I-D Action: draft-campling-ech-deployment-considerations-03.txt
internet-drafts@ietf.org Mon, 07 November 2022 10:53 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 448EFC14CF09 for <i-d-announce@ietf.org>; Mon, 7 Nov 2022 02:53:05 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-campling-ech-deployment-considerations-03.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 8.20.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <166781838526.65387.13778672458090193862@ietfa.amsl.com>
Date: Mon, 07 Nov 2022 02:53:05 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/4x6eu0FeVAELvPbGq5JwoFosMy0>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 07 Nov 2022 10:53:05 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : Encrypted Client Hello Deployment Considerations
Authors : Andrew Campling
Paul Vixie
David Wright
Arnaud Taddei
Simon Edwards
Filename : draft-campling-ech-deployment-considerations-03.txt
Pages : 21
Date : 2022-11-07
Abstract:
This document is intended to inform the community about the impact of
the deployment of the proposed Encrypted Client Hello (ECH) standard
that encrypts Server Name Indication (SNI) and other data. Data
encapsulated by ECH (ie data included in the encrypted
ClientHelloInner) is of legitimate interest to on-path security
actors including those providing inline malware detection, parental
controls, content filtering to prevent access to malware and other
risky traffic, mandatory security controls etc.
The document includes observations on current use cases for SNI data
in a variety of contexts. It highlights how the use of that data is
important to the operators of both public and private networks and
shows how the loss of access to SNI data will cause difficulties in
the provision of a range of services to end-users, including the
potential weakening of cybersecurity defences. Some mitigations are
identified that may be useful for inclusion by those considering the
adoption of support for ECH in their software.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-campling-ech-deployment-considerations/
There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-campling-ech-deployment-considerations-03.html
A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-campling-ech-deployment-considerations-03
Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
- I-D Action: draft-campling-ech-deployment-consideā¦ internet-drafts