Skip to main content
SpringerLink
Log in

Faster Post-Quantum TLS Handshakes Without Intermediate CA Certificates

  • Conference paper
  • First Online:
Cyber Security, Cryptology, and Machine Learning (CSCML 2022)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 13301))

Abstract

Traditionally, the most data-heavy part of a (D)TLS handshake has been authentication which includes a handshake signature and digital certificates. Although most common (D)TLS usecases are not significantly affected, some constrained ones such as low bandwidth environments or delay sensitive applications can see drastic performance degradation due to big certificates or certificate chains. That has led the security community to seek options to alleviate the issue. Post-quantum signatures and keys, on the other hand, have been proven to noticeably slow down handshakes even for common Internet (D)TLS or QUIC applications due to the significantly higher amounts of post-quantum authentication data they include. In this work, we quantify the size issue of post-quantum certificates in (D)TLS and QUIC and make the case for speeding up (D)TLS and QUIC handshakes by omitting the intermediate certificate authority certificates in the handshake. We present how that can be achieved along with the usecases that will mostly benefit from such a mechanism. We offer quantitative analyses to show that this approach is relatively straightforward, backwards compatible and with little overhead introduced for caching the certificates. We also discuss caching mechanisms based on different optimization goals.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    Because certificate validation requires that root keys be distributed independently, the self-signed certificate that specifies the root certificate authority MAY be omitted from the chain, under the assumption that the remote end must already possess it in order to validate it in any case [7, 30].

References

  1. Amazon: Alexa top 1 Million, August 2021. https://www.alexa.com/topsites/

  2. Apple: Apple’s Certificate Transparency policy, March 2021. https://support.apple.com/en-us/HT205280

  3. Bindel, N., Herath, U., McKague, M., Stebila, D.: Transitioning to a quantum-resistant public key infrastructure. In: Lange, T., Takagi, T. (eds.) PQCrypto 2017. LNCS, vol. 10346, pp. 384–405. Springer, Cham (2017). https://doi.org/10.1007/978-3-319-59879-6_22

    Chapter  MATH  Google Scholar 

  4. Censys: censys.io data, August 2021. https://censys.io/data

  5. Chu, J., Dukkipati, N., Cheng, Y., Mathis, M.: Increasing TCP’s initial window. RFC 6928, April 2013. https://doi.org/10.17487/RFC6928. https://rfc-editor.org/rfc/rfc6928.txt

  6. Crockett, E., Paquin, C., Stebila, D.: Prototyping post-quantum and hybrid key exchange and authentication in TLS and SSH. In: NIST 2nd Post-Quantum Cryptography Standardization Conference 2019, August 2019

    Google Scholar 

  7. Dierks, T., Rescorla, E.: The Transport Layer Security (TLS) Protocol Version 1.2. RFC 5246, August 2008. https://doi.org/10.17487/rfc5246. https://rfc-editor.org/rfc/rfc5246.txt

  8. Fluhrer, S., Dang, Q.: Additional parameter sets for LMS hash-based signatures. Internet-Draft draft-fluhrer-lms-more-parm-sets-05, Internet Engineering Task Force, June 2021. https://datatracker.ietf.org/doc/html/draft-fluhrer-lms-more-parm-sets-05. work in Progress

  9. Hoffman, P.E.: The transition from classical to post-quantum cryptography. Internet-Draft draft-hoffman-c2pq-07, Internet Engineering Task Force, May 2020. https://datatracker.ietf.org/doc/html/draft-hoffman-c2pq-07. work in Progress

  10. Housley, R.: Use of the HSS/LMS Hash-based signature algorithm in the cryptographic message syntax (CMS). RFC 8708, February 2020. https://doi.org/10.17487/RFC8708. https://rfc-editor.org/rfc/rfc8708.txt

  11. Huelsing, A., Butin, D., Gazdag, S.L., Rijneveld, J., Mohaisen, A.: XMSS: eXtended merkle signature scheme. RFC 8391, May 2018. https://doi.org/10.17487/RFC8391. https://rfc-editor.org/rfc/rfc8391.txt

