google, and is not an acronym.^[7]

Design

The goal of SPDY is to reduce web page load time.^[8] This is achieved by prioritizing and multiplexing the transfer of web page subresources so that only one connection per client is required.^[1][9] TLS encryption is nearly ubiquitous in SPDY implementations, and transmission headers are gzip-or DEFLATE-compressed by design^[10] (in contrast to HTTP, where the headers are sent as human-readable text). Moreover, servers may hint or even push content instead of awaiting individual requests for each resource of a web page.^[11]

Relation to HTTP

SPDY does not replace HTTP; it modifies the way HTTP requests and responses are sent over the wire.^[1] This means that all existing server-side applications can be used without modification if a SPDY-compatible translation layer is put in place. When sent over SPDY, HTTP requests are processed, tokenized, simplified and compressed. For example, each SPDY endpoint keeps track of which headers have been sent in the past requests and can avoid resending the headers that have not changed; those that must be sent are sent compressed.

The IETF working group for HTTPbis is planning to start working on HTTP 2.0,^[12] and will put out a call for proposals. SPDY (draft-mbelshe-httpbis-spdy-00) will be used as a starting point.^[13][14]

Caching

The server push mechanism pushes content regardless of existing cache which can result in waste of bandwidth. The workaround is to use the server hint mechanism.^[15]

Protocol support

For use within HTTPS, SPDY needs the TLS extension Next Protocol Negotiation (NPN),^[16] thus browser and server support depends on the HTTPS library.

OpenSSL 1.0.1 or greater introduces NPN.^[17] Support for NSS was also added.^[18]

Protocol versions

SPDY is a versioned protocol. In its control frames there are 15 dedicated bits to indicate the version of the session protocol. Version 1 of SPDY protocol is not used anymore.^[19] As of April 2012^[update], Version 2 is current, with version 3 being tested in Chrome version 19 and higher, with the aim of replacing Version 2 in Chrome 22.^[20] Firefox supports SPDY v3 in Firefox 15.^[21] SPDY v3 will bring support for flow control, update the compression dictionary, and remove wasted space from certain frames, along with other minor bug fixes.^[10]

Browser support and usage

The browsers Google Chrome/Chromium, Firefox (version 11+, below 13 disabled by default) and Opera browser (version 12.10+) support SPDY.^[22][23][24] SPDY sessions in Chrome can be inspected via the URI: chrome://net-internals/#events&q=type:SPDY_SESSION%20is:active. Firefox 15 added support for version 3 of this protocol.^[25]

While added in version 11 of Mozilla Firefox and SeaMonkey version 2.8, SPDY was not enabled by default until Firefox version 13 and SeaMonkey 2.10. SPDY protocol functionality can be (de)activated by toggling the network.http.spdy.enabled variable in about:config.^[5]

There is a command-line switch for Google Chrome (--enable-websocket-over-spdy) which enables an early, experimental implementation of WebSocket over SPDY.^[26]

Amazon's Silk browser for the Kindle Fire uses the SPDY protocol to communicate with their EC2 service for Web page rendering.^[27]

Server support and usage

As of April 2013^[update], approximately 1% of all websites support SPDY.^[28] Some Google services (e.g. Google search, Gmail, and other SSL-enabled services) use SPDY when available.^[29] Google's ads are also served from SPDY-enabled servers.^[30]

A brief history of SPDY support amongst major web players:

• Twitter enabled SPDY on its servers in March 2012, at the time making it the second largest site known to deploy SPDY.^[31]
• In March 2012, the open source Jetty Web Server announced support for SPDY in version 7.6.2,^[32] while other open source projects were working on implementing support for SPDY, like node.js,^[33][34] Apache (mod_spdy),^[35] curl,^[36] and nginx.^[37]
• In April 2012 Google started providing SPDY packages for Apache servers which led some smaller websites to provide SPDY support.^[38]
• In May 2012 F5 Networks announced support for SPDY in its BIG-IP application delivery controllers.^[39]
• In June 2012 NGINX, Inc. announced support for SPDY in the open source web server Nginx.^[40]
• Cloudflare is also providing a beta of SPDY on their servers (using Nginx) from June 2012, though users who would like to use/test it must be paying customers as SPDY is built on top of TLS, and only paying customers can use SSL/TLS Certificates.^[41]
• In July 2012 Facebook announced implementation plans for SPDY.^[42] By March 2013 SPDY was implemented by their public web server.^[43]
• In August 2012 Wordpress.com announced support for SPDY across all their hosted blogs.^[44]

