Yeah I thought regular web traffic on HTTPS would look innocuous too, but I guess they can inspect how the data is structured and easily see if it belongs to a certain protocol (like Nostr) that way

How do "they" (who they?) inspect HTTPS data.

There are ~40 governments trusted to sign certificates by major operating systems.. For them, HTTPS is trivial to MitM unless you're pinning certs

@SimpleX Chat uses self signed certificates

Awesome

Won't the certificate headers still be visible to peeping toms?