  12. International Telecommunications Union (ITU-T): ASN.1 encoding rules: specification of Basic Encoding Rules (BER), Canonical Encoding Rules (CER) and Distinguished Encoding Rules (DER). https://www.itu.int/rec/T-REC-X.690-202102-I/en

  13. International Telecommunications Union (ITU-T): X.509: Information technology - Open Systems Interconnection - The Directory: Public-key and attribute certificate frameworks. https://www.itu.int/rec/T-REC-X.509/en

  14. Iyengar, J., Thomson, M.: QUIC: A UDP-based multiplexed and secure transport. RFC 9000, May 2021. https://doi.org/10.17487/RFC9000. https://rfc-editor.org/rfc/rfc9000.txt

  15. Kampanakis, P., Chandra, R.: Mechanism to speed up secure communication handshakes in constrained conditions. Technical Disclosure Commons, December 2020. https://www.tdcommons.org/dpubs_series/3916/

  16. Kampanakis, P., Panburana, P., Daw, E., Van Geest, D.: The viability of post-quantum X.509 Certificates. IACR Cryptology ePrint Archive 2018, 63 (2018)

    Google Scholar 

  17. Kampanakis, P., Sikeridis, D.: Two PQ signature use-cases: non-issues, challenges and potential solutions. Cryptology ePrint Archive, Report 2019/1276 (2019). https://ia.cr/2019/1276

  18. Kampanakis, P., Stebila, D., Friedl, M., Hansen, T., Sikeridis, D.: Post-quantum public key algorithms for the Secure Shell (SSH) protocol. Internet-Draft draft-kampanakis-curdle-pq-ssh-00, Internet Engineering Task Force, October 2020. https://datatracker.ietf.org/doc/html/draft-kampanakis-curdle-pq-ssh-00. work in Progress

  19. Langley, A., Hamburg, M., Turner, S.: Elliptic curves for security. RFC 7748, January 2016. https://doi.org/10.17487/RFC7748. https://rfc-editor.org/rfc/rfc7748.txt

  20. Laurie, B., Langley, A., Kasper, E.: Certificate Transparency. RFC 6962, June 2013. https://doi.org/10.17487/RFC6962. https://rfc-editor.org/rfc/rfc6962.txt

  21. Mattsson, J.P., Sethi, M.: Using EAP-TLS with TLS 1.3 (EAP-TLS 1.3). Internet-Draft draft-ietf-emu-eap-tls13-18, Internet Engineering Task Force, July 2021. https://datatracker.ietf.org/doc/html/draft-ietf-emu-eap-tls13-18. work in Progress

  22. McGrew, D., Curcio, M., Fluhrer, S.: Leighton-Micali hash-based signatures. RFC 8554, April 2019. https://doi.org/10.17487/RFC8554. https://rfc-editor.org/rfc/rfc8554.txt

  23. Montenegro, G., Schumacher, C., Kushalnagar, N.: IPv6 over low-power wireless personal area networks (6LoWPANs): overview, assumptions, problem statement, and goals. RFC 4919, August 2007. https://doi.org/10.17487/rfc4919. https://rfc-editor.org/rfc/rfc4919.txt

  24. Mozilla: Preloading intermediate CA certificates into Firefox, November 2020. https://blog.mozilla.org/security/2020/11/13/preloading-intermediate-ca-certificates-into-firefox/s

  25. Mozilla: Common CA Database (CCADB), July 2021. https://www.ccadb.org/resources

  26. Mozilla: Common CA Database (CCADB), February 2022. https://ccadb-public.secure.force.com/mozilla/MozillaIntermediateCertsCSVReport

  27. Nir, Y.: A flags extension for TLS 1.3. Internet-Draft draft-ietf-tls-tlsflags-06, Internet Engineering Task Force, July 2021. https://datatracker.ietf.org/doc/html/draft-ietf-tls-tlsflags-06. work in Progress

