A technique used to mask the resource’s real address by manipulating the content delivery network (CDN) queries. With Domain Fronting, the target domain name will be made known only after an encrypted HTTPS connection is established between the client and the server. Thereby circumventing most of the protective mechanisms based on verification of allowed addresses prior to opening a cession.
The domain masking technique was used by the makers of the blocked resources and apps that used to conceal their servers behind Amazon’s and Google’s CDN networks. In 2018, both vendors stopped supporting the technology in their services.