Is QUIC protocol still a security concern?
Freshman MemberI've ridden that QUIC protocol developed by google, can be a security risk because is not recognized as web traffic by the firewall (usg 210) and then not filtered correctly.
https://www.fastvue.co/fastvue/blog/googles-quic-protocols-security-and-reporting-implications/
The issue is still current?
In order to prevent I currently use a security policy, which block/deny outgoing traffic from LAN to WAN, on port UDP 443
Thank you for your support
0
All Replies
-
As I study for year still now.
I cannot find firewall on the market that claim it can identify the web request via QUIC protocol.
Look like the current work-around is using firewall rule to block UDP destination port 443 to force Chorme to go for standard HTTP protocol.
0
Master Member
Categories
- 6.9K All Categories
- 2 Education Center
- 1.4K Nebula
- 34 Nebula Ideas
- 40 Nebula Status and Incidents
- 3.9K Security
- 203 Security Ideas
- 751 Switch
- 31 Switch Ideas
- 633 WirelessLAN
- 10 WLAN Ideas
- 4.6K Consumer Product
- 105 Service & License
- 223 News and Release
- 39 Security Advisories
- 522 FAQ
- 239 Nebula FAQ
- 121 Security FAQ
- 73 Switch FAQ
- 67 WirelessLAN FAQ
- 6 Consumer Product FAQ
- Documents
- 30 Nebula Monthly Express
- 44 About Community
- 32 Security Highlight