  28. Ounsworth, M., Pala, M.: Composite signatures for use in internet PKI. Internet-Draft draft-ounsworth-pq-composite-sigs-05, Internet Engineering Task Force, July 2021. https://datatracker.ietf.org/doc/html/draft-ounsworth-pq-composite-sigs-05. work in Progress

  29. Paquin, C., Stebila, D., Tamvada, G.: Benchmarking post-quantum cryptography in TLS. In: Ding, J., Tillich, J.-P. (eds.) PQCrypto 2020. LNCS, vol. 12100, pp. 72–91. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-44223-1_5

    Chapter  Google Scholar 

  30. Rescorla, E.: The Transport Layer Security (TLS) Protocol Version 1.3. RFC 8446, August 2018. https://doi.org/10.17487/RFC8446. https://rfc-editor.org/rfc/rfc8446.txt

  31. Rescorla, E., Barnes, R., Tschofenig, H.: Compact TLS 1.3. Internet-Draft draft-ietf-tls-ctls-03, Internet Engineering Task Force, July 2021. https://datatracker.ietf.org/doc/html/draft-ietf-tls-ctls-03. work in Progress

  32. Rescorla, E., Modadugu, N.: Datagram transport layer security version 1.2. RFC 6347, January 2012. https://doi.org/10.17487/rfc6347. https://rfc-editor.org/rfc/rfc6347.txt

  33. Rescorla, E., Oku, K., Sullivan, N., Wood, C.A.: TLS Encrypted Client Hello. Internet-Draft draft-ietf-tls-esni-12, Internet Engineering Task Force, July 2021. https://datatracker.ietf.org/doc/html/draft-ietf-tls-esni-12. work in Progress

  34. Rescorla, E., Tschofenig, H., Modadugu, N.: The datagram transport layer security (DTLS) Protocol Version 1.3. Internet-Draft draft-ietf-tls-dtls13-43, Internet Engineering Task Force, April 2021. https://datatracker.ietf.org/doc/html/draft-ietf-tls-dtls13-43. work in Progress

  35. Santesson, S., Myers, M., Ankney, R., Malpani, A., Galperin, S., Adams, D.C.: X.509 internet public key infrastructure online certificate status protocol - OCSP. RFC 6960, June 2013. https://doi.org/10.17487/RFC6960. https://rfc-editor.org/rfc/rfc6960.txt

  36. Santesson, S., Tschofenig, H.: Transport layer security (TLS) cached information extension. RFC 7924, July 2016. https://doi.org/10.17487/RFC7924. https://rfc-editor.org/rfc/rfc7924.txt

  37. Scheitle, Q., et al.: A long way to the top: significance, structure, and stability of internet top lists. In: Proceedings of the Internet Measurement Conference 2018, pp. 478–493. IMC 2018, Association for Computing Machinery, New York, NY, USA (2018). https://doi.org/10.1145/3278532.3278574. https://doi.org/10.1145/3278532.3278574

  38. Schwabe, P., Stebila, D., Wiggers, T.: Post-quantum TLS without handshake signatures. In: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, pp. 1461–1480. CCS 2020, Association for Computing Machinery, New York, NY, USA (2020). https://doi.org/10.1145/3372297.3423350. https://doi.org/10.1145/3372297.3423350

  39. Sethi, M., Mattsson, J.P., Turner, S.: Handling large certificates and long certificate chains in TLS-based EAP methods. Internet-Draft draft-ietf-emu-eaptlscert-08, Internet Engineering Task Force, November 2020. https://datatracker.ietf.org/doc/html/draft-ietf-emu-eaptlscert-08. work in Progress

