DOCSLIB.ORG

QUIC Record Layer

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text

Load more

A Security Model and Fully Verified Implementation for the IETF QUIC Record Layer Antoine Delignat-Lavaud∗, Cédric Fournet∗, Bryan Parnoy, Jonathan Protzenko∗, Tahina Ramananandro∗, Jay Bosamiyay, Joseph Lallemandz, Itsaka Rakotonirinaz, Yi Zhouy ∗Microsoft Research yCarnegie Mellon University zINRIA Nancy Grand-Est, LORIA Abstract—Drawing on earlier protocol-verification work, we investigate the security of the QUIC record layer, as standardized Application Application by the IETF in draft version 30. This version features major HTTP/2 HTTP/3 differences compared to Google’s original protocol and early IETF drafts. It serves as a useful test case for our verification TLS QUIC methodology and toolchain, while also, hopefully, drawing atten- tion to a little studied yet crucially important emerging standard. TCP UDP We model QUIC packet and header encryption, which uses IP IP a custom construction for privacy. To capture its goals, we propose a security definition for authenticated encryption with Fig. 1: Modularity of current networking stack vs. QUIC semi-implicit nonces. We show that QUIC uses an instance of a generic construction parameterized by a standard AEAD-secure scheme and a PRF-secure cipher. We formalize and verify the it is possible to combine both features in a single message, security of this construction in F?. The proof uncovers interesting saving a full network round-trip. limitations of nonce confidentiality, due to the malleability of short From a security standpoint, a fully-integrated secure trans- headers and the ability to choose the number of least significant port protocol offers the potential for a single, clean security bits included in the packet counter. We propose improvements theorem, which avoids the pitfalls that arise when composing that simplify the proof and increase robustness against strong attacker models. In addition to the verified security model, we adversary models from different layers. Mismatched assump- also give a concrete functional specification for the record layer, tions have caused several surprising cross-layer attacks against and prove that it satisfies important functionality properties HTTPS. For instance, the CRIME [47] and BREACH [43] (such as the correct successful decryption of encrypted packets) attacks illustrate the risk of composing application-layer com- after fixing more errors in the draft. We then provide a high- pression with transport-layer encryption against adversaries performance implementation of the record layer that we prove to that can both control the application plaintext and observe be memory safe, correct with respect to our concrete specification encrypted TLS traffic. Interestingly, transport compression (inheriting its functional correctness properties), and secure with exists in Google’s version of QUIC, but was removed entirely respect to our verified model. To evaluate this component, we by the IETF. Another example is cross-layer truncation attacks, develop a provably-safe implementation of the rest of the QUIC such as the Cookie Cutter attack [15], where applications may protocol. Our record layer achieves nearly 2 GB/s throughput, and our QUIC implementation’s performance is within 21% of perform dangerous side-effects based on incomplete received an unverified baseline. data due to a TCP error. With QUIC, it becomes possible to consider a single adversarial model for the application’s I. INTRODUCTION transport and, in principle, to show that an application is secure against the UDP/IP message interface, which is very hard to The majority of the Web today relies on the network stack achieve with TLS or IPSec. consisting of IP, TCP, TLS and HTTP. This stack is modular but inefficient: TLS starts only when the TCP handshake is Although QUIC was originally designed and implemented complete, and HTTP must wait for completion of the TLS by Google for its own products, it is currently undergoing handshake. There have been recent efforts to cut this latency standardization by the IETF [36]. An explicit goal of the overhead (using, e.g., TCP fast open and TLS 1.3 0-RTT), QUIC working group has been to ensure that QUIC inherits all but further gains require breaking the classic OSI model. the security properties of TLS 1.3, thus avoiding the lengthy QUIC was introduced by Google in 2012 [38] to increase formal protocol analysis effort that stretched out the TLS 1.3 performance by breaking layer abstractions, combining fea- standardization process for 4 years. tures that are part of TCP (fragmentation, re-transmission, Unfortunately, as we highlight in this paper (§II), the reliable delivery, flow control), TLS (key exchange, encryption working group has failed to achieve that goal; the latest and authentication), and application protocols (parallel data IETF drafts have progressively opened up many internal TLS streams) into a more integrated protocol, as shown in Figure1. abstractions, and thus, increasingly diverged from the context For example, consider two independent features that require under which TLS 1.3 is