2 个仓库
Protocol extensions that encrypt the initial client handshake message to prevent passive network observation.
Distinct from Client-Side Encryption: Candidates focus on encrypted email, sync clients, or DNS queries, not the specific TLS Client Hello encryption.
Explore 2 awesome GitHub repositories matching security & cryptography · Encrypted Client Hello. Refine with filters or upvote what's useful.
rustls is a memory-safe implementation of the Transport Layer Security protocol written in Rust. It provides a cryptographic stack for secure network communication, supporting both TLS 1.3 and 1.2 standards for client and server implementations. The project is designed as a modular cryptographic library that allows swapping underlying cryptographic backends and primitive providers to meet specific security or performance requirements. It incorporates a post-quantum cryptography stack, utilizing hybrid key exchanges and signatures to protect data against future quantum computing threats. The
Protects data sent during the initial handshake to prevent passive network observers from seeing client information.
s2n 是一个基于 C 的安全库和 TLS 协议实现,作为安全网络传输层。它提供了一个模块化加密后端接口,用于加密数据流、管理握手并处理对等点之间的双向身份验证。 该项目专注于后量子密码学,集成了抗量子密钥交换和数字签名,以保护连接免受未来计算威胁。它通过安全加固措施(如内存锁定秘密存储以防止密钥被交换到磁盘)和通过随机延迟进行的定时攻击缓解来区分自身。 该库涵盖了广泛的连接管理和优化功能,包括会话恢复、预共享密钥以及通过自定义回调进行的非阻塞网络 I/O。它还提供广泛的证书管理工具,用于信任存储处理、吊销验证和透明度验证。
Parses handshake data to extract cipher suites, session IDs, extensions, and supported groups from the Client Hello.