Transport Layer Obscurity: Circumventing SNI Censorship on the TLS-Layer
N. Niere, F. Lange, R. Merget, J. Somorovsky, in: 2025 IEEE Symposium on Security and Privacy (SP), 2025.
Download
Conference Paper
| English
Author
Department
Abstract
HTTPS composes large parts of today’s Internet traffic and has long been subject to censorship efforts in different countries. While censors analyze the Transport Layer Security (TLS) protocol to block encrypted HTTP traffic, censorship circumvention efforts have primarily focused on other protocols such as TCP. In this paper, we hypothesize that the TLS protocol offers previously unseen opportunities for censorship circumvention techniques. We tested our hypothesis by proposing possible censorship circumvention techniques that act on the TLS protocol. To validate the effectiveness of these techniques, we evaluate their acceptance by popular TLS servers and successfully demonstrate that these techniques can circumvent censors in China and Iran. In our evaluations, we discovered 38—partially standard-compliant—distinct censorship circumvention techniques, which we could group into 11 unique categories. Additionally, we provide novel insights into how China censors TLS traffic by presenting evidence of at least three distinct censorship appliances. We suspect that other parts of China’s censorship apparatus and other censors exhibit similar structures and advocate future censorship research to anticipate them. With this work, we hope to aid people affected by censorship and stimulate further
research into censorship circumvention using cryptographic protocols.
Publishing Year
Proceedings Title
2025 IEEE Symposium on Security and Privacy (SP)
Conference
46th IEEE Symposium on Security and Privacy
Conference Location
San Francisco
Conference Date
2025-05-12 – 2025-05-14
LibreCat-ID
Cite this
Niere N, Lange F, Merget R, Somorovsky J. Transport Layer Obscurity: Circumventing SNI Censorship on the TLS-Layer. In: 2025 IEEE Symposium on Security and Privacy (SP). ; 2025. doi:10.1109/SP61157.2025.00151
Niere, N., Lange, F., Merget, R., & Somorovsky, J. (2025). Transport Layer Obscurity: Circumventing SNI Censorship on the TLS-Layer. 2025 IEEE Symposium on Security and Privacy (SP). 46th IEEE Symposium on Security and Privacy, San Francisco. https://doi.org/10.1109/SP61157.2025.00151
@inproceedings{Niere_Lange_Merget_Somorovsky_2025, title={Transport Layer Obscurity: Circumventing SNI Censorship on the TLS-Layer}, DOI={10.1109/SP61157.2025.00151}, booktitle={2025 IEEE Symposium on Security and Privacy (SP)}, author={Niere, Niklas and Lange, Felix and Merget, Robert and Somorovsky, Juraj}, year={2025} }
Niere, Niklas, Felix Lange, Robert Merget, and Juraj Somorovsky. “Transport Layer Obscurity: Circumventing SNI Censorship on the TLS-Layer.” In 2025 IEEE Symposium on Security and Privacy (SP), 2025. https://doi.org/10.1109/SP61157.2025.00151.
N. Niere, F. Lange, R. Merget, and J. Somorovsky, “Transport Layer Obscurity: Circumventing SNI Censorship on the TLS-Layer,” presented at the 46th IEEE Symposium on Security and Privacy, San Francisco, 2025, doi: 10.1109/SP61157.2025.00151.
Niere, Niklas, et al. “Transport Layer Obscurity: Circumventing SNI Censorship on the TLS-Layer.” 2025 IEEE Symposium on Security and Privacy (SP), 2025, doi:10.1109/SP61157.2025.00151.
All files available under the following license(s):
Creative Commons Attribution 4.0 International Public License (CC-BY 4.0):
Main File(s)
File Name
TLS_Obscurity.pdf
463.43 KB
Access Level

Last Uploaded
2025-05-06T13:51:45Z