On 18/10/2022 16:36, Ben Schwartz wrote:
On the topic of smaller hosts: not every IETF specification is equally useful to everyone, and this is fine. ECH provides more benefit when applied to large hosts, but it doesn't_reduce_ privacy for anyone, so it is safe to deploy on essentially any TLS server.
FWIW, I consider that smaller sites can benefit to some extent from ECH as it can hide the difference between a WFH employee accessing marketing.example vs. engineering.example. I've no idea if that'd be a thing enterprises might do but they could. S.
OpenPGP_0x5AB2FAF17B172BEA.asc
Description: OpenPGP public key
OpenPGP_signature
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
