Hi - I read the rationale behind using HTTP over TLS and it’s very persuasive.
I have some questions and concerns, specifically around forcing a payment receiver to host an HTTP endpoint. I think this is how it is already today. While, it’s very convenient for software development, might face some challenges in point of sale systems specifically in areas with limited connectivity around the globe.
Also, do you feel like HTTP is the final destination or a temporary hop for developing your own? HTTPS does over the convenience of masking the intricacies of DH and whatnot. With clearly more effort I do think you’re better off on the long run building a light protocol over TLS. I think it’s smart to kick off with something widely used like HTTP to bootstrap initial adoption. Overall, the design in the medium article by Evan is pretty solid.