RFC 9849. TLS Encrypted Client Molo
Amagqabantshintshi
Mewayz Team
Editorial Team
Ukujonga i-Evolving Internet Landscape
Kumashumi eminyaka, i-intanethi ixhomekeke kwibhalansi ethambileyo phakathi kokhuseleko kunye nokubonakala. Iinkqubo ezinje ngoKhuseleko loMaleko wezoThutho (TLS), ilitye lembombo le-ayikhoni yesitshixo kwisikhangeli sakho, zibe luncedo ekuguquleleni idatha yethu. Nangona kunjalo, ulwazi olubalulekileyo luhlala lubonakala ngokucacileyo: iSibonakaliso segama lomncedisi (SNI). Olu phawu lwedijithali, oluxelela umncedisi ukuba yeyiphi iwebhusayithi ozama ukufikelela kuyo, ithunyelwa ingafihlwanga ngexesha lokuqala ukuxhawula isandla kweTLS. Ngelixa kuyimfuneko kumzila wetrafikhi kwilizwe lolwabelwano lokubamba, oku kuvezwa kudala umsantsa omkhulu wabucala. Ababoneleli ngenkonzo ye-Intanethi, abalawuli bothungelwano, kunye nabaphulaphuli abanokubakho banokubona iwebhusayithi nganye oyindwendwelayo, nokuba umxholo ngokwawo ufihliwe. Kulapho inkqubela phambili ebalulekileyo, ebhalwe kwi-RFC 9849 neyaziwa ngokuba yi-Encrypted Client Hello (ECH), ingena eqongeni, ithembisa ukuvala lo kroba lokugqibela kubumfihlo bewebhu.
Yintoni i-RFC 9849 kunye ne-Encrypted Client Hello (ECH)?
RFC 9849, enesihloko ngokusesikweni "Isibophelelo seNkonzo kunye neNkalo yeParameter ngeDNS," luxwebhu olusemgangathweni oluchaza isakhelo soMxumi oFihliweyo Molo. I-ECH lulwandiso lwe-TLS 1.3 iprothokholi efihla umyalezo wonke we-Client Hello, kuquka nedatha ebuthathaka ye-SNI. Ngokwenyani, ithatha indawo yombhalo ocacileyo othi "Ndifuna ukuqhagamshela kwi-example.com" ngomyalezo ofihliweyo onokuthi kuphela ngumncedisi wewebhusayithi ekujongwe ukuba awenze. Oku kuqinisekisa ukuba ukusuka kwinqanaba lokuqala lenkqubo yoqhagamshelo, indawo oya kuyo ifihliwe emehlweni okukhangela kwinethiwekhi. I-ECH ayifihli nje i-SNI; kukwafihla ezinye iimpawu zeminwe ezinokubakho ekuxhawulweni ngesandla, okufana ne-ciphersuites exhaswayo, ukudala amava okukhangela afanayo kunye nabucala. Ubuchwephesha busebenzisa ubuchule be-cryptographic ukuvumela umxhasi ukuba enze isitshixo sikawonke-wonke kwiirekhodi ze-DNS zewebhusayithi, ethi ke isebenzise ukuguqulela ngokuntsonkothileyo idatha yokuxhawula ngesandla ebuthathaka.
IiNzuzo eziZibambekayo zoMthombo we-ECH oNgqongileyo
Ukuphunyezwa kwe-ECH kubonisa umzuzu obalulekileyo wobumfihlo kunye nokhuseleko lwedijithali. Izibonelelo zayo zidlulela ngaphaya kokufihla imbali yakho yokukhangela kwi-ISP yakho.
- Ubungasese boMsebenzisi obomeleziweyo: Ngokubhala ngokuntsonkothileyo i-SNI, i-ECH inqanda amaqela angaphandle ukuba akhe iprofayile eneenkcukacha yemisebenzi yakho ye-intanethi ngokusekelwe kwiiwebhusayithi ozindwendwelayo. Eli linyathelo elibalulekileyo ekubuyiseleni ukungaziwa kwabasebenzisi kwiwebhu.
- Ukunciphisa ukuCenso kunye noCalucalulo: Kweminye imimandla, ukufikelela kwi-intanethi kuhluzwa ngokusekelwe kwi-SNI. I-ECH yenza ukuba kube nzima kakhulu kwizihluzi zenqanaba lenethiwekhi ukuvala ukufikelela kwiiwebhusayithi ezithile okanye iinkonzo, ukukhuthaza i-intanethi evuleleke ngakumbi.
- Umphezulu oNcitshisiweyo wee-Cyberattacks: Abahlaseli bahlala besebenzisa idatha engafihlwanga ye-SNI ukujolisa kwiinkonzo ezithile okanye abasebenzisi. Ngokuphazamisa olu lwazi, i-ECH idibanisa uhlalutyo lwezothutho kunye neentlobo ezithile zokuhlaselwa kwendoda ephakathi.
