Sad Reality of QUIC Handshakes: Configuration Challenges

the sad reality of quic handshakes n.w
1 / 27
Embed
Share

Understand the implications of QUIC handshake configuration issues leading to delays and DDoS vulnerabilities. Explore the design goals, implementation challenges, and practical repercussions faced in meeting these goals. Discover the impact of small vs. large QUIC INITIALs on round-trip times, reachability, and amplification risks. Dive into the causes behind multiple RTTs, including issues with RETRY tokens and TLS certificates.

  • QUIC Handshakes
  • Configuration Challenges
  • DDoS Vulnerabilities
  • Round-Trip Times
  • Implementation Issues
rayaanacharya
kion797 Follow

Uploaded on | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author. If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. The sad reality of QUIC handshakes: How bad configuration leads to delay or DDoS. Marcin Nawrocki, Nicholas Banks, Raphael Hiesgen, Thomas C. Schmidt, Pouyan Fotouhi Tehrani, Matthias W hlisch {marcin.nawrocki, m.waehlisch}@fu-berlin.de nibanks@microsoft.com pouyan.fotouhi.tehrani@fokus.fraunhofer.de {raphael.hiesgen, t.schmidt}@haw-hamburg.de 1

  2. Recap: RIPE 84 on Monday 2

  3. Design goals of QUIC handshakes. Reduce round trip times. TCP/TLS/HTTP handshakes coalesced into 1RTT. Prevent UDP amplification attacks. RFC limits response size to 3x of an (unauthenticated) request. 3

  4. In practice. Client Server Should be 3x INITIAL. Mainly steered by TLS cert. Under the control of the server. 4

  5. We actively scanned 1k top domains. 5

  6. Have the design goals been met? No! 6

  7. Have the design goals been met? No! Configuration issue? Implementation issue! 7

  8. Small QUIC INITIALs lead to multiple RTTs. 8

  9. ~1350 bytes are the sweet spot. 9

  10. Larger QUIC INITIALs reduce reachability. 10

  11. How bad is the amplification? Not bad. 11

  12. How bad is the amplification? Not bad. Some implementations need bug fixes, though! 12

  13. What causes multiple RTTs? RETRY tokens (DDoS prevention) Large TLS certificates (in conflict with the 3x limit) Only 2 domains. The majority! 13

  14. 85% of TLS data exceed the 3x threshold! This causes multiple round trip times. 14

  15. What is the best-performing INITIAL size to not induce an additional RTT given current TLS certs? Currently, it is ~1350 bytes. Trade-off: Small INITIALs trigger multiple RTTs due to large TLS certificates. Large INITIALs reduce reachability because QUIC forbids IP fragmentation! 15

  16. Recommendations to operators if you care about delay and DDoS prevention 1. Reduce the size of your TLS data! Be below 3x of common requests to fit into the 1RTT handshake. 2. Activate RETRY tokens! QUIC INITIAL DDoS floods are a rising threat vector! [ACM IMC 21] RETRY enables DDoS prevention for ZERO additional cost compared to current deployments (with multiple RTTs). 16

  17. Test your QUIC server today! An open source tool. https://github.com/microsoft/quicreach 17

  18. Check your QUIC / TLS deployment! 18

  19. Backup 19

  20. Are you saying we should increase the 3x limit? No. Let s first find out what a space-efficient but secure TLS config looks like. The 3x limit could encourage optimal configs. 20

  21. How can you decrease your TLS data size? 1. Use algorithms with smaller signature footprint (elliptic instead of RSA). 2. We observe certificates with a long list of Subject Alt Names (SANs), reduce them! 3. This is a joint effort due to certificate chains. 21

  22. Load balancers also add bloat! We are scanning top domains with a very large user base. Load balancers. Packet encapsulation is used between L4 and L7 load balancers (+20 bytes). 22

  23. RFC 9000 and the 3x threshold for unvalidated clients 8.1. Address Validation during Connection Establishment Prior to validating the client address, servers MUST NOT send more than three times as many bytes as the number of bytes they have received. 17.2.5. Retry Packet An opaque token that the server can use to validate the client's address. 23

  24. RFC 9000 and IP fragmentation 14. Datagram Size UDP datagrams MUST NOT be fragmented at the IP layer. In IPv4 [IPv4], the Don't Fragment (DF) bit MUST be set if possible, to prevent fragmentation on the path. 24

  25. QUIC INITIALS (relative). 25

  26. >50% of 1k top domains have large TLS certificate data! 26

  27. QUIC vs TCP certificate data. TLS data received over QUIC or TCP has roughly the same size. We observe ~100 bytes more with QUIC. 27

Related


74th Berlin International Film Festival

74th Berlin International Film Festival

colin
Exciting Opportunities Await at ILA Berlin 2024! Join Us!

Exciting Opportunities Await at ILA Berlin 2024! Join Us!

ciaran
Challenges in Standard QUIC Protocol Implementation

Challenges in Standard QUIC Protocol Implementation

azaiah
Section 125 Cafeteria Plans in Minnesota

Section 125 Cafeteria Plans in Minnesota

rafferty
Berlin Airlift: A Major Cold War Confrontation

Berlin Airlift: A Major Cold War Confrontation

tinsley
The Berlin Revolutions of 1848: A Historic Perspective

The Berlin Revolutions of 1848: A Historic Perspective

seb
Cold War Stations - Berlin Airlift and More

Cold War Stations - Berlin Airlift and More

berenice
Exciting Opportunities Await at ILA Berlin 2024!

Exciting Opportunities Await at ILA Berlin 2024!

lapis
QUIC: A Quick Overview by Geoff Huston

QUIC: A Quick Overview by Geoff Huston

cging
Berlin Board of Education Adopted Budget 2020-21 Executive Summary

Berlin Board of Education Adopted Budget 2020-21 Executive Summary

macar
School District of New Berlin Budget Balancing Task Force Overview

School District of New Berlin Budget Balancing Task Force Overview

mall346
Berlin 2024 International Conference on Assessing Quality in Higher Education Know Before You Go Session

Berlin 2024 International Conference on Assessing Quality in Higher Education Know Before You Go Session

han_e
Inspiring Educational Berlin Tour for Schools - Equity Adventures

Inspiring Educational Berlin Tour for Schools - Equity Adventures

garv_144
The Cold War: Key Events up to 1968

The Cold War: Key Events up to 1968

tami_534
Berlin Town Board of Finance Proposed Budget for Fiscal Year 2022

Berlin Town Board of Finance Proposed Budget for Fiscal Year 2022

win_aya
Town of Berlin FY2022 Board of Finance Budget Review

Town of Berlin FY2022 Board of Finance Budget Review

mama
The Cold War Events: Truman Doctrine, Marshall Plan, Berlin Airlift, American Responses, NATO & Warsaw Pact

The Cold War Events: Truman Doctrine, Marshall Plan, Berlin Airlift, American Responses, NATO & Warsaw Pact

sheyi
Synchronizing Chat Times Across Different Time Zones

Synchronizing Chat Times Across Different Time Zones

mvall
An In-Depth Look at QUIC Protocol

An In-Depth Look at QUIC Protocol

dala866
QUIC: The Future of Transport Layer Protocols

QUIC: The Future of Transport Layer Protocols

issa_983
Berlin Ethics Code and Policy Overview

Berlin Ethics Code and Policy Overview

lresc
Report on TG8 Activities during July 2017 Berlin Meeting

Report on TG8 Activities during July 2017 Berlin Meeting

shaniy

More Related Content