[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #25804 [Obfuscation/Snowflake]: Domain fronting to App Engine stopped working



#25804: Domain fronting to App Engine stopped working
-----------------------------------+------------------------
 Reporter:  dcf                    |          Owner:  (none)
     Type:  defect                 |         Status:  new
 Priority:  Medium                 |      Milestone:
Component:  Obfuscation/Snowflake  |        Version:
 Severity:  Normal                 |     Resolution:
 Keywords:  moat                   |  Actual Points:
Parent ID:                         |         Points:
 Reviewer:                         |        Sponsor:
-----------------------------------+------------------------

Comment (by dcf):

 Replying to [comment:28 cypherpunks]:
 > [https://datatracker.ietf.org/doc/draft-ietf-tls-sni-
 encryption/?include_text=1 Make Meek Great Again?]

 Yes, there is some discussion about encrypted SNI and other related topics
 here:
   [https://groups.google.com/d/msg/traffic-obf/MagLb8FiMlA/c7nV7KrpAAAJ
 IETF draft: SNI Encryption in TLS Through Tunneling]
   [https://groups.google.com/d/msg/traffic-obf/bF61DndrA8I/tCGoXk2-DAAJ
 Secondary Cert Authentication.]
 Unfortunately I haven't thought about them very much or how they may be
 implemented. This is a good place for someone to get involved. There are
 more ideas than there are people to go after them.

 About Secondary Cert Authentication, Nick Sullivan of Cloudflare gave a
 (fairly non-technical) talk about it at USENIX Enigma 2018:
 https://www.youtube.com/watch?v=xZN0H3jzwys

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/25804#comment:34>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs