@misc{rfc8547,
    series =    {Request for Comments},
    number =    8547,
    howpublished =  {RFC 8547},
    publisher = {RFC Editor},
    doi =       {10.17487/RFC8547},
    url =       {https://www.rfc-editor.org/info/rfc8547},
    author =    {Andrea Bittau and Daniel B. Giffin and Mark J. Handley and David Mazieres and Eric W. Smith},
    title =     {{TCP-ENO: Encryption Negotiation Option}},
    pagetotal = 31,
    year =      2019,
    month =     may,
    abstract =  {Despite growing adoption of TLS, a significant fraction of TCP traffic on the Internet remains unencrypted. The persistence of unencrypted traffic can be attributed to at least two factors. First, some legacy protocols lack a signaling mechanism (such as a STARTTLS command) by which to convey support for encryption, thus making incremental deployment impossible. Second, legacy applications themselves cannot always be upgraded and therefore require a way to implement encryption transparently entirely within the transport layer. The TCP Encryption Negotiation Option (TCP-ENO) addresses both of these problems through a new TCP option kind providing out-of-band, fully backward-compatible negotiation of encryption.},
}