Amazon Web Services starts blocking domain-fronting, following Google’s lead

A week after Google shut down a method for app developers to skirt internet censorship, Amazon is doing the same. In a post last week, Amazon Web Services announced that it would implement a new set of enhanced domain protections specifically designed to stop domain-fronting, a practice that lets developers disguise their traffic to evade network blocks.

In the post, Amazon characterized the change as an effort to stamp out malware. “Tools including malware can use this technique between completely unrelated domains to evade restrictions and blocks that can be imposed at the TLS/SSL layer,” the post explained. “No customer ever wants to find that someone else is masquerading as their innocent, ordinary domain.”

Domain-fronting works by…

Continue reading…

Go to Source
Author: Russell Brandom

Powered by WPeMatico