On Sun, Feb 28, 2021 at 9:35 AM Stephen Farrell <stephen.farr...@cs.tcd.ie> wrote:
> > - This is *much* harder to implement compared to ESNI as > it interacts with the rest of the TLS stack/library in > many more ways. It should be an explicit goal to reduce > that complexity IMO and not increase it further. > I agree that ECH is much more difficult to implement*, but I think the changes required are all improvements. Some of the complexity stems from accommodating clear-text ClientHello as well as ECH. thanks, Rob * Except in the sense that all of the crypto is delegated correctly now--happy to let lower-level libraries do HPKE etc.
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
