Reviewer: Giuseppe Fioccola Review result: Ready The document defines a new TLS extension, called Encrypted Client Hello (ECH), for encrypting a ClientHello message under a server public key. I think that it is clear and well-written.
This extension is supported in TLS 1.3 (RFC 8446), DTLS 1.3 (RFC 9147) and newer versions. It is intended to work with various transport protocols (TCP, UDP, QUIC), by improving their security and privacy. >From an OPSDIR point of view, section 8 on Deployment Considerations is quite relevant since ECH requires changes to client, client-facing server, and backend server. In this regard, compatibility issues and deployment impacts are reported. Some considerations about the implementation choices are also mentioned in the text. _______________________________________________ TLS mailing list -- tls@ietf.org To unsubscribe send an email to tls-le...@ietf.org