proved secure. Entire features of TLS an extra round-trip: source address validation (when a server (including the record layer [52], version negotiation, the end- wants to check that the source IP of an initial packet is not of-early-data message, hello retry, re-keying, and some key spoofed, currently part of the TCP handshake), and a TLS derivations) have been replaced in QUIC, often under different hello-retry request (when a server asks the client to send its assumptions; furthermore, new cryptographic constructions, key share over a different Diffie-Hellman group). Using QUIC, which have received little academic scrutiny, have been added. Handshake Alert App Data Q TLS Handshake 1 n 0 Messages Keys n … U Handshake Traffic … Stream Stream Stream Stream TLS Record Layer (stream 0) Messages Secrets Stream Records QUIC Protocol Logic Exporter Frames I QUIC Protocol Logic Frames Secrets QUIC Record Layer Packets C QUIC Record Layer Packets Fig. 2: Internal modularity between TLS 1.3 and QUIC before (left) and after (right) draft 12. In the latter, the QUIC Protocol Logic is responsible for deriving keys from the TLS Handshake’s traffic secrets. The standard has also drifted significantly away from Google’s C5 Fast, Provably Safe QUIC Implementation. Finally, we original version of QUIC, to the point that little of the early develop a proof-of-concept implementation (§V) of the security analysis work on Google’s QUIC ([40], [37], [30]) is QUIC protocol logic verified for memory safety, which relevant to the IETF version. Careful new analysis is required we use to evaluate (§VI) our verified implementation to capture the security properties of QUIC data streams. of the record layer (C4), leveraging previously verified Hence, the primary goal of this paper is to analyze and artifacts for the TLS handshake [17] and cryptographic address weaknesses in a protocol that is practically as im- primitives [44], to produce a verified implementation of portant as TLS but that has received little academic attention the full IETF QUIC protocol. (despite imminent standardization and deployment). We do While our work provides a better understanding of QUIC’s so by applying and extending methodologies and verification goals and the extent to which the current draft protocol toolchains developed in the context of TLS to this new setting, meets them, this is not yet an end-to-end verification of the thereby also validating their applicability to challenging non- protocol, as the proofs for the protocol logic would have to TLS constructions. be significantly expanded and strengthened to connect the Concretely, we model and mechanically verify the security guarantees from the TLS handshake with those of the record of the new features of the IETF’s QUIC, focusing on what layer and hence produce a single application-facing theorem we refer to as the QUIC “record layer”, i.e., the portion that for the entire implementation. handles packet formatting and encryption. This is an important While we prove strong correctness and security properties step towards full end-to-end verification of the soon-to-be- for QUIC, like any verification result, our guarantees rely on standardized protocol (we discuss remaining steps below). Our the correctness of our formalized cryptographic definitions contributions consist of: and of our verification tools. As we show in §VI, while the performance of our record layer implementation is quite C1 Security Model. We give a new security definition (build- strong (2 GB/s), our protocol logic limits the performance of ing on prior work [11], [41]) that captures the record our overall QUIC reference implementation, leaving us 21% layer’s security and privacy goals (§III-B). We found slower than our unverified baseline. that early drafts of QUIC failed to satisfy this definition; our feedback [42] resulted in updates to the construction All of our specifications, implementations, and proofs are (draft 17) and the explicit authentication of connection open source and available on GitHub at: identifiers [53] (draft 27) despite initial pushback (§III-D). ? https://github.com/project-everest/everquic-crypto C2 Formal Spec and Functional Properties. We use F [50], https://github.com/secure-foundations/everquic-dafny a functional language with a dependent type system for program verification, to develop a mechanized version of II. QUIC BACKGROUND our security definition (C1) as well as a detailed functional Because of its integrated nature, it is hard to summarize specification for QUIC’s new record layer construction QUIC. We introduce the aspects relevant to our security anal- (§IV-B). We also prove (§IV-C) correctness of the speci- ysis, focusing on confidentiality, integrity and authentication fication, e.g., non-malleability of the encoding of headers goals, but refer to the IETF drafts [36], [52] for details. We and that decryption inverts encryption. These proofs identi- also highlight deviations from QUIC’s original goal of treating fied two flaws in the IETF reference implementation, and TLS as a black box.
Recommended publications
  • The Transport Layer: Tutorial and Survey SAMI IREN and PAUL D

