| Presentation | 2015-05-15 On the Security of QUIC Masaya Iseki, Eiichiro Fujisaki, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | We study the security of Quick UDP Internet Connections (QUIC for short) --an experimental transport layer network protocol recently developed by Google-- and show some security concern, when abbreviated handshakes, aka ``resumptions", are established. To explain our concern, we propose a new security model, extending server-only authenticated and channel confidentiality establishment (SACCE), so that authentication and channel confidentiality can be evaluatedincluding abbreviated handshake (resumption) sessions. We then show that QUIC meets the weaker version of our security notion, but not the stronger one. On one hand, we show that QUIC with CETV, QUICwith an optional client encrypted tag value (CETV) mechanism, satisfies the stronger one. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | QUIC / Diffie-Hellman key exchange / resumption / forward secrecy / provable security |
| Paper # | ISEC2015-5 |
| Date of Issue | 2015-05-08 (ISEC) |
| Conference Information | |
| Committee | ISEC |
|---|---|
| Conference Date | 2015/5/15(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Kikai-Shinko-Kaikan Bldg. |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | Koichi Sakurai(Kyushu Univ.) |
| Vice Chair | Yukiyasu Tsunoo(NEC) / Masahiro Mambo(Kanazawa Univ.) |
| Secretary | Yukiyasu Tsunoo(Nagoya Univ.) / Masahiro Mambo(AIST) |
| Assistant | Tetsuya Izu(Fujitsu Lab.) / Junpei Kawamoto(Kyushu Univ.) / Yuichi Komano(Toshiba) / Shigeyoshi Shima(NEC) / Takaaki Mizuki(Tohoku Univ.) |
| Paper Information | |
| Registration To | Technical Committee on Information Security |
|---|---|
| Language | ENG-JTITLE |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | On the Security of QUIC |
| Sub Title (in English) | |
| Keyword(1) | QUIC |
| Keyword(2) | Diffie-Hellman key exchange |
| Keyword(3) | resumption |
| Keyword(4) | forward secrecy |
| Keyword(5) | provable security |
| 1st Author's Name | Masaya Iseki |
| 1st Author's Affiliation | Tokyo Institute of Technology(titech) |
| 2nd Author's Name | Eiichiro Fujisaki |
| 2nd Author's Affiliation | Nippon Telegraph and Telephone Corporation(NTT) |
| Date | 2015-05-15 |
| Paper # | ISEC2015-5 |
| Volume (vol) | vol.115 |
| Number (no) | ISEC-28 |
| Page | pp.pp.31-38(ISEC), |
| #Pages | 8 |
| Date of Issue | 2015-05-08 (ISEC) |