Encrypted Client Hello
E893544
Encrypted Client Hello is a TLS 1.3 extension that protects privacy by encrypting most of the ClientHello message, including the server name, to prevent passive observers from learning which site a client is connecting to.
Statements (45)
| Predicate | Object |
|---|---|
| instanceOf |
TLS extension
ⓘ
privacy-enhancing technology ⓘ |
| abbreviation | ECH ⓘ |
| aimsToProtect |
metadata confidentiality
ⓘ
requested hostname confidentiality ⓘ user privacy ⓘ website a client is connecting to ⓘ |
| appliesTo |
HTTPS connections
ⓘ
other TLS-based application protocols ⓘ |
| category |
internet privacy standard
ⓘ
security protocol extension ⓘ |
| deploymentModel | requires support from both client and server ⓘ |
| designedBy | IETF TLS Working Group NERFINISHED ⓘ |
| encryptionScope |
TLS extensions that might reveal identity
ⓘ
most of the ClientHello message ⓘ |
| goal |
hide which site a client is connecting to
ⓘ
improve privacy of TLS handshakes ⓘ prevent passive observers from learning the server name ⓘ |
| leavesUnencrypted | outer ClientHello ⓘ |
| mitigates |
SNI-based censorship
ⓘ
SNI-based tracking ⓘ network surveillance of destination hostnames ⓘ passive traffic analysis ⓘ |
| notVisibleTo |
on-path adversaries without decryption keys
ⓘ
passive network observers ⓘ |
| partOf |
TLS 1.3
NERFINISHED
ⓘ
Transport Layer Security NERFINISHED ⓘ |
| protectsField |
ALPN information in ClientHello
ⓘ
ClientHello message contents ⓘ Server Name Indication ⓘ TLS extensions in ClientHello ⓘ |
| relatedTo |
DNS over HTTPS
NERFINISHED
ⓘ
DNS over TLS ⓘ Server Name Indication NERFINISHED ⓘ TLS 1.3 NERFINISHED ⓘ |
| replaces | Encrypted Server Name Indication NERFINISHED ⓘ |
| requires |
ECH configuration from server
ⓘ
public key for ECH ⓘ |
| standardizedBy | Internet Engineering Task Force NERFINISHED ⓘ |
| status | IETF standardization work item ⓘ |
| successorOf | ESNI ⓘ |
| uses |
hybrid ClientHello design
ⓘ
public key cryptography ⓘ |
| usesProtocolVersion | TLS 1.3 ⓘ |
| visibleTo | intended server ⓘ |
Referenced by (1)
Full triples — surface form annotated when it differs from this entity's canonical label.