5.1 Security Considerations for Implementers

HTTPS is the recommended transport mechanism when downloading an A-SQM manifest. Using HTTPS provides protection from man in the middle (MITM) attacks, in which a private connection is controlled by an outside attacker, when the web server is trusted.