- Imigangatho ye-Intanethi ye-Intanethi ye-Intanethi: I-ECH imele ukuvela kwendalo kwe-TLS, ukuvala i-gap yangasese yexesha elide kunye nokulungelelanisa nomgaqo "wokufihla yonke into." Ibeka isiseko esitsha sento abasebenzisi abanokuyilindela kuqhagamshelwano olukhuselekileyo.
I-ECH kunye neKamva leMisebenzi yoShishino oluKhuselekileyo
Kumashishini, ukutshintshela kwi-intanethi yabucala ngakumbi kunempembelelo ngokuthe ngqo kwindlela asebenza ngayo kunye nokukhusela izinto zabo zedijithali. Njengoko iinkampani zithembela ngakumbi kwiiplatifti ezisekelwe kwifu kunye neenkqubo zokusebenza zemodyuli ezifana neMewayz ukulawula ukuhamba kwazo komsebenzi, ukhuseleko lwalo lonke uxhumano lubaluleke kakhulu. I-ECH iqinisekisa ukuba unxibelelwano phakathi kwesixhobo somqeshwa kunye nezicelo zeshishini-ezibanjwe kwiinkonzo ezifana ne-Mewayz-zikhuselwe ekukhawulweni ukusuka kwipakethi yokuqala. Oku kubaluleke kakhulu kumashishini aphatha idatha enovakalelo, njengoko yongeza umaleko obalulekileyo wokhuseleko ngokuchasene nokuphulaphula okuntsonkothileyo. Ukwamkela itekhnoloji exhasa i-ECH ibonakalisa ukuzibophelela ekukhuseleni ukhuseleko, nto leyo enokuba yinto ebalulekileyo yokuthembela kubaxhasi kunye namaqabane. Njengoko enye ingcaphephe yokhuseleko iphawule kwingxoxo malunga nekamva leenkqubo zewebhu:
"I-ECH ayikho nje into; kukulungiswa okufunekayo kuyilo lwangaphambili lwe-TLS. Izalisa isithembiso sokubethelwa ekupheleni kokuphela ngokuqinisekisa ukuba 'imvulophu' yokunxibelelana kwakho iyimfihlo njengeleta ngaphakathi. "Amaqonga abeka phambili ukuqhubela phambili okunjalo, kuqukwa iMewayz, abekwe ngcono ukubonelela ngemeko-bume ekhuseleke ngokwenene kwimisebenzi ebalulekileyo yeshishini, eqinisekisa ukuba idatha yenkampani ihlala iyimfihlo kwaye ibalulekile.
Isiphelo: I-Intanethi yaBucala ngakumbi ikwi-Horizon
RFC 9849 kunye noMxumi Ofihliweyo Molo umele umtsi omkhulu obheke phambili kugqatso lwe-intanethi yabucala ngokwenene. Ngelixa utshintsho luya kufuna uhlaziyo kuzo zonke iiphequluli, iiseva, kunye neziseko zophuhliso lwe-DNS, umfutho uyakha. Abathengisi abakhulu besiphequluli kunye nababoneleli befu sele bephumeza inkxaso. Kubasebenzisi bokugqibela, kuthetha ukubuyisela iqhekeza lemfihlo yabo yedijithali. Kumashishini asebenzisa amaqonga anamhlanje, kuthetha iziseko zokhuseleko ezomeleleyo. Njengoko lo mgangatho uzuza ukwamkelwa ngokubanzi, sisondela kwi-intanethi apho yonke inkalo yonxibelelwano lwethu ikhuselwe ngokungagqibekanga, ikhuthaza ukuthembana nokhuseleko olukhulu kuye wonke umntu okwi-intanethi.
💡 DID YOU KNOW?
Mewayz replaces 8+ business tools in one platform
CRM · Invoicing · HR · Projects · Booking · eCommerce · POS · Analytics. Free forever plan available.
Start Free →Imibuzo Ebuzwa Rhoqo
Ukujonga iMeko ye-Intanethi eguqukayo
Kumashumi eminyaka, i-intanethi ixhomekeke kwibhalansi ethambileyo phakathi kokhuseleko kunye nokubonakala. Iinkqubo ezinje ngoKhuseleko loMaleko wezoThutho (TLS), ilitye lembombo le-ayikhoni yesitshixo kwisikhangeli sakho, zibe luncedo ekuguquleleni idatha yethu. Nangona kunjalo, ulwazi olubalulekileyo luhlala lubonakala ngokucacileyo: iSibonakaliso segama lomncedisi (SNI). Olu phawu lwedijithali, oluxelela umncedisi ukuba yeyiphi iwebhusayithi ozama ukufikelela kuyo, ithunyelwa ingafihlwanga ngexesha lokuqala ukuxhawula isandla kweTLS. Ngelixa kuyimfuneko kumzila wetrafikhi kwilizwe lolwabelwano lokubamba, oku kuvezwa kudala umsantsa omkhulu wabucala. Ababoneleli ngenkonzo ye-Intanethi, abalawuli bothungelwano, kunye nabaphulaphuli abanokubakho banokubona iwebhusayithi nganye oyindwendwelayo, nokuba umxholo ngokwawo ufihliwe. Kulapho inkqubela phambili ebalulekileyo, ebhalwe kwi-RFC 9849 neyaziwa ngokuba yi-Encrypted Client Hello (ECH), ingena eqongeni, ithembisa ukuvala lo kroba lokugqibela kubumfihlo bewebhu.
