Written by mufasa
Thu, 31 Jul 2008 00:03:00 GMT
Categorized in Features with the tags sessions and no comments
First, what do I mean by sessions? The HTTP request/response model is supposed to be stateless but the vast majority of page requests employ some form of state, whether it’s for advertising or saving application state, implemented by using cookies or javascript. I take it as a given that this type of session state is necessary and would like to make these sessions as responsive as possible. Either because of network or rendering delay caused by the bloat of the current web stack, most sessions on the web are not very responsive. Developers today work around this using various hacks like AJAX or COMET but these often involve bringing in additional problematic technologies like flash or silverlight. A new thin client would take this into account from the beginning by being designed for responsive sessions from the get-go.
First, we have to let go of the page model. Every object on the screen should be able to be updated independently, just as AJAX tries to let the browser do now. This may cause some problems for the URL concept but URLs can be reworked to be used in different ways (I’ll write more about reworking URLs later). Second, we have to allow the connection to be stateful, as that describes most usage of thin clients. Remember, TCP is stateful and most network traffic runs over TCP, so it can be done efficiently. Third, we have to focus on rendering speed on the client and ditch all VM-based languages like javascript, silverlight, and java. Those languages have no place in a thin client anyway, as a true thin client only deploys graphical/view data. Finally, someday this may necessitate deploying new network protocols but for now I’m sure current protocols like TCP, SCTP, and IP should do the job.
We can do so much better at creating a usable thin client experience than we are doing now. Only apathy and ignorance cause people to continue using the outdated tools of the past rather than trying to build better tools and platforms. A new thin client could do this.
Questions:
- How else can we make a responsive thin client?
- Why was request/response used for HTTP/HTML in the first place? Other than the fact that that is how it was originally designed, as it was created for moving large scientific datasets, why didn’t Netscape and others move to a more responsive session model during the evolution of HTTP/HTML in the mid-90’s?
Written by mufasa
Sun, 25 May 2008 23:55:00 GMT
Categorized in Open platform with the tags apis, copyright, patents and 6 comments
In the past, software platforms have often been used to lock developers in. This led to a drive for open standards so that no one company could control the platform and to give all the implementers input into the standard. However, the standards process is largely a relic of hardware standards and doesn’t really work for application software. Standards are best suited to network protocols that are programmed into routers, routers for which the software then stays the same without being updated for years. The modern PC is updated very often, at least 2-3 times a year, so the standards process is a straight-jacket on desktop software. It takes years for the standards bodies to reach consensus on a standard, which once ratified shows the dents of design by committee and then cannot be modified easily. The inadequacy of HTML/HTTP shows the results of this process. I will now suggest a way to keep platforms open, open to developers and competition, without the standardization that chokes off innovation. I believe these concepts should be used for a new thin client but they can be applied to almost any new software platform, such as rich clients, widget toolkits, or other software libraries.
First, let’s look at each of the ways that companies can potentially lock up a thin client platform: APIs, copyright, and patents.
- APIs – Although it appears that there is no protection for APIs, software copyrights are murky legal territory so it’s always better to be safe. The people behind an open thin client platform should not assert any intellectual property rights over the public APIs. Also, any API that is disclosed to one licensee should be disclosed to all licensees so that some developers don’t have access to exclusive APIs. These protections will allow a competitor to reimplement any APIs, just as the Wine guys have reimplemented the win32 APIs (though they better watch out as Microsoft might use this API issue to come after them some day). Of course, just because a competitor is free to reimplement the APIs doesn’t mean that is all there is to it. Open standards have a full specification that lays out much of the design. However, I see no reason to require an open platform to have an open specification, this decision should be left up to the creators. Outside developers can often figure out how the original implementation works and reimplement it, provided the original license does not prohibit doing so. Often this is the best way to reimplement software, as almost no specification is so precise that it lays out every detail of the implementation accurately. If there is an external API, a developer should be able to figure out how it works from the software, so there should be no licensing prohibition against using the original implementation to gather knowledge necessary for reimplementation. A thin client will have a compact set of documented public APIs so it should be easy to reimplement.
- Copyright – This is the main way in which software is currently protected and copyright is necessary to both closed and most open source software and business models. While open APIs allow developers to build on top of a software platform with the assurance that they’re not locked in, they do not allow the developer to modify the thin client binary itself. I see no reason to add any requirements about this however, as it should be up to the people who develop the platform as to how much control of the software binary itself that they want to give to third-party developers. Some will allow plugins and other modifications, others won’t. This is often a security issue and there are a range of possibilities: it should not be necessary to restrict the developer of the platform in this regard. I suspect that most software in the future will be a mixture of open and closed source- rather than exclusively one or the other as most of it is now- so I don’t think exclusive, monolithic control of a software platform through copyright will be much of an issue in the future.
