In recent BREACH attack http://breachattack.com/, I wonder if we could do something about gzip.
For an HTML page, can we put some tricks in Huffman coding, so certain parts of the HTML (e.g. user inputs and tokens) is not compressed, while the rest of the HTML is compressed, but the output stream is compatible with gzip?
Is this possible? TIA.