    The Transport Layer: Tutorial and Survey SAMI IREN and PAUL D

    The Transport Layer: Tutorial and Survey SAMI IREN and PAUL D. AMER University of Delaware AND PHILLIP T. CONRAD Temple University Transport layer protocols provide for end-to-end communication between two or more hosts. This paper presents a tutorial on transport layer concepts and terminology, and a survey of transport layer services and protocols. The transport layer protocol TCP is used as a reference point, and compared and contrasted with nineteen other protocols designed over the past two decades. The service and protocol features of twelve of the most important protocols are summarized in both text and tables. Categories and Subject Descriptors: C.2.0 [Computer-Communication Networks]: General—Data communications; Open System Interconnection Reference Model (OSI); C.2.1 [Computer-Communication Networks]: Network Architecture and Design—Network communications; Packet-switching networks; Store and forward networks; C.2.2 [Computer-Communication Networks]: Network Protocols; Protocol architecture (OSI model); C.2.5 [Computer- Communication Networks]: Local and Wide-Area Networks General Terms: Networks Additional Key Words and Phrases: Congestion control, flow control, transport protocol, transport service, TCP/IP 1. INTRODUCTION work of routers, bridges, and communi- cation links that moves information be- In the OSI 7-layer Reference Model, the tween hosts. A good transport layer transport layer is the lowest layer that service (or simply, transport service) al- operates on an end-to-end basis be- lows applications to use a standard set tween two or more communicating of primitives and run on a variety of hosts. This layer lies at the boundary networks without worrying about differ- between these hosts and an internet- ent network interfaces and reliabilities.
  • Solutions to Chapter 2

    Solutions to Chapter 2

    CS413 Computer Networks ASN 4 Solutions Solutions to Assignment #4 3. What difference does it make to the network layer if the underlying data link layer provides a connection-oriented service versus a connectionless service? [4 marks] Solution: If the data link layer provides a connection-oriented service to the network layer, then the network layer must precede all transfer of information with a connection setup procedure (2). If the connection-oriented service includes assurances that frames of information are transferred correctly and in sequence by the data link layer, the network layer can then assume that the packets it sends to its neighbor traverse an error-free pipe. On the other hand, if the data link layer is connectionless, then each frame is sent independently through the data link, probably in unconfirmed manner (without acknowledgments or retransmissions). In this case the network layer cannot make assumptions about the sequencing or correctness of the packets it exchanges with its neighbors (2). The Ethernet local area network provides an example of connectionless transfer of data link frames. The transfer of frames using "Type 2" service in Logical Link Control (discussed in Chapter 6) provides a connection-oriented data link control example. 4. Suppose transmission channels become virtually error-free. Is the data link layer still needed? [2 marks – 1 for the answer and 1 for explanation] Solution: The data link layer is still needed(1) for framing the data and for flow control over the transmission channel. In a multiple access medium such as a LAN, the data link layer is required to coordinate access to the shared medium among the multiple users (1).
  • Is QUIC a Better Choice Than TCP in the 5G Core Network Service Based Architecture?

    Is QUIC a Better Choice Than TCP in the 5G Core Network Service Based Architecture?

