| Title | nQUIC: Noise-Based QUIC Packet Protection |
| Publication Type | Conference Paper |
| Year of Publication | 2018 |
| Authors | Hall-Andersen, Mathias, Wong, David, Sullivan, Nick, Chator, Alishah |
| Conference Name | Proceedings of the Workshop on the Evolution, Performance, and Interoperability of QUIC |
| Publisher | ACM |
| Conference Location | New York, NY, USA |
| ISBN Number | 978-1-4503-6082-1 |
| Keywords | Human Behavior, Metrics, PKI Trust Models, pubcrawl, Resiliency, Scalability |
| Abstract | We present nQUIC, a variant of QUIC-TLS that uses the Noise protocol framework for its key exchange and basis of its packet protector with no semantic transport changes. nQUIC is designed for deployment in systems and for applications that assert trust in raw public keys rather than PKI-based certificate chains. It uses a fixed key exchange algorithm, compromising agility for implementation and verification ease. nQUIC provides mandatory server and optional client authentication, resistance to Key Compromise Impersonation attacks, and forward and future secrecy of traffic key derivation, which makes it favorable to QUIC-TLS for long-lived QUIC connections in comparable applications. We developed two interoperable prototype implementations written in Go and Rust. Experimental results show that nQUIC finishes its handshake in a comparable amount of time as QUIC-TLS. |
| URL | http://doi.acm.org/10.1145/3284850.3284854 |
| DOI | 10.1145/3284850.3284854 |
| Citation Key | hall-andersen_nquic:_2018 |
nQUIC: Noise-Based QUIC Packet Protection