issues
search
tlswg
/
draft-ietf-tls-esni
TLS Encrypted Client Hello
https://tlswg.github.io/draft-ietf-tls-esni/#go.draft-ietf-tls-esni.html
Other
231
stars
56
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Are mandatory ECH extensions deployable?
#567
sftcd
closed
8 months ago
10
Add text describing deployment impacts of no SNI access
#566
chris-wood
closed
8 months ago
3
Requirements language around retry configs may be too strong
#565
chris-wood
closed
8 months ago
1
Clarify attacker capabilities
#564
chris-wood
closed
8 months ago
4
TCP is not the only transport
#563
chris-wood
closed
9 months ago
0
Punt on new transport connection specifics
#562
chris-wood
closed
8 months ago
1
Cross-implementation decisions may be differentiators
#561
chris-wood
closed
8 months ago
1
Note behavior and give an example alongside configurations
#560
chris-wood
closed
8 months ago
2
Note timing side channels
#559
chris-wood
closed
9 months ago
0
Remove alternative designs
#558
chris-wood
closed
9 months ago
0
Create a new ECH config extension registry
#557
chris-wood
closed
9 months ago
0
Cite draft-ietf-tls-svcb-ech for ECH in DNS
#556
chris-wood
closed
9 months ago
0
Do ECHConfig extensions use the same ExtensionType enum from TLS?
#555
davidben
closed
9 months ago
2
Move ECH references over to draft-ietf-tls-svcb-ech
#554
enygren
closed
9 months ago
0
Officially request the SVCB codepoint
#553
chris-wood
closed
9 months ago
0
Fix typo retry_configs
#552
thekuwayama
closed
9 months ago
0
Question related to section 10.9.3 (Prevent SNI-Based Denial-of-Service Attacks)
#551
louisroyer
closed
9 months ago
0
Make references official
#550
chris-wood
closed
9 months ago
0
HPKE reference
#549
sayrer
closed
9 months ago
0
DTLS 1.3 reference
#548
sayrer
closed
9 months ago
0
"Don't fallback to non-ECH" option
#547
TheBlueMatt
closed
9 months ago
14
How to get the server_name fileds of OuterClientHello
#546
LiFulian
closed
11 months ago
2
Server reuse of key share leaks the target domain for a given connection
#545
emanjon
closed
9 months ago
1
What does ECH acceptance mean in Split Mode?
#544
kazuho
closed
8 months ago
10
RFC9180 recommended max for info is too short for ECH
#543
sftcd
closed
9 months ago
1
Use of MAY in section 5 needs to be fixed up
#542
pkelsey
closed
9 months ago
1
Use Session ID in Client Hello to transfer enctypred SNI
#541
0x391F
closed
11 months ago
2
Status of this draft?
#540
kovalensky
closed
1 year ago
4
Add ACM CCS 2022 reference with updated security considerations
#539
chris-wood
closed
1 year ago
1
Expiration
#538
JonSnowWhite
closed
1 year ago
3
0xfe0d to decimal
#537
AAGiron
closed
1 year ago
2
How to retry in ECH is ambiguous
#524
davidben
closed
8 months ago
4
Fix extension count in IANA considerations
#522
davidben
closed
2 years ago
0
Mistake on Section 10.2
#521
cherinyy
closed
2 years ago
0
HRR rejection and ECH contents
#520
chris-wood
closed
9 months ago
1
Anonymity set definition should include behavior
#519
klinvill
closed
8 months ago
1
Question on Section 10.2
#517
kylon94
closed
9 months ago
1
split-mode may be more a three-way thing than a two-way thing
#516
sftcd
closed
9 months ago
2
Improve guidance for Second ClientHello construction in the event of HRR
#515
sftcd
closed
9 months ago
1
Abort on duplicate OuterExtensions
#514
dennisjackson
closed
2 years ago
16
Split mode correlation attacks
#513
pkelsey
closed
8 months ago
9
Lessen possibility of client implementation choices undermining GREASE cover
#512
pkelsey
closed
8 months ago
2
Remove sentence that is redundant with the paragraph that follows
#511
pkelsey
closed
2 years ago
1
Clarify ambiguous grammar
#510
pkelsey
closed
2 years ago
0
Clarify the document's assumption of restricted attacker location
#509
pkelsey
closed
2 years ago
3
Rework Handshaking with ClientHelloInner to remove conflicts and...
#508
pkelsey
closed
2 years ago
0
Replace broader, conflicting description of client retry_config use...
#507
pkelsey
closed
2 years ago
0
Adjust caption of Figure 1
#506
pkelsey
closed
2 years ago
0
More accurately describe provider plaintext access
#505
pkelsey
closed
2 years ago
0
Fix several typos
#504
pkelsey
closed
2 years ago
0
Previous
Next