    DEGREE PROJECT IN INFORMATION AND COMMUNICATION TECHNOLOGY, SECOND CYCLE, 30 CREDITS STOCKHOLM, SWEDEN 2020 Is QUIC a Better Choice than TCP in the 5G Core Network Service Based Architecture? PETHRUS GÄRDBORN KTH ROYAL INSTITUTE OF TECHNOLOGY SCHOOL OF ELECTRICAL ENGINEERING AND COMPUTER SCIENCE Is QUIC a Better Choice than TCP in the 5G Core Network Service Based Architecture? PETHRUS GÄRDBORN Master in Communication Systems Date: November 22, 2020 Supervisor at KTH: Marco Chiesa Supervisor at Ericsson: Zaheduzzaman Sarker Examiner: Peter Sjödin School of Electrical Engineering and Computer Science Host company: Ericsson AB Swedish title: Är QUIC ett bättre val än TCP i 5G Core Network Service Based Architecture? iii Abstract The development of the 5G Cellular Network required a new 5G Core Network and has put higher requirements on its protocol stack. For decades, TCP has been the transport protocol of choice on the Internet. In recent years, major Internet players such as Google, Facebook and CloudFlare have opted to use the new QUIC transport protocol. The design assumptions of the Internet (best-effort delivery) differs from those of the Core Network. The aim of this study is to investigate whether QUIC’s benefits on the Internet will translate to the 5G Core Network Service Based Architecture. A testbed was set up to emulate traffic patterns between Network Functions. The results show that QUIC reduces average request latency to half of that of TCP, for a majority of cases, and doubles the throughput even under optimal network conditions with no packet loss and low (20 ms) RTT. Additionally, by measuring request start and end times “on the wire”, without taking into account QUIC’s shorter connection establishment, we believe the results indicate QUIC’s suitability also under the long-lived (standing) connection model.
  • Medium Access Control Layer

    Medium Access Control Layer

    Telematics Chapter 5: Medium Access Control Sublayer User Server watching with video Beispielbildvideo clip clips Application Layer Application Layer Presentation Layer Presentation Layer Session Layer Session Layer Transport Layer Transport Layer Network Layer Network Layer Network Layer Univ.-Prof. Dr.-Ing. Jochen H. Schiller Data Link Layer Data Link Layer Data Link Layer Computer Systems and Telematics (CST) Physical Layer Physical Layer Physical Layer Institute of Computer Science Freie Universität Berlin http://cst.mi.fu-berlin.de Contents ● Design Issues ● Metropolitan Area Networks ● Network Topologies (MAN) ● The Channel Allocation Problem ● Wide Area Networks (WAN) ● Multiple Access Protocols ● Frame Relay (historical) ● Ethernet ● ATM ● IEEE 802.2 – Logical Link Control ● SDH ● Token Bus (historical) ● Network Infrastructure ● Token Ring (historical) ● Virtual LANs ● Fiber Distributed Data Interface ● Structured Cabling Univ.-Prof. Dr.-Ing. Jochen H. Schiller ▪ cst.mi.fu-berlin.de ▪ Telematics ▪ Chapter 5: Medium Access Control Sublayer 5.2 Design Issues Univ.-Prof. Dr.-Ing. Jochen H. Schiller ▪ cst.mi.fu-berlin.de ▪ Telematics ▪ Chapter 5: Medium Access Control Sublayer 5.3 Design Issues ● Two kinds of connections in networks ● Point-to-point connections OSI Reference Model ● Broadcast (Multi-access channel, Application Layer Random access channel) Presentation Layer ● In a network with broadcast Session Layer connections ● Who gets the channel? Transport Layer Network Layer ● Protocols used to determine who gets next access to the channel Data Link Layer ● Medium Access Control (MAC) sublayer Physical Layer Univ.-Prof. Dr.-Ing. Jochen H. Schiller ▪ cst.mi.fu-berlin.de ▪ Telematics ▪ Chapter 5: Medium Access Control Sublayer 5.4 Network Types for the Local Range ● LLC layer: uniform interface and same frame format to upper layers ● MAC layer: defines medium access ..
  • Analysis of QUIC Session Establishment and Its Implementations Eva Gagliardi, Olivier Levillain

    Analysis of QUIC Session Establishment and Its Implementations Eva Gagliardi, Olivier Levillain