Yintoni i-RFC 9849 kunye ne-Encrypted Client Hello (ECH)?
RFC 9849, enesihloko ngokusesikweni "Isibophelelo seNkonzo kunye neNkalo yeParameter ngeDNS," luxwebhu olusemgangathweni oluchaza isakhelo soMxumi oFihliweyo Molo. I-ECH lulwandiso lwe-TLS 1.3 iprothokholi efihla umyalezo wonke we-Client Hello, kuquka nedatha ebuthathaka ye-SNI. Ngokwenyani, ithatha indawo yombhalo ocacileyo othi "Ndifuna ukuqhagamshela kwi-example.com" ngomyalezo ofihliweyo onokuthi kuphela ngumncedisi wewebhusayithi ekujongwe ukuba awenze. Oku kuqinisekisa ukuba ukusuka kwinqanaba lokuqala lenkqubo yoqhagamshelo, indawo oya kuyo ifihliwe emehlweni okukhangela kwinethiwekhi. I-ECH ayifihli nje i-SNI; kukwafihla ezinye iimpawu zeminwe ezinokubakho ekuxhawulweni ngesandla, okufana ne-ciphersuites exhaswayo, ukudala amava okukhangela afanayo kunye nabucala. Ubuchwephesha busebenzisa ubuchule be-cryptographic ukuvumela umxhasi ukuba enze isitshixo sikawonke-wonke kwiirekhodi ze-DNS zewebhusayithi, ethi ke isebenzise ukuguqulela ngokuntsonkothileyo idatha yokuxhawula ngesandla ebuthathaka.
IiNzuzo eziZibambekayo zoMthombo we-ECH oxhaphakileyo
Ukuphunyezwa kwe-ECH kubonisa umzuzu obalulekileyo wobumfihlo kunye nokhuseleko lwedijithali. Izibonelelo zayo zidlulela ngaphaya kokufihla imbali yakho yokukhangela kwi-ISP yakho.
I-ECH kunye neKamva leMisebenzi yoShishino oluKhuselekileyo
Kumashishini, ukutshintshela kwi-intanethi yabucala ngakumbi kunempembelelo ngokuthe ngqo kwindlela asebenza ngayo kunye nokukhusela izinto zabo zedijithali. Njengoko iinkampani zithembela ngakumbi kwiiplatifti ezisekelwe kwifu kunye neenkqubo zokusebenza zemodyuli ezifana neMewayz ukulawula ukuhamba kwazo komsebenzi, ukhuseleko lwalo lonke uxhumano lubaluleke kakhulu. I-ECH iqinisekisa ukuba unxibelelwano phakathi kwesixhobo somqeshwa kunye nezicelo zeshishini-ezibanjwe kwiinkonzo ezifana ne-Mewayz-zikhuselwe ekukhawulweni ukusuka kwipakethi yokuqala. Oku kubaluleke kakhulu kumashishini aphatha idatha enovakalelo, njengoko yongeza umaleko obalulekileyo wokhuseleko ngokuchasene nokuphulaphula okuntsonkothileyo. Ukwamkela itekhnoloji exhasa i-ECH ibonakalisa ukuzibophelela ekukhuseleni ukhuseleko, nto leyo enokuba yinto ebalulekileyo yokuthembela kubaxhasi kunye namaqabane. Njengoko enye ingcaphephe yokhuseleko iphawule kwingxoxo malunga nekamva leenkqubo zewebhu:
Isiphelo: I-Intanethi yaBucala ngakumbi ikwi-Horizon
RFC 9849 kunye noMxumi Ofihliweyo Molo umele umtsi omkhulu obheke phambili kugqatso lwe-intanethi yabucala ngokwenene. Ngelixa utshintsho luya kufuna uhlaziyo kuzo zonke iiphequluli, iiseva, kunye neziseko zophuhliso lwe-DNS, umfutho uyakha. Abathengisi abakhulu besiphequluli kunye nababoneleli befu sele bephumeza inkxaso. Kubasebenzisi bokugqibela, kuthetha ukubuyisela iqhekeza lemfihlo yabo yedijithali. Kumashishini asebenzisa amaqonga anamhlanje, kuthetha iziseko zokhuseleko ezomeleleyo. Njengoko lo mgangatho uzuza ukwamkelwa ngokubanzi, sisondela kwi-intanethi apho yonke inkalo yonxibelelwano lwethu ikhuselwe ngokungagqibekanga, ikhuthaza ukuthembana nokhuseleko olukhulu kuye wonke umntu okwi-intanethi.
Lawula ishishini lakho ngeMewayz
Mewayz izisa iimodyuli zoshishino ezingama-207 kwiqonga elinye — CRM, i-invoyisi, ulawulo lweprojekthi, nokunye. Joyina abasebenzisi abayi-138,000+ abenze lula ukuhamba kwabo.
Qala Mahala Namhlanje →We use cookies to improve your experience and analyze site traffic. Cookie Policy