  40. SHODAN: HTTPS (443) Overview (2019). https://www.shodan.io/report/mNs9fa3I

  41. Sikeridis, D., Kampanakis, P., Devetsikiotis, M.: Assessing the overhead of post-quantum cryptography in TLS 1.3 and SSH. In: Proceedings of the 16th International Conference on Emerging Networking EXperiments and Technologies, pp. 149–156. CoNEXT 2020, Association for Computing Machinery, New York, NY, USA (2020). https://doi.org/10.1145/3386367.3431305. https://doi.org/10.1145/3386367.3431305

  42. Sikeridis, D., Kampanakis, P., Devetsikiotis, M.: Post-quantum authentication in TLS 1.3: a performance study. In: 27th Annual Network and Distributed System Security Symposium, NDSS 2020, San Diego, California, USA, 23–26 February 2020. The Internet Society (2020). https://www.ndss-symposium.org/ndss-paper/post-quantum-authentication-in-tls-1-3-a-performance-study/

  43. Simon, D., Hurst, R., Aboba, D.B.D.: The EAP-TLS authentication protocol. RFC 5216, March 2008. https://doi.org/10.17487/RFC5216. https://rfc-editor.org/rfc/rfc5216.txt

  44. Sleevi, R.: Path building vs path verifying: the chain of pain, June 2020. https://medium.com/@sleevi_/path-building-vs-path-verifying-the-chain-of-pain-9fbab861d7d6

  45. Stebila, D., Fluhrer, S., Gueron, S.: Hybrid key exchange in TLS 1.3. internet-Draft draft-ietf-tls-hybrid-design-03, Internet Engineering Task Force, July 2021. https://datatracker.ietf.org/doc/html/draft-ietf-tls-hybrid-design-03. work in Progress

  46. Lists Study, T.: Scheitle, quirin and jelten, jonas, July 2021. https://toplists.github.io/index.html

  47. Systems, C.: Cisco Umbrella 1 Million, August 2021. https://umbrella.cisco.com/blog/cisco-umbrella-1-million

  48. Thomson, M., Turner, S.: Using TLS to Secure QUIC. RFC 9001, May 2021. https://doi.org/10.17487/RFC9001. https://rfc-editor.org/rfc/rfc9001.txt

  49. Tjhai, C., et al.: Multiple Key Exchanges in IKEv2. Internet-Draft draft-ietf-ipsecme-ikev2-multiple-ke-03, Internet Engineering Task Force, July 2021. https://datatracker.ietf.org/doc/html/draft-ietf-ipsecme-ikev2-multiple-ke-03. work in Progress

  50. Valsorda, F.: filippo.io/intermediates, February 2022. https://github.com/FiloSottile/intermediates

  51. Westerbaan, B.: Sizing up post-quantum signatures, November 2021. https://blog.cloudflare.com/sizing-up-post-quantum-signatures/

Download references

Author information

Authors and Affiliations

  1. AWS Cryptography, Seattle, USA

    Panos Kampanakis

  2. Merit Network Inc., Ann Arbor, USA

    Michael Kallitsis

Authors
  1. Panos Kampanakis
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Michael Kallitsis
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Panos Kampanakis .

Editor information

Editors and Affiliations

  1. Ben-Gurion University of the Negev, Be’er Sheva, Israel

    Shlomi Dolev

  2. University of Maryland, College Park, MD, USA

    Jonathan Katz

  3. Ben-Gurion University of the Negev, Be’er Sheva, Israel

    Amnon Meisels

Rights and permissions

Reprints and permissions

Copyright information

© 2022 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Kampanakis, P., Kallitsis, M. (2022). Faster Post-Quantum TLS Handshakes Without Intermediate CA Certificates. In: Dolev, S., Katz, J., Meisels, A. (eds) Cyber Security, Cryptology, and Machine Learning. CSCML 2022. Lecture Notes in Computer Science, vol 13301. Springer, Cham. https://doi.org/10.1007/978-3-031-07689-3_25

Download citation

  • DOI: https://doi.org/10.1007/978-3-031-07689-3_25

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-031-07688-6

  • Online ISBN: 978-3-031-07689-3

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation