- From: Michiel Leenaars <michiel.ml@nlnet.nl>
- Date: Thu, 22 May 2025 18:27:48 +0200
- To: HTTP Working Group <ietf-http-wg@w3.org>
- Message-ID: <2oekai2udtapmbp6f6eswfklzvw56hyimewonfvcwb3x373cfw@handcjeer6oa>
Hi folks, just to flag that there is some adjacent work ongoing by the folks at Tweede Golf and Midnight Blue on this - intended primarily as a defense mechanism against assymmetric DDoS attacks: https://nlnet.nl/project/TLS-Client-PoW/ Internet Draft: https://datatracker.ietf.org/doc/draft-venhoek-tls-client-puzzles/ IETF hackathon: https://wiki.ietf.org/en/meeting/121/hackathon#tls-client-puzzles Implementation: https://github.com/tweedegolf/rustls-pow I'm happy to bring people into contact with the team, feel free to reach out. Best, Michiel Leenaars NLnet Foundation >Just to note, PoW isn't always about auctioning access. > >Hashcash-style use can help reduce spam or abuse without needing >credentials, especially for anonymous or low-friction cases. -- Support NLnet, the open internet and open source with just 5 minutes of your time. Make a difference today. Visit: http://nlnet.nl/help (English) - http://nlnet.nl/ayuda (Espanol) - --------------------- Do you know people that have ideas to improve the internet? Or maybe you have such an idea yourself? Check out what we can do for you at https://nlnet.nl/propose and apply!
Received on Thursday, 22 May 2025 16:27:55 UTC