Nothing Special   »   [go: up one dir, main page]
Skip to main content
Springer Nature Link
Log in

QUIC Protocol with Post-quantum Authentication

  • Conference paper
  • First Online:
Information Security (ISC 2022)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 13640))

Included in the following conference series:

Abstract

Post-quantum ciphers (PQC) are designed to replace the current public-key ciphers which are vulnerable against the quantum-equipped adversaries, e.g., RSA. We study the incorporation of the PQC algorithms into the QUIC and TCP/TLS networking protocols and analyze the performances and overheads in authentication and connection establishment. To distinguish from previous research, we focus on the newer QUIC networking protocol while comparing it with TCP/TLS. The QUIC protocol builds on UDP and its superiority over TCP/TLS is highlighted by the quicker and lower-overhead connection establishments. QUIC is thus gaining wider deployment, including its planned standardization for HTTP/3. We implement and experiment in local networking environment which provides greater analyzability and control. We compare QUIC vs. TCP/TLS when using PQC and measure the handshake overhead in time duration while varying both the PQC security strength and the networking conditions. Our results show that the PQC overhead increases with the PQC cipher security strength (the key and signature sizes) and as the network condition worsens (greater occurrences of packet dropping). Comparing between the PQC and the classical cipher with comparable security strengths, the PQC ciphers outperform RSA in the handshake time duration; both Dilithium 2 and Falcon 512 handshakes are quicker than RSA 3072.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 69.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 89.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. lsquic github. https://github.com/litespeedtech/lsquic. Accessed 18 Apr 2022

  2. NIST-call for proposals. https://csrc.nist.gov/CSRC/media/Projects/Post-Quantum-Cryptography/documents/call-for-proposals-final-dec-2016.pdf. Accessed 18 Apr 2022

  3. Percentage of https (TLS) encrypted traffic on the internet? https://etherealmind.com/percentage-of-https-tls-encrypted-traffic-on-the-internet/. Accessed 10 Nov 2021

  4. Alagic, G., et al.: Status report on the third round of the NIST post-quantum cryptography standardization process. US Department of Commerce, NIST (2022)

    Google Scholar 

  5. Bider, D.: Use of RSA keys with SHA-256 and SHA-512 in the Secure Shell (SSH) protocol. RFC 8332, March 2018. https://doi.org/10.17487/RFC8332, https://www.rfc-editor.org/info/rfc8332

  6. Bishop, M.: Hypertext Transfer Protocol Version 3 (HTTP/3). Internet-Draft draft-ietf-quic-http-34, Internet Engineering Task Force, February 2021. https://datatracker.ietf.org/doc/html/draft-ietf-quic-http-34, work in Progress

  7. Ducas, L., et al.: Crystals-dilithium: a lattice-based digital signature scheme. IACR Trans. Cryptogr. Hardware Embedded Syst., 238–268 (2018)

    Google Scholar 

  8. Fouque, P.A., et al.: Falcon: fast-Fourier lattice-based compact signatures over NTRU. Submission to the NIST’s post-quantum cryptography standardization process (2018)

    Google Scholar 

  9. Frankel, S., Krishnan, S.: IP Security (IPsec) and Internet Key Exchange (IKE) Document Roadmap. RFC 6071, February 2011. https://doi.org/10.17487/RFC6071, https://www.rfc-editor.org/info/rfc6071

  10. Iyengar, J., Thomson, M.: QUIC: a UDP-based multiplexed and secure transport. RFC 9000, May 2021. https://doi.org/10.17487/RFC9000, https://rfc-editor.org/rfc/rfc9000.txt

  11. Kampanakis, P., Panburana, P., Daw, E., Van Geest, D.: The viability of post-quantum x. 509 certificates. IACR Cryptol. ePrint Arch. 2018, 63 (2018)

    Google Scholar 

  12. Langley, A., et al.: The QUIC transport protocol: design and internet-scale deployment. In: Proceedings of the Conference of the ACM Special Interest Group on Data Communication, pp. 183–196 (2017)

