5 years ago
Privacy 2019: Fixing a 16 year-old privacy problem in TLS with ESNI
In our previous post, we discussed Server Name Indication (SNI), an extension to SSL/TLS that dates back to 2003 and that has since become mandatory (TLS 1.3). So what problem does SNI actually solve and why is it necessary? SNI allows the server handling SSL/TLS termination to know which host you’re connecting to; this is important because the server needs to hand you a certificate with a Subject Name (SN)/SAN that is valid for the hostname being accessed.
Continue Reading
https://www.sentinelone.com
Join the Discussion