Internet sites should not make use of the unsafe-url plan, as this will likely trigger HTTPS URLs being exposed over the wire above an HTTP relationship, which defeats one of many vital privacy and stability guarantees of HTTPS. HTTP operates at the highest layer in the TCP/IP model—the application layer; http://XXX