Two years ago, @cloudflare launched trial support for ESNI, an extension to TLS that keeps hostnames private. Today, @cjpatton_ explains what we've learned and how the IETF specification has evolved to become ECH (Encrypted Client Hello).https://t.co/OwC7vQiHoq
— Nick Sullivan (@grittygrease) December 8, 2020
7/
And... "Improving DNS Privacy with Oblivious DoH in 1.1.1.1" https://t.co/3PORMaKZtj
— John Graham-Cumming (@jgrahamc) December 8, 2020
Oblivious DoH is great because it answers, with a technical solution, the worries of people who want to use a very, very fast resolver like 1.1.1.1 but don't want to trust us with their IP.
Quite excited about ECH after reading @CloudFlare's https://t.co/Pj3UUaiY3J.
— Tim Perry (@pimterry) December 8, 2020
Looks like a clear improvement, that simultaneously preserves fallbacks without mitigating its security benefits, which is really impressive.
Did you know what "Oblivious DNS-over-HTTPS" is?
— Kontra (@counternotions) December 8, 2020
Now you do. With love from Apple and Cloudflare.
↓ https://t.co/aFQztclDAr
Meet ODoH. DoH over a proxy where the proxy can't see the request and the DoH-server can't see the source IP... https://t.co/nt92527L2v
— Daniel Stenberg (@bagder) December 8, 2020
That was a terrible joke, I'm not sorry. Here's the blog post ? https://t.co/T7aXbsyZsA
— Scott Helme (@Scott_Helme) December 8, 2020
Resolvers like 1.1.1.1 have privacy policies, but wouldn't it be cool if DNS resolvers never learned your IP address? Enter Oblivious DoH.
— Nick Sullivan (@grittygrease) December 8, 2020
Cloudflare and partners (PCCW, SURF, and Equinix) now support this emerging standard to help make DoH private!
9/https://t.co/biYrCtFNb2
これ、信頼されて使われるのかな?
— Korry Luke (@koluker) December 8, 2020
“each of these guarantees relies on one fundamental property — that the proxy and the target servers do not collude. So long as there is no collusion, an attacker succeeds only if both the proxy and target are compromised.”https://t.co/itFnuS08AH
Apple and Cloudflare team up to stop your ISP seeing which websites you visit https://t.co/emXxKm6QRT
— Matt Navarra (@MattNavarra) December 8, 2020
Cloudflare and Apple say they've fixed one of the internet's biggest privacy holes https://t.co/1mPg76H5Jv
— iMore (@iMore) December 8, 2020
Cloudflare and Apple design a new privacy-friendly internet protocol: Oblivious DNS-over-HTTPS https://t.co/SaCDHbrcCY
— Whitney Merrill (@wbm312) December 8, 2020
Cloudflare and Apple design a new privacy-friendly internet protocol https://t.co/qC04EROxk0
— Omar Ajame (@omarajame) December 8, 2020
“Engineers at Apple are working w/Cloudflare and Fastly to create Oblivious DNS, a new standard that can make it harder to track a user's online activities...By separating IP address from query, it offers chance for DNS queries to be made safer” $FSLY $NEThttps://t.co/aprjiVZEsG
— TerraPharma (@TerraPharma1) December 8, 2020
"Now, #Cloudflare, #Apple, and content-delivery network #Fastly have introduced a novel way to fix that [...]. Engineers from all three companies have devised Oblivious #DNS, a major change to the current domain name system [...]." #ObliviousDNShttps://t.co/9Pomqo33Ai
— Dennis C. Dietrich (@denniscdietrich) December 9, 2020
Great piece, @dangoodin001! @Cloudflare, Apple, and others back a new way to make the Internet more private https://t.co/X0OlVhEvYK
— Daniella V. (@BellaTweetz) December 9, 2020
【自分用メモ】Cloudflare and Apple design a new privacy-friendly internet protocol – TechCrunch https://t.co/rniuSatcuj
— Yasuhiro Morishita (@OrangeMorishita) December 9, 2020
Cool.
— Aryeh Goretsky (@goretsky) December 8, 2020
Cloudflare and Apple design a new privacy-friendly internet protocol https://t.co/RR85cDaHUQ via @techcrunch
https://t.co/9RkG0Hfal0
— Peter Todd (@peterktodd) December 9, 2020
Idea: Tor, but for DNS requests only.
People don't like to run exit nodes due to legal concerns. But DNS requests are much less likely to cause problems. So potentially, many more people would be willing to run DNS request proxies.
$AAPL $NET Cloudflare and Apple made a new DNS protocol to protect your data from ISPs https://t.co/u5RXDHfw1t
— North Bluff Capital (@bluff_capital) December 9, 2020
Cloudflare And Apple's New 'Oblivious' Protocol Could Mean an End to Snooping Telecos https://t.co/UMNVQlhC0e
— Evan Kirstel #RemoteWork (@EvanKirstel) December 9, 2020
Cloudflare And Apple's New 'Oblivious' Protocol Could Mean an End to Snooping Telecos https://t.co/6yJgqlLeIG pic.twitter.com/M94VBS0OQG
— Justin (@xxdesmus) December 8, 2020