John Lampe’s Post

This is gonna change some things for those monitoring TLS traffic. You've got TLS1.3, QUIC, DoH, eSNI, and now ECH. Fingerprinting just got a lot tougher. Proxying just got tougher. A lot to think about here...good post from Mr. Althouse...

Web access is changing due to the rollout of a feature in TLS called ECH that was delayed during the initial attempt. Cloudflare has announced that they are beginning to roll this out gradually now. Your organization may begin to see the impacts soon, such as decreased visibility in your IDS or IPS system. To learn more on what to expect and your options, see the following blog that may be helpful for the enterprise: https://lnkd.in/egj6cs5S

Security Control Changes Due to TLS Encrypted ClientHello

Security Control Changes Due to TLS Encrypted ClientHello

labs.ripe.net

To view or add a comment, sign in

Explore topics