    Analysis of QUIC session establishment and its implementations Eva Gagliardi, Olivier Levillain To cite this version: Eva Gagliardi, Olivier Levillain. Analysis of QUIC session establishment and its implementations. 13th IFIP International Conference on Information Security Theory and Practice (WISTP), Dec 2019, Paris, France. pp.169-184, 10.1007/978-3-030-41702-4_11. hal-02468596 HAL Id: hal-02468596 https://hal.archives-ouvertes.fr/hal-02468596 Submitted on 5 Feb 2020 HAL is a multi-disciplinary open access L’archive ouverte pluridisciplinaire HAL, est archive for the deposit and dissemination of sci- destinée au dépôt et à la diffusion de documents entific research documents, whether they are pub- scientifiques de niveau recherche, publiés ou non, lished or not. The documents may come from émanant des établissements d’enseignement et de teaching and research institutions in France or recherche français ou étrangers, des laboratoires abroad, or from public or private research centers. publics ou privés. Analysis of QUIC Session Establishment and its Implementations Eva Gagliardi1 and Olivier Levillain2 1 French Ministry of the Armies, 2 T´el´ecomSudParis, Institut Polytechnique de Paris Abstract. In the recent years, the major web companies have been working to improve the user experience and to secure the communica- tions between their users and the services they provide. QUIC is such an initiative, and it is currently being designed by the IETF. In a nutshell, QUIC originally intended to merge features from TCP/SCTP, TLS 1.3 and HTTP/2 into one big protocol. The current specification proposes a more modular definition, where each feature (transport, cryptography, application, packet reemission) are defined in separate internet drafts.
  • Chapter 3 Transport Layer

    Chapter 3 Transport Layer

    Chapter 3 Transport Layer A note on the use of these Powerpoint slides: We’re making these slides freely available to all (faculty, students, readers). They’re in PowerPoint form so you see the animations; and can add, modify, and delete slides (including this one) and slide content to suit your needs. They obviously represent a lot of work on our part. In return for use, we only ask the following: Computer § If you use these slides (e.g., in a class) that you mention their source (after all, we’d like people to use our book!) Networking: A Top § If you post any slides on a www site, that you note that they are adapted from (or perhaps identical to) our slides, and note our copyright of this Down Approach material. 7th edition Thanks and enjoy! JFK/KWR Jim Kurose, Keith Ross All material copyright 1996-2016 Pearson/Addison Wesley J.F Kurose and K.W. Ross, All Rights Reserved April 2016 Transport Layer 2-1 Chapter 3: Transport Layer our goals: § understand principles § learn about Internet behind transport transport layer protocols: layer services: • UDP: connectionless • multiplexing, transport demultiplexing • TCP: connection-oriented • reliable data transfer reliable transport • flow control • TCP congestion control • congestion control Transport Layer 3-2 Chapter 3 outline 3.1 transport-layer 3.5 connection-oriented services transport: TCP 3.2 multiplexing and • segment structure demultiplexing • reliable data transfer 3.3 connectionless • flow control transport: UDP • connection management 3.4 principles of reliable 3.6 principles
  • How Can We Protect the Internet Against Surveillance?

    How Can We Protect the Internet Against Surveillance?

    How can we protect the Internet against surveillance? Seven TODO items for users, web developers and protocol engineers Peter Eckersley [email protected] Okay, so everyone is spying on the Internet It's not just the NSA... Lots of governments are in this game! Not to mention the commerical malware industry These guys are fearsome, octopus-like adversaries Does this mean we should just give up? No. Reason 1: some people can't afford to give up Reason 2: there is a line we can hold vs. So, how do we get there? TODO #1 Users should maximise their own security Make sure your OS and browser are patched! Use encryption where you can! In your browser, install HTTPS Everywhere https://eff.org/https-everywhere For instant messaging, use OTR (easiest with Pidgin or Adium, but be aware of the exploit risk tradeoff) For confidential browsing, use the Tor Browser Bundle Other tools to consider: TextSecure for SMS PGP for email (UX is terrible!) SpiderOak etc for cloud storage Lots of new things in the pipeline TODO #2 Run an open wireless network! openwireless.org How to do this securely right now? Chain your WPA2 network on a router below your open one. TODO #3 Site operators... Deploy SSL/TLS/HTTPS DEPLOY IT CORRECTLY! This, miserably, is a lot harder than it should be TLS/SSL Authentication Apparently, ~52 countries These are usually specialist, narrowly targetted attacks (but that's several entire other talks... we're working on making HTTPS more secure, easier and saner!) In the mean time, here's what you need A valid certificate HTTPS by default Secure cookies No “mixed content” Perfect Forward Secrecy A well-tuned configuration How do I make HTTPS the default? Firefox and Chrome: redirect, set the HSTS header Safari and IE: sorry, you can't (!!!) What's a secure cookie? Go and check your site right now..
  • Guidelines for the Secure Deployment of Ipv6

