CryptoDB
Robust Channels: Handling Unreliable Networks in the Record Layers of QUIC and DTLS 1.3
| Authors: | |
|---|---|
| Download: | |
| Presentation: | Slides |
| Abstract: | Secure channel protocols like QUIC and DTLS 1.3 run over unreliable-transport networks like UDP. They have to carefully catch effects arising naturally in those networks while protecting against malicious interference. In this talk, we introduce the notion of robustness for cryptographic channels, generically capturing this behavior. Our robustness notion guarantees that adversarial tampering cannot hinder ciphertexts that can be decrypted correctly from being accepted. We establish that QUIC and DTLS 1.3 achieve the desired level of robustness. Notably though, their robust behavior translates to a practically relevant security degradation (when compared to, e.g., TLS 1.3) which we will highlight in this talk. The security bounds we establish have led the responsible IETF working groups to mandate concrete forgery limits in recent updates to both protocol drafts. |
| Video: | https://youtu.be/TZMgRnSV3pk?t=578 |
BibTeX
@misc{rwc-2021-35513,
title={Robust Channels: Handling Unreliable Networks in the Record Layers of QUIC and DTLS 1.3},
note={Video at \url{https://youtu.be/TZMgRnSV3pk?t=578}},
howpublished={Talk given at RWC 2021},
author={Marc Fischlin and Felix Günther and Christian Janson},
year=2021
}