Understanding Server Name Indication (SNI) in TLS

network security tls wireshark
Comprehensive guide to Server Name Indication (SNI), its role in TLS handshakes, packet analysis with Wireshark, and modern encryption improvements with ECH.
image loading ...

Introduction

Server Name Indication (SNI) is a crucial extension to the Transport Layer Security (TLS) protocol that enables multiple HTTPS websites to be hosted on a single IP address and port. Understanding SNI is essential for network engineers, security professionals, and anyone working with modern web infrastructure.

This guide explores how SNI works, how to capture and analyze it using Wireshark, and the privacy implications that led to Encrypted ClientHello (ECH).

What is Server Name Indication?

Server Name Indication (SNI) is a TLS extension defined in RFC 6066 that allows a client to specify which hostname it's attempting to connect to during the initial stages of the TLS handshake. This enables a server to present the correct SSL/TLS certificate for the requested domain, even when multiple domains share the same IP address.

The Problem SNI Solves

Before SNI, each SSL/TLS certificate required its own dedicated IP address. This created several issues:

  1. IPv4 Address Exhaustion - Limited IPv4 addresses made hosting multiple HTTPS sites expensive
  2. Infrastructure Complexity - Required multiple IP addresses or complex proxy configurations
  3. Virtual Hosting Limitations - Made name-based virtual hosting impossible for HTTPS

SNI solved these problems by allowing clients to indicate the target hostname before the TLS handshake completes.

How SNI Works in TLS Handshakes

TLS Handshake Process

The SNI extension is transmitted as part of the ClientHello message during the TLS handshake:

  1. Client Sends ClientHello - The client initiates the connection by sending a ClientHello message
  2. SNI Extension Included - The ClientHello includes the SNI extension containing the target hostname
  3. Server Selects Certificate - The server reads the SNI value and selects the appropriate certificate
  4. ServerHello Response - The server responds with the correct certificate for the requested domain
  5. Handshake Completion - The TLS handshake continues normally with the selected certificate

ClientHello Message Structure

The ClientHello message contains:

  • Supported TLS versions
  • Cipher suite preferences
  • Compression methods
  • SNI Extension - The target hostname in plain text

Analyzing SNI with Wireshark

Capturing TLS Handshakes

To capture and analyze SNI using Wireshark, follow these steps:

1. Apply the ClientHello Filter

Use this display filter to show only ClientHello messages:

tls.handshake.type == 1

This filter isolates the initial client handshake messages where SNI is transmitted.

2. Locate the SNI Extension

Within the captured ClientHello packet:

  • Expand the "Transport Layer Security" section
  • Navigate to "Handshake Protocol: Client Hello"
  • Find "Extension: server_name"
  • View the "Server Name" field containing the hostname

3. Extract the Hostname

The SNI field displays the exact hostname the client requested, such as:

Server Name: www.example.com

Practical Use Cases

Network administrators use SNI analysis for:

  • Troubleshooting HTTPS connections - Verify correct hostname resolution
  • Security monitoring - Identify which services clients are accessing
  • Certificate validation - Ensure servers present correct certificates
  • Traffic analysis - Understand application-layer communication patterns

Privacy Implications of SNI

The Privacy Problem

While SNI enables efficient HTTPS hosting, it creates a privacy concern:

SNI is transmitted in plain text, revealing:

  • Which websites users are visiting
  • Specific services being accessed
  • Hostname information before encryption begins

Even though the content of HTTPS connections is encrypted, the SNI field exposes the destination hostname to anyone monitoring network traffic, including:

  • Internet Service Providers (ISPs)
  • Network administrators
  • Man-in-the-middle attackers
  • Government surveillance systems

Censorship and Filtering

Because SNI is visible in plain text, it enables:

  • Domain-based filtering - Blocking specific websites by hostname
  • Selective censorship - Preventing access to particular services
  • Traffic discrimination - Treating different services differently based on hostname

Evolution: From ESNI to Encrypted ClientHello (ECH)

Encrypted Server Name Indication (ESNI)

The first solution was Encrypted SNI (ESNI), which encrypted the hostname field in the ClientHello message. However, ESNI had limitations:

  • Only encrypted the SNI field
  • Left other ClientHello parameters exposed
  • Required complex DNS infrastructure

Encrypted ClientHello (ECH)

Encrypted ClientHello (ECH) is the successor to ESNI, providing comprehensive protection:

Key Improvements:

  1. Full ClientHello Encryption - Encrypts the entire ClientHello message, not just SNI
  2. Enhanced Privacy - Protects all handshake parameters from observation
  3. DNS Integration - Works with DNS HTTPS resource records for key distribution
  4. Forward Secrecy - Ensures past connections remain secure

How ECH Works:

  1. Client retrieves ECH configuration from DNS (via HTTPS records)
  2. Client encrypts ClientHello using server's public key
  3. Encrypted ClientHello is wrapped in an outer ClientHello
  4. Server decrypts the inner ClientHello and continues handshake normally

ECH Specification

ECH is defined in the IETF draft specification:

Browser and Server Support

As of 2024, ECH support is growing:

  • Firefox - Enabled by default in recent versions
  • Chrome/Chromium - Available behind experimental flags
  • CloudFlare - Supports ECH on their CDN
  • OpenSSL - Experimental support in development

Lessons Learned

SNI Deployment Considerations

When deploying services that rely on SNI:

  1. Legacy Client Support - Very old clients (pre-2010) may not support SNI
  2. Load Balancer Configuration - Ensure load balancers properly handle SNI
  3. Certificate Management - Automate certificate selection based on SNI values
  4. Monitoring - Implement SNI-aware monitoring for proper certificate serving

Privacy Best Practices

For privacy-conscious deployments:

  1. Deploy ECH - Implement ECH when available to protect user privacy
  2. Use DNS over HTTPS (DoH) - Prevents DNS queries from revealing hostnames
  3. Monitor SNI Exposure - Understand what information is visible in your network
  4. Educate Users - Help users understand TLS privacy implications

Security Implications

SNI visibility enables both legitimate and illegitimate use cases:

Legitimate:

  • Network security monitoring
  • Compliance and policy enforcement
  • Performance optimization

Concerning:

  • Surveillance and tracking
  • Censorship and filtering
  • Privacy invasion

Understanding these trade-offs is essential for network engineers and security professionals making architectural decisions.

Conclusion

Server Name Indication has been instrumental in enabling the modern HTTPS-enabled web by allowing multiple secure websites to share IP addresses. However, the privacy implications of transmitting hostnames in plain text have driven the development of Encrypted ClientHello (ECH).

As ECH adoption increases, the balance between operational visibility and user privacy continues to evolve. Network professionals must stay informed about these developments to make appropriate architectural and policy decisions.

References and Further Reading

Tags

linux (5)network (4)nextjs (4)monitor (2)security (1)tls (1)wireshark (1)akamai (1)web (1)programming (1)docker (1)kubernetes (1)devops (1)containers (1)web-development (1)technical-writing (1)editor (1)windows (1)aci (1)python (1)network-automation (1)testing (1)cisco (1)