search

tlswg / draft-ietf-tls-esni

TLS Encrypted Client Hello
https://tlswg.github.io/draft-ietf-tls-esni/#go.draft-ietf-tls-esni.html
Other
231 stars 56 forks source link

Can a retry ECHConfig change the public name? #608

Closed ekr closed 4 months ago

ekr commented 4 months ago

Suppose that I connect to a server with public name example.com and it gives me an ECHConfig with public name example.org. Is this OK?

sftcd commented 4 months ago

On 25/02/2024 21:44, Eric Rescorla wrote:

Suppose that I connect to a server with public name example.com and it gives me an ECHConfig with public name example.org. Is this OK?

If the same server certificate covers both, then I'd say that's ok. But I'd have to add an extra check I think, if we figure a library ought enforce any related checks, so I'd likely be fine with other constraints or with no constraint (at the library level).

S.

ekr commented 4 months ago

@martinthomson @davidben?

martinthomson commented 4 months ago

I can't see an attack that might arise from changing the public name. It creates some interesting cross-provider interactions.

ekr commented 4 months ago

OK, so I'm just going to close this with no change.