How Resilient is QUIC to Security and Privacy Attacks?

TL;DR

This paper evaluates QUIC's security and privacy resilience, analyzing existing attacks, mitigation strategies, and emerging threats like post-quantum cryptography, highlighting gaps and proposing future research directions.

Contribution

It provides a comprehensive review of QUIC's vulnerabilities, assesses recent mitigation efforts, and discusses future challenges including post-quantum cryptography and operational risks.

Findings

QUIC remains vulnerable during connection establishment.

Recent mitigations like ECH and OHTTP improve privacy but have operational trade-offs.

Post-quantum cryptography introduces new risks such as handshake expansion.

Abstract

QUIC has rapidly evolved into a cornerstone transport protocol for secure, low-latency communications, yet its deployment continues to expose critical security and privacy vulnerabilities, particularly during connection establishment phases and via traffic analysis. This paper systematically revisits a comprehensive set of attacks on QUIC and emerging privacy threats. Building upon these observations, we critically analyze recent IETF mitigation efforts, including TLS Encrypted Client Hello (ECH), Oblivious HTTP (OHTTP) and MASQUE. We analyze how these mechanisms enhance privacy while introducing new operational risks, particularly under adversarial load. Additionally, we discuss emerging challenges posed by post-quantum cryptographic (PQC) handshakes, including handshake expansion and metadata leakage risks. Our analysis highlights ongoing gaps between theoretical defenses and practical deployments, and proposes new research directions focused on adaptive privacy mechanisms. Building on these insights, we propose future directions to ensure long-term security of QUIC and aim to guide its evolution as a robust, privacy-preserving, and resilient transport foundation for the next-generation Internet.