* So, hiding whether a server supports ECH or not (which I called level 2) is a significantly higher bar than hiding whether a particular connection is using ECH or not (level 1).
* I would like to understand how the WG feels about this requirement and that there is consensus that we need (2) and not just (1). I do not see Level 2 being a requirement. (I don’t see how you could make it work but I’m not a cryptographer.)
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
