Oddbean new post about | logout
Kay Ohtie, Bat-Yotie! | 1 years ago (raw) | root | parent | reply | flag 
 @367424eb Wait is...this like the proper solution to DoH? I'd worry about the key fetch being itself intercepted if that's not over DoT, but combined with DoTLS maybe it fixes?
2cdbfee8 | 1 years ago (raw) | root | parent | reply | flag 
 @93068179 I don't think so. This is just to establish a secure TLS connection.

The public key being intercepted in the unencrypted DNS response is not a concern since it's not meant to be a secret.

Now if one is using plain DNS, all the benefits of ECH are nullified: the adversary can just watch DNS traffic, instead of client hello messages, to figure out where the user is going.
Kay Ohtie, Bat-Yotie! | 1 years ago (raw) | root | parent | reply | flag 
 @367424eb Intercepted isn't the concern so much as an unencrypted key being MITM'd to an attacker's public key instead. Would at least sniff that info.