See also

• HTTP pipelining
• HTTP persistent connection
• WebSocket
• Microsoft SM
• QUIC, another experimental Google protocol
• MarioNet split web browser OPTIC protocol

References

1. "SPDY: An experimental protocol for a faster web". Chromium Developer Documentation. Retrieved 2009-11-13. 
2. "SPDY Protocol on IETF". Retrieved 2012-02-08. 
3. Nottingham, Mark. "First draft of HTTP/2". HTTP Working Group Mailing List. Retrieved 2 December 2012. 
4. "SPDY on Google servers?". Retrieved 2012-02-28. 
5. "Mozilla Bug 528288 - Implement SPDY protocol". 
6. "Opera: Built-in support for the SPDY protocol". Retrieved 2012-11-06. 
7. "Google Permissions: Guidelines for Third Party Use of Google Brand Features". Google. Retrieved September 30, 2011. 
8. "A 2x Faster Web". Official Google Chromium Blog. 2009-11-11. Retrieved 2009-11-13. 
9. Iljitsch van Beijnum (2009-11-12). "SPDY: Google wants to speed up the web by ditching HTTP". Ars Technica. Retrieved 2009-11-13. 
10. "SPDY Protocol - Draft 3". Retrieved 25 August 2012. 
11. Mirko Lindner (13 November 2009). "Google stellt HTTP-Alternative SPDY vor". Retrieved 2011-10-21.  (German)
12. Nottingham, Mark. "What's next for HTTP". Retrieved 2012-03-31. 
13. WG Review: Hypertext Transfer Protocol Bis (httpbis)
14. "HTTPbis Working Group Start To Consider HTTP/2.0". InfoQ. 2012-04-28. Retrieved 2012-08-09. 
15. "Server Push and Server Hints - The Chromium Projects". Chromium.org. Retrieved 2012-05-10. 
16. NPN protocol and explanation about its need to tunnel SPDY over HTTPS.
17. Openssl 1.0.1 changelog.
18. TLS Next Protocol Negotiation. Section: Implementations.
19. SPDY Protocol - Draft 2: "Currently, the only valid string is "spdy/2" (spdy/1 isn't implemented anywhere anymore)".
20. Support for SPDY/3 Enabled for 10 Percent of Chrome Users.
21. "Firefox 15 Release Notes". Retrieved 28 August 2012. 
22. Chromium SPDY client implementation.
23. Chromium: SPDY proxy examples.
24. Opera 12.10 Changelog
25. "Firefox 15 — Release Notes". Retrieved 3 September 2012. 
26. List of Chromium Command Line Switches.
27. Ryan Paul (28 September 2011). "Amazon's Silk Web browser adds new twist to old idea". Retrieved 2011-10-21. 
28. Usage of SPDY for websites.
29. spdy-dev mailing list: SPDY on Google servers?.
30. http://www.eweek.com/c/a/Cloud-Computing/Google-Speeds-Up-WebPage-Downloads-with-SPDY-Protocol-240303/.
31. Twitter Adopts SPDY.
32. Jetty Feature SPDY.
33. "indutny/node-spdy · GitHub". Github.com. Retrieved 2012-05-10. 
34. Fedor Indutny (2012-01-24). "What the $%@! is SPDY - blog.nodejitsu.com - scaling node.js applications one callback at a time". blog.nodejitsu.com. Retrieved 2012-05-10. 
35. "mod-spdy - Apache SPDY module - Google Project Hosting". Code.google.com. Retrieved 2012-05-10. 
36. "libspdy". daniel.haxx.se. 2011-10-18. Retrieved 2012-05-10. 
37. https://twitter.com/#!/nginxorg/status/192301063934705665.
38. "mod_spdy - mod_spdy — Google Developers". Developers.google.com. Retrieved 2012-05-10. 
39. http://www.f5.com/news-press-events/press/2012/20120508b.html.
40. "Announcing SPDY draft 2 implementation in nginx". Nginx, Inc. 2012-06-15. Retrieved 2012-06-16. 
41. Introducing SPDY - CloudFlare Blog.
42. Beaver, Doug. "HTTP2 Expression of Interest". W3C. Retrieved 15 July 2012. 
43. Finley, Klint. "Facebook Makes Itself a Bit More SPDY". Wired. Retrieved 18 March 2013. 
44. "Just enabled #SPDY for all http://WordPress.com -hosted sites.". 2012-08-28. Retrieved 2012-08-28. 

External links

• SPDY Documentation
• SPDY: Google wants to speed up the web by ditching HTTP
• SPDY-Whitepaper
• Apache SPDY module
• SPDY Review and Analysis
• SPDY Protocol - RFC draft ietf httpbis http2-00