Developers of the popular Signal secure messaging app have started to use Google's domain as a front to hide traffic to their service and to sidestep blocking attempts. Bypassing online censorship in countries where internet access is controlled by the government can be very hard for users. It typically requires the use of virtual private networking (VPN) services or complex solutions like Tor, which can be banned too.
The solution from Signal's developers was to implement a censorship-circumvention technique known as domain fronting that was described in a 2015 paper [PDF] by researchers from University of California, Berkeley, the Brave New Software project and Psiphon.
The technique involves sending requests to a "front domain" and using the HTTP Host header to trigger a redirect to a different domain. If done over HTTPS, such redirection would be invisible to someone monitoring the traffic, because the HTTP Host header is sent after the HTTPS connection is negotiated and is therefore part of the encrypted traffic.
(Score: 1) by Francis on Saturday December 24 2016, @06:09PM
Considering that China has already banned Google, I'm not sure that Google ought to be tolerating this kind of abuse of their systems.
(Score: 0) by Anonymous Coward on Sunday December 25 2016, @02:09PM
Considering that China has already banned Google
There are other countries in the world that are using censorship regularly or are headed in that direction (like the US & UK).
(Score: 1) by Francis on Sunday December 25 2016, @05:11PM
Citation needed, the US has many issues, but censorship isn't one of them.