HTTP/2 & QUIC - Teaching Good Protocols to Do Bad Things

Explore the security implications of emerging internet protocols SPDY, HTTP/2, and QUIC in this Black Hat conference talk. Delve into how these technologies, already adopted by over 10% of top websites, introduce new vulnerabilities through connection multiplexing. Learn about potential attacks that exploit these protocols, drawing parallels to previous MPTCP research. Gain insights into defending against H2/QUIC traffic on your network and discover tools for incorporating these techniques. Understand the rapid evolution of technology stacks and its impact on network security through demonstrations and expert analysis by Catherine Pearce and Carl Vincent.

HTTP/2 & Quic - Teaching Good Protocols to Do Bad Things