ASVS Requirement 12.1.5

• Level: 3
• Chapter: V12 Secure Communication
• Section: V12.1 General TLS Security Guidance
• Source: 0x21-V12-Secure-Communication.md

Description

Verify that Encrypted Client Hello (ECH) is enabled in the application's TLS settings to prevent exposure of sensitive metadata, such as the Server Name Indication (SNI), during TLS handshake processes.