Hacker News new | past | comments | ask | show | jobs | submit login

right - but we're coming for cleartext sni too:

https://tools.ietf.org/html/draft-rescorla-tls-esni-00

interestingly, something like DoH is a pre-requisite for pulling off esni.




that's great, but are you coming for the ip addresses too (probably the bigger challenge)?


wrt esni the anonymity pool is definitely the set of content that can share the same address pool. In a world with lots of CDNS (and several multi-CDN switching services) this covers a huge amount of content - but I agree - not everything.


If you think about the best/worst case scenario, would you be happy if one CDN would deliver everything? I think that we would be in a worst situation... ideally, I think that everyone would have their own servers and that your ISP would not even be able to see which IP addresses you are talking too (completely decentralized)


cdn switchers/sharers are very interesting here. e.g. cedexis


Yes, we are. After ESNI we’re working on DNS IP address randomization.


is that a joke? sorry I don't see how that would help... where could I get more info?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: