Quick UDP Internet Connections (QUIC) is based on UDP/HTTP and TLS. While TLS provides adequate security, it is not very far to crack it with the increasing compute power of the devices, as TLS is based on Public Key Infrastructure (private/public key) methods, where-in keys are derived mathematically. As we know, asymmetric encryption (PKI) methods are not immune to cryptanalysis attacks from quantum computers, whereas symmetric encryption (with sufficiently large key sizes) is immune to cryptanalysis attacks. Hence there is renewed interest in symmetric encryption methods to deploy quantum secure networks. In short, currently QUIC uses TLS based method to provide data encryption, which is based on asymmetric encryption, hence it is prone to crypto analysis attack. The techniques presented herein propose method to enhance the security of the applications and their communication built with QUIC protocol to adequately cope up with the ever increasing threats on the public networks. As per this method, use symmetric method for encryption/decryption of the QUIC payload and take advantages of UDP based QUIC to encrypt set of QUIC payloads using different Secret Keys from the pool which results in added entropy. In summary, the proposed method enhance the security of QUIC connections by encrypting QUIC payload using randomly indexed Secret Keys, instead of encrypting using TLS sessions keys.
Creative Commons License
This work is licensed under a Creative Commons Attribution 4.0 License.
M M, Niranjan, "MECHANISM TO ENHANCE SECURITY OF THE QUIC BASED COMMUNICATION", Technical Disclosure Commons, (May 24, 2022)