Analyzing and Fixing the QACCE Security of QUIC

Hideki Sakurada; Kazuki Yoneyama; Yoshikazu Hanatani; Maki Yoshida

Analyzing and Fixing the QACCE Security of QUIC

Hideki Sakurada, Kazuki Yoneyama, Yoshikazu Hanatani, Maki Yoshida

Published: 01 Jan 2016, Last Modified: 11 Nov 2024SSR 2016EveryoneRevisionsBibTeXCC BY-SA 4.0

Abstract: QUIC is a secure transport protocol developed by Google. Lychev et al. proposed a security model (QACCE model) to capture the security of QUIC. However, the QACCE model is very complicated, and it is not clear if security requirements for QUIC are appropriately defined. In this paper, we show the first formal analysis result of QUIC using automated security verification tool ProVerif. Our symbolic model formalizes the QACCE model and the specification of QUIC. As the result of the verification, we find three attacks against QUIC in the QACCE model. It means that the Lychev et al.’s security proofs are not correct. We discuss why such attacks occur, and clarify there are unnecessarily strong points in the QACCE model. Finally, we give a way to improve the QACCE model to exactly address the appropriate security requirements.

Loading