    Guidelines for the Secure Deployment of Ipv6

    Special Publication 800-119 Guidelines for the Secure Deployment of IPv6 Recommendations of the National Institute of Standards and Technology Sheila Frankel Richard Graveman John Pearce Mark Rooks NIST Special Publication 800-119 Guidelines for the Secure Deployment of IPv6 Recommendations of the National Institute of Standards and Technology Sheila Frankel Richard Graveman John Pearce Mark Rooks C O M P U T E R S E C U R I T Y Computer Security Division Information Technology Laboratory National Institute of Standards and Technology Gaithersburg, MD 20899-8930 December 2010 U.S. Department of Commerce Gary Locke, Secretary National Institute of Standards and Technology Dr. Patrick D. Gallagher, Director GUIDELINES FOR THE SECURE DEPLOYMENT OF IPV6 Reports on Computer Systems Technology The Information Technology Laboratory (ITL) at the National Institute of Standards and Technology (NIST) promotes the U.S. economy and public welfare by providing technical leadership for the nation’s measurement and standards infrastructure. ITL develops tests, test methods, reference data, proof of concept implementations, and technical analysis to advance the development and productive use of information technology. ITL’s responsibilities include the development of technical, physical, administrative, and management standards and guidelines for the cost-effective security and privacy of sensitive unclassified information in Federal computer systems. This Special Publication 800-series reports on ITL’s research, guidance, and outreach efforts in computer security and its collaborative activities with industry, government, and academic organizations. National Institute of Standards and Technology Special Publication 800-119 Natl. Inst. Stand. Technol. Spec. Publ. 800-119, 188 pages (Dec. 2010) Certain commercial entities, equipment, or materials may be identified in this document in order to describe an experimental procedure or concept adequately.
  • Recent Progress on the QUIC Protocol

    Recent Progress on the QUIC Protocol

    Recent Progress on the QUIC Protocol Mehdi Yosofie, Benedikt Jaeger∗ ∗Chair of Network Architectures and Services, Department of Informatics Technical University of Munich, Germany Email: mehdi.yosofi[email protected], [email protected] Abstract—Internet services increase rapidly and much data Task Force (IETF) and is on standardization progress. The is sent back and forth inside it. The most widely used IETF is an Internet committee which deals with Internet network infrastructure is the HTTPS stack which has several technologies and publishes Internet standards. Currently, disadvantages. To reduce handshake latency in network QUIC is being standardized, and it remains to be seen, traffic, Google’s researchers built a new multi-layer transfer how it will influence the Internet traffic afterwards. protocol called Quick UDP Internet Connections (QUIC). It The rest of this paper is structured as follows: Sec- is implemented and tested on Google’s servers and clients tion 2 presents background information about the estab- and proves its suitability in everyday Internet traffic. QUIC’s lished TCP/TLS stack needed for the problem analysis. new paradigm integrates the security and transport layer Section 3 explicitly investigates some QUIC features like of the widely used HTTPS stack into one and violates the stream-multiplexing, security, loss recovery, congestion OSI model. QUIC takes advantages of existing protocols and control, flow control, QUIC’s handshake, its data format, integrates them in a new transport protocol providing less and the Multipath extension. They each rely on current latency, more data flow on wire, and better deployability. IETF standardization work, and are compared to the tra- QUIC removes head-of-line blocking and provides a plug- ditional TCP/TLS stack.
  • Quick UDP Internet Connections (QUIC)

    Quick UDP Internet Connections (QUIC)

