Core Concepts
Reversing the order of field elements within encrypted transport protocol specifications can unlock implementation optimizations for efficient packet processing without compromising security.
Abstract
The paper proposes a methodology called "Reverso" to improve the efficiency of encrypted transport protocol implementations. The key idea is to reverse the order of field elements within the protocol specification, such that the data chunk is placed first within the encrypted payload, followed by the control information. This allows the receiver to process the decrypted data in a contiguous manner without the need for additional memory copies.
The authors demonstrate the benefits of Reverso by applying it to the QUIC protocol, resulting in QUIC VReverso. The evaluation shows that QUIC VReverso achieves around 30% higher efficiency in packet processing compared to the baseline QUIC V1 implementation, across different processor architectures. The authors also implement an HTTP/3 client and server using QUIC VReverso, demonstrating a 38% efficiency improvement over the baseline HTTP/3 implementation.
The paper argues that Reverso can be applied to any modern encrypted protocol to unlock similar efficiency improvements, without compromising security or extensibility. The authors provide an open-source implementation called quiceh, which supports both QUIC V1 and QUIC VReverso, to demonstrate the feasibility and benefits of their approach.
Stats
QUIC VReverso achieves around 30% higher efficiency in packet processing compared to QUIC V1 across different processor architectures.
QUIC VReverso-based HTTP/3 implementation is around 38% more efficient than the baseline HTTP/3 implementation using QUIC V1.
Quotes
"We propose in this paper to revisit the design of existing encrypted transport protocols to improve their efficiency. We call the methodology "Reverso" from reversing the order of field elements within a protocol specification."
"Our methodology applied to the QUIC protocol reports ≈30% of CPU efficiency improvement for processing packets at no added cost on the sender side and without relaxing any security guarantee from QUIC V1."
"We argue that Reverso applies to any modern encrypted protocol and its implementations and that similar efficiency improvement can also be unlocked for them, independently of the layer in which they operate."