    Google Scholar 

  13. Raavi, M., Chandramouli, P., Wuthier, S., Zhou, X., Chang, S.Y.: Performance characterization of post-quantum digital certificates. In: 2021 International Conference on Computer Communications and Networks (ICCCN), pp. 1–9. IEEE (2021)

    Google Scholar 

  14. Raavi, M., Wuthier, S., Chandramouli, P., Balytskyi, Y., Zhou, X., Chang, S.-Y.: Security comparisons and performance analyses of post-quantum signature algorithms. In: Sako, K., Tippenhauer, N.O. (eds.) ACNS 2021. LNCS, vol. 12727, pp. 424–447. Springer, Cham (2021). https://doi.org/10.1007/978-3-030-78375-4_17

    Chapter  MATH  Google Scholar 

  15. Rescorla, E.: The Transport Layer Security (TLS) Protocol Version 1.3. RFC 8446, August 2018. https://doi.org/10.17487/RFC8446, https://www.rfc-editor.org/info/rfc8446

  16. Seufert, M., Schatz, R., Wehner, N., Gardlo, B., Casas, P.: Is QUIC becoming the new TCP? On the potential impact of a new protocol on networked multimedia QoE. In: 2019 Eleventh International Conference on Quality of Multimedia Experience (QoMEX), pp. 1–6. IEEE (2019)

    Google Scholar 

  17. Sikeridis, D., Kampanakis, P., Devetsikiotis, M.: Post-quantum authentication in TLS 1.3: a performance study. IACR Cryptol. ePrint Arch. 2020, 71 (2020)

    Google Scholar 

  18. Stebila, D., Mosca, M.: Post-quantum key exchange for the internet and the open quantum safe project. In: Avanzi, R., Heys, H. (eds.) SAC 2016. LNCS, vol. 10532, pp. 14–37. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-69453-5_2

    Chapter  Google Scholar 

  19. Yu, Y., Xu, M., Yang, Y.: When QUIC meets TCP: an experimental study. In: 2017 IEEE 36th International Performance Computing and Communications Conference (IPCCC), pp. 1–8. IEEE (2017)

    Google Scholar 

Download references

Acknowledgement

This material is based upon work supported by the National Science Foundation under Grant No. 1922410 and by a grant from the U.S. Civilian Research & Development Foundation (CRDF Global).

Author information

Authors and Affiliations

  1. Department of Computer Science, University of Colorado, Colorado Springs, USA

    Manohar Raavi, Simeon Wuthier, Pranav Chandramouli, Xiaobo Zhou & Sang-Yoon Chang

Authors
  1. Manohar Raavi
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Simeon Wuthier
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Pranav Chandramouli
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Xiaobo Zhou
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Sang-Yoon Chang
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding authors

Correspondence to Manohar Raavi or Sang-Yoon Chang .

Editor information

Editors and Affiliations

  1. University of Wollongong, Wollongong, NSW, Australia

    Willy Susilo

  2. Xidian University, Xian, China

    Xiaofeng Chen

  3. University of Wollongong, Wollongong, NSW, Australia

    Fuchun Guo

  4. University of Wollongong, Wollongong, NSW, Australia

    Yudi Zhang

  5. Petra Christian University, Surabaya, Indonesia

    Rolly Intan

Rights and permissions

Reprints and permissions

Copyright information

© 2022 The Author(s), under exclusive license to Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Raavi, M., Wuthier, S., Chandramouli, P., Zhou, X., Chang, SY. (2022). QUIC Protocol with Post-quantum Authentication. In: Susilo, W., Chen, X., Guo, F., Zhang, Y., Intan, R. (eds) Information Security. ISC 2022. Lecture Notes in Computer Science, vol 13640. Springer, Cham. https://doi.org/10.1007/978-3-031-22390-7_6

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-22390-7_6

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-22389-1

  • Online ISBN: 978-3-031-22390-7

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation