China is now blocking all encrypted HTTPS traffic that uses TLS 1.3, according to observers at the Great Firewall Report (GFR).
TLS is the foundation of secure online communication and hides content users wish to access or have generated so it can pass over the internet without being observed by unrelated parties.
While TLS hides the content of a user's communication, it cannot always hide the server they are communicating with because its handshake optionally contains a Server Name Indication (SNI) field designed to explain where traffic is going. China and other nation-states have used this info to block their users from accessing particular websites.
To address that privacy gap TLS introduced Encrypted SNI (ESNI). ENSI encrypts the SNI so that intermediaries cannot view it and thus, in theory at least, prevent overzealous censors from sniffing and blocking traffic headed to and from places ..
Support the originator by clicking the read the rest link below.