- Patents – Let me start off by saying that most software patents are a joke and are only possible because the current patent system is a complete debacle. However, as people use software patents anyway and a few have some justification, I’d like to account for them. What’s important for a software patent is that all patents on an open platform must be disclosed. Also, no disclosed patent can restrict someone from reimplementing a feature of the platform because it is the only way to implement it. So for example, if someone were to patent quicksort, you could always use bubble sort so that’d be okay. However, if someone were to patent something ridiculous like Akamai’s distributed hosting patent, there would be no way to implement something similar so it wouldn’t be kosher.
Taken together, these restrictions can make up an Open Platform Promise, or OPP, consisting of the following:
- No intellectual property rights will be asserted on any publicly disclosed APIs.
- Any APIs that are disclosed to one developer will be disclosed to all developers.
- No restrictions will be made on usage of the software to help reimplementation.
- All patents will be disclosed.
- No patent can preclude reimplementation of a feature of the platform.
Some may wonder why all this discussion of intellectual property is even necessary. My argument is that software platforms can be extremely widely deployed- a thin client platform in particular- so it is important to consider issues of lock-in and monopoly. Most current software platforms are either at one extreme of closed-source, patented software, exemplified by Microsoft and their win32 APIs, or the other extreme of open standards often implemented by open-source toolkits, exemplified by HTTP/HTML. The goal of the preceding is to fashion a melding of the two extremes that works better than either one does individually. I do not address the issue of open- or closed-source as I believe that most software will end up being a mix of the two. Instead, I address the other API and IP issues that go with keeping a platform open. The goal of the OPP is to allow developers of a platform to create something they can own and improve upon while allowing third-party developers the freedom to choose their platform and its implementation.
Questions:
- I’m no intellectual property lawyer so I’m going to need more info from those who’ve dealt with this stuff in more detail. What other provisions do software companies use to lock developers into a software platform?
Written by mufasa
Wed, 14 May 2008 19:32:00 GMT
Categorized in Overview with no comments
We need to replace HTML. HTTP/HTML is an almost two decade-old prototype that has kept its basic form while many buggy and slow extensions have been mashed on top of it. It is now a hopelessly inefficient, quasi-rich client that does almost nothing well while maintaining a legacy language, HTML, that doesn’t do much and that nobody cares for. Worse, as an “open standard,” there are multiple incompatible implementations, either because the spec is vague or the implementers want to differentiate themselves. I would like to throw all this garbage out and start afresh with a new thin client. If we can get this right, maybe then we can start thinking about a rich client. Here is what I would like to see:
- Better GUI elements – The UI elements of HTML may have been appropriate to 1990 but have become dated and limiting. Why do we make designers come up with all kinds of hacks for basic elements like menus or proper spacing? A good thin client should have a limited subset of GUI elements built into the specification, those that are the most popular and easiest to secure and implement. HTML comes nowhere close to fulfilling this criteria.
- Sessions – HTTP is based on a request/response model because of the bandwidth limitations of the late 80s that no longer exist. Today, we trick the browser into a session model using AJAX or COMET or Name Your Acronym. Why not build a thin client that uses sessions as its atomic unit?
- Binary encoding – It makes sense for a research prototype like HTML to use text to encode GUI elements but why are we still using text to this day? When a widely distributed thin client employs inefficient and useless methods, it just leads to a lot of waste. Almost nobody edits HTML at the text level so there is no use for markup.
- A GUI for design, not code – No designer wants to muck around in code in order to get their GUI looking just right. A new thin client should allow designers to use a graphic design tool to design their application’s views and get them looking just right, before the views are compiled to a binary encoding.
- No standards process – The internet standards process has not helped application protocols like HTML. Rather, it has led to multiple implementations that each has their own quirks. Part of this is because of the vagueness of important sections of open standards, perhaps it is impossible to precisely detail any reasonably complex technology. Part of it is because every implementer tries to differentiate themselves by adding special features that are incompatible with the other implementations. What is important for a software platform is that it is open to reimplementation and the resultant competition, allowing developers to always have the choice of moving to another implementation, not that it conforms to some preconceived standard. I have expanded on this topic.
The essence of a thin client is to implement the most common GUI elements across multiple hardware and OS platforms while maintaining security. A thin client can be thought of as a first stab at ubiquitous network computing, where the security hassles of having the information superhighway coming into your PC- and the internet bandits and thieves who can now drive right up to your computer door- are handled by the thin client platform so that developers don’t have to. We can do much better at this than we are doing now. And finally, think of the children. If we don’t come up with a new thin client, what will we leave them?
I would like to hear more ideas on this subject from others and I will expand on each of the topics above in more detail. This blog is a place for discussion and sharing ideas, I would love to hear what others who also hold their nose at the current HTML/AJAX mess think.
Questions:
- What new GUI elements would you like to see?