On the Interplay between TLS Certificates and QUIC Performance
Research output: Contribution to book/Conference proceedings/Anthology/Report › Conference contribution › Contributed › peer-review
Contributors
Abstract
In this paper, we revisit the performance of the QUIC connection setup and relate the design choices for fast and secure connections to common Web deployments. We analyze over 1M Web domains with 272k QUIC-enabled services and find two worrying results. First, current practices of creating, providing, and fetching Web certificates undermine reduced round trip times during the connection setup since sizes of 35% of server certificates exceed the amplification limit. Second, non-standard server implementations lead to larger amplification factors than QUIC permits, which increase even further in IP spoofing scenarios. We present guidance for all involved stakeholders to improve the situation.
Details
Original language | English |
---|---|
Title of host publication | Proceedings of ACM CoNEXT 2022 |
Publisher | ACM New York, NY, USA |
Pages | 204-213 |
Number of pages | 10 |
Publication status | Published - 30 Nov 2022 |
Peer-reviewed | Yes |
External IDs
Scopus | 85144816543 |
---|---|
ORCID | /0000-0002-3825-2807/work/142241889 |