2015-fifield-blocking-resistant
Blocking-resistant communication through domain frontingcore
canonical link → · doi: 10.1515/popets-2015-0009
Abstract
We describe "domain fronting," a versatile censorship circumvention
technique that hides the remote endpoint of a communication. Domain
fronting works at the application layer, using HTTPS, to communicate
with a forbidden host while appearing to communicate with some other
host, permitted by the censor.
Team notes
Foundational paper for the entire domain-fronting line of work, including
Lantern's own getlantern/fronted package and the kindling library
inherits its threat model from here. Critical historical context for
why CDN-fronted bootstrapping is the reflexive Lantern bootstrap path.
Cited by everything in the domain-fronting line of research.