ECH for Enterprises and Organizations
draft-taddei-ech4ent-introduction-00
Document | Type |
Expired Internet-Draft
(individual)
Expired & archived
|
|
---|---|---|---|
Authors | Arnaud Taddei , Simon Edwards | ||
Last updated | 2023-01-12 (Latest revision 2022-07-11) | ||
RFC stream | (None) | ||
Intended RFC status | (None) | ||
Formats | |||
Stream | Stream state | (No stream defined) | |
Consensus boilerplate | Unknown | ||
RFC Editor Note | (None) | ||
IESG | IESG state | Expired | |
Telechat date | (None) | ||
Responsible AD | (None) | ||
Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This paper reviews some of the Enterprises and Organizations requirements and constraints and tests the current Encrypted Client Hello (ECH) proposal in these environments. In particular it highlights the need for several clarifications as well as highlights known attack vectors which will become easier with the current ECH proposal. The current ECH drafts should consider how they want to include enterprises operational security capabilities to mitigate these attacks.
Authors
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)