RFC 9458: Oblivious HTTP — A Protocol for Privacy-Preserving HTTP Message Forwarding
By
Christopher A. Wood
Summary
This document (RFC 9458) defines Oblivious HTTP, a protocol standardized by the IETF for forwarding encrypted HTTP messages. It enables clients to make multiple requests to an origin server without the server being able to link those requests to the client or identify them as coming from the same client. The protocol achieves this by placing only limited trust in intermediary nodes used to forward messages, thereby enhancing client privacy and anonymity at the HTTP layer.
Source
bskyRFC 9458: Oblivious HTTP — A Protocol for Privacy-Preserving HTTP Message Forwardingdatatracker.ietf.orgKey quotes
· 2 pulledThis document describes Oblivious HTTP, a protocol for forwarding encrypted HTTP messages.
Oblivious HTTP allows a client to make multiple requests to an origin server without that server being able to link those requests to the client or to identify the requests as having come from the same client, while placing only limited trust in the nodes used to forward the messages.
You might also wanna read
RFC 9849: TLS Encrypted Client Hello Specification for Enhanced Privacy
RFC 9849 defines a new mechanism for encrypting ClientHello messages in TLS (Transport Layer Security) under a server public key. This addre
Understanding the new HTTP QUERY method (RFC 10008): History, benefits, and drawbacks
This blog post explores the newly published RFC 10008, which defines the HTTP QUERY method. It explains the technical background of HTTP met
Understanding HTTP Caching: A Guide to RFC 9111 and Cache-Control Headers
This article provides a comprehensive guide to HTTP caching based on RFC 9111 (2022), explaining how the Cache-Control header works in HTTP
Session Encrypted Messaging App: Privacy-Focused Decentralized Communication Without Phone Numbers
The article discusses Session, an open-source encrypted messaging app that prioritizes privacy and security by not requiring phone numbers o
itsfoss.com·6mo agoRFC 9839: Defining Safer Unicode Character Subsets for Protocols and Data Structures
RFC 9839 addresses the issue of which Unicode characters should be excluded from text fields in data structures and protocols, despite Unico
Understanding HTTP Headers: Essential Components for Web Development and API Integration
This article explains HTTP headers as fundamental components of the HTTP protocol that contain important information about requests and resp

Comments
Sign in to join the conversation.
No comments yet. Be the first.