blog.trnck.dev
0
fork

Configure Feed

Select the types of activity you want to include in your feed.

new post: Cloudflare disables Encrypted Client Hello

+12
+12
_posts/2024-01-02-cloudflare-disabled-ech.md
··· 1 + --- 2 + title: "Cloudflare disables Encrypted Client Hello" 3 + image: ciphertrails_1.png 4 + --- 5 + 6 + In late October, [Cloudflare informed](https://community.cloudflare.com/t/early-hints-and-encrypted-client-hello-ech-are-currently-disabled-globally/567730) via their forum that they were disabling <abbr title="Encrypted Client Hello">ECH</abbr> on all sites they manage, due to "issues"[^1]. This is quite sad and surprising news, as ECH was a great step forward for privacy on the web and Cloudflare is the first big player driving adoption of the standard. 7 + 8 + Hence, as of today, ECH is not enabled on **any** of the top 100,000 sites, as per the [Cloudflare Radar](https://radar.cloudflare.com/domains/) domain list. At least, if we're starting at 0, we can only go up from here. 9 + 10 + Also, have a Happy New Year! 11 + 12 + [^1]: Personally, I believe these to be political rather than technical in nature. As I wrote in the [first episode](/hello-internet/) of this series, networks with security policies can be easily worked around using ECH, and it also may be the case that those issues will need to be resolved first, before mass adoption.
img/thumbnail/ciphertrails_2.png

This is a binary file and will not be displayed.