    Quick UDP Internet Connections (QUIC) Simone Ferlin [email protected] draft-ietf-quic-transport-latest https://quicwg.github.io/base-drafts/draft-ietf-quic-transport.html A First Look at QUIC in the Wild, PAM 2018 https://arxiv.org/pdf/1801.05168.pdf Taking a Long Look at QUIC, ACM IMC 2017 https://mislove.org/publications/QUIC-IMC.pdf References for this Multipath QUIC, ACM CoNEXT 2017 presentation https://multipath-quic.org/conext17-deconinck.pdf The QUIC Transport Protocol: Design and Internet-Scale Deployment, ACM SIGCOMM 2017 • https://static.googleusercontent.com/media/research.google.co m/en//pubs/archive/46403.pdf • https://conferences.sigcomm.org/sigcomm/2017/files/program/t s-5-1-QUIC.pdf Why QUIC? • Improve performance and latency of web applications • Most web applications running with HTTP and TCP and TLS (HTTPS). • Keep the idea of flow and congestion control from TCP. • It provides at least a connection-oriented, reliable and in-order byte stream. • It enables stream multiplexing (similar to HTTP/2) to optimize for latency. • Improve security with end-to-end encryption by default and full encryption. • Still with TLS/SSL, but avoiding TLS’s handshake delay inflation. • Overcome slow adoption with code in user-space • No full system updates needed (code inside your browser). • The transport layer with only UDP and TCP is difficult to update. • Overcome slow updates and ubiquitous devices, i.e. middleboxes • TCP is often affected and it became incredibly difficult to propose extensions: Is it Still Possible to Extend TCP?, M. Honda et al., ACM IMC 2011. Where is QUIC? User-space Kernel-space Where is QUIC? User-space Kernel-space Some QUICk remarks • QUIC’s first implementation appeared around 2012 in Chromium • Standardisation group established in 2016 • QUIC-WG: https://datatracker.ietf.org/wg/quic).
  • Congestion Control Tuning of the QUIC Transport Layer Protocol Spring 2018

    Congestion Control Tuning of the QUIC Transport Layer Protocol Spring 2018

    Congestion Control Tuning of the QUIC Transport Layer Protocol Spring 2018 Wendi Qu Director: Llorenç Cerdà-Alabern Departament d'Arquitectura de Computadors Degree: Bachelor Specialization: Information Technologies Facultat d’Informatica de Barcelona (FIB) Universitat Politecnica de Catalunya (UPC) - BarcelonaTech April 2018 UNIVERSITAT POLITÈCNICA DE CATALUNYA (UPC) Abstract The QUIC protocol is a new type of reliable transmission protocol based on UDP. Its establishment is mainly to solve the problem of network delay. It is efficient, fast, and takes up less resources. The QUIC gathers the advantages of both TCP and UDP. The first part of this thesis studies the development background of the QUIC protocol in terms of characteristics and perspectives of what they can do and how they work. Because it adds the congestion control algorithm used by TCP based on the UDP protocol, we have conducted further research and analysis of the Cubic algorithm to investigate the impact of its parameters on the behavior. The second part includes performance and fairness tests for QUIC and TCP implementations. The simulation framework Mininet is used to perform these tests using controlled network properties. In this process we verified the reliability of the mininet. This work shows how Mininet builds a test system to analyze the implementation of the transport protocol. QUIC's tests show that the performance of QUIC has improved, and the test of fairness have identified specific areas that may require further analysis. In the third part, we test the influence of the parameter on the behavior of the algorithm in the congestion control algorithm. We present an initial experimental evaluation of the newly proposed Cubic-TCP algorithm.
  • MR-471.2: Maximum IP-Layer Capacity Metric and Measurement

    MR-471.2: Maximum IP-Layer Capacity Metric and Measurement

    MARKETING REPORT MR-471.2 Maximum IP-Layer Capacity Metric and Measurement Issue: 1 Issue Date: October 2020 October 2020 © The Broadband Forum. All rights reserved 1 of 14 Maximum IP-Layer Capacity Metric and Measurement MR-471.2 Issue History Issue Number Issue Date Issue Changes Editor 1 22 October Al Morton, AT&T Original 2020 Comments or questions about this Broadband Forum Marketing Report should be directed to [email protected]. Editor Al Morton, AT&T Work Area Director(s) David Sinicrope, Ericsson PEAT PS Leader Gregory Mirsky (ZTE) Contributors Len Ciavattone, AT&T Ken Kerpez, ASSIA October 2020 © The Broadband Forum. All rights reserved 2 of 14 Maximum IP-Layer Capacity Metric and Measurement MR-471.2 Table of Contents Executive Summary.................................................................................................................................. 4 1 Background ....................................................................................................................................... 5 2 Terminology ....................................................................................................................................... 6 2.1 References ................................................................................................................................... 6 2.2 Abbreviations ................................................................................................................................ 7 3 Access Networks and Services Outrun TCP Speed Tests ..............................................................