← Back to context Comment by hzwanip 1 day ago How would you (an arbitrary web server) fingerprint a TLS connection if the Client Hello is encrypted? 4 comments hzwanip Reply conradludgate 1 day ago The website owner (or cloudflare in this case) has the keys to decrypt the client hello. That's necessary for routing information. hzwanip 1 day ago You're right, sorry! I got confused myself. szmarczak 1 day ago By decrypting it? I don't think you know how TLS, or E2E works in general. ISP doesn't perform the fingerprinting, the server does. hzwanip 1 day ago Of course! My bad, thanks for engaging.
conradludgate 1 day ago The website owner (or cloudflare in this case) has the keys to decrypt the client hello. That's necessary for routing information. hzwanip 1 day ago You're right, sorry! I got confused myself.
szmarczak 1 day ago By decrypting it? I don't think you know how TLS, or E2E works in general. ISP doesn't perform the fingerprinting, the server does. hzwanip 1 day ago Of course! My bad, thanks for engaging.
The website owner (or cloudflare in this case) has the keys to decrypt the client hello. That's necessary for routing information.
You're right, sorry! I got confused myself.
By decrypting it? I don't think you know how TLS, or E2E works in general. ISP doesn't perform the fingerprinting, the server does.
Of course! My bad, thanks for engaging.