{"id":7520,"date":"2022-05-05T12:24:37","date_gmt":"2022-05-05T09:24:37","guid":{"rendered":"https:\/\/vasexperts.com\/?p=7520"},"modified":"2025-08-12T14:49:52","modified_gmt":"2025-08-12T11:49:52","slug":"from-tcp-to-quic","status":"publish","type":"post","link":"https:\/\/vasexperts.com\/es\/blog\/functionality\/from-tcp-to-quic\/","title":{"rendered":"Transici\u00f3n de TCP a QUIC. Firmas Stingray SG"},"content":{"rendered":"Durante el proceso de estandarizaci\u00f3n de IEFT, QUIC se dividi\u00f3 en protocolos de transporte y HTTP. Con la ayuda del transporte QUIC, no solo se transmiten datos HTTP, sino tambi\u00e9n otros; este desarrollo lo est\u00e1 llevando a cabo el Grupo de Trabajo QUIC.\r\n\r\nQUIC implica encriptaci\u00f3n de tr\u00e1fico obligatoria: para esto, utiliza TLS 1.3 para establecer claves de sesi\u00f3n y luego encripta cada paquete. Pero dado que se basa en UDP, gran parte de la informaci\u00f3n de la sesi\u00f3n y los metadatos expuestos en TCP se cifran en QUIC.\r\n\r\n<noscript><img decoding=\"async\" src=\"\/wp-content\/uploads\/2022\/05\/quic-tcp-udp.png\" alt=\"quic, tcp, udp\" width=\"100%\" height=\"auto\" class=\"alignnone size-full wp-image-7525\" srcset=\"\/wp-content\/uploads\/2022\/05\/quic-tcp-udp.png 1592w, \/wp-content\/uploads\/2022\/05\/quic-tcp-udp-300x77.png 300w, \/wp-content\/uploads\/2022\/05\/quic-tcp-udp-1024x264.png 1024w, \/wp-content\/uploads\/2022\/05\/quic-tcp-udp-768x198.png 768w, \/wp-content\/uploads\/2022\/05\/quic-tcp-udp-1536x397.png 1536w\" sizes=\"(max-width: 1592px) 100vw, 1592px\"><\/noscript><img decoding=\"async\" src=\"\/wp-content\/uploads\/2022\/05\/quic-tcp-udp.png\" alt=\"quic, tcp, udp\" width=\"100%\" height=\"auto\" class=\"alignnone size-full wp-image-7525 lazyload\" sizes=\"(max-width: 1592px) 100vw, 1592px\" data-src=\"\/wp-content\/uploads\/2022\/05\/quic-tcp-udp.png\" data-srcset=\"\/wp-content\/uploads\/2022\/05\/quic-tcp-udp.png 1592w, \/wp-content\/uploads\/2022\/05\/quic-tcp-udp-300x77.png 300w, \/wp-content\/uploads\/2022\/05\/quic-tcp-udp-1024x264.png 1024w, \/wp-content\/uploads\/2022\/05\/quic-tcp-udp-768x198.png 768w, \/wp-content\/uploads\/2022\/05\/quic-tcp-udp-1536x397.png 1536w\">\r\n\r\n<h2>C\u00f3mo Stingray SG procesa  QUIC<\/h2>\r\nAntes de la llegada de QUIC, la detecci\u00f3n de conexiones HTTPS cifradas se realizaba teniendo en cuenta SNI (Server Name Indication), que se transmit\u00eda en texto sin cifrar cuando el cliente contactaba con el servidor.\r\n\r\nEl est\u00e1ndar IETF QUIC introduce el cifrado SNI, lo que dificulta detectar a qu\u00e9 host se est\u00e1 conectando. Desde Stingray SG 11.2, el descifrado SNI est\u00e1 disponible al establecer una conexi\u00f3n mediante el protocolo QUIC IETF. Esta caracter\u00edstica permiti\u00f3 dividir las conexiones del protocolo QUIC de IETF en firmas separadas cuyo transporte es QUIC.\r\n\r\n<noscript><img decoding=\"async\" src=\"\/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation.png\" alt=\"common channel traffic allocation\" width=\"100%\" height=\"auto\" class=\"alignnone size-full wp-image-7526\" srcset=\"\/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation.png 1247w, \/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation-300x185.png 300w, \/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation-1024x632.png 1024w, \/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation-768x474.png 768w\" sizes=\"(max-width: 1247px) 100vw, 1247px\"><\/noscript><img decoding=\"async\" src=\"\/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation.png\" alt=\"common channel traffic allocation\" width=\"100%\" height=\"auto\" class=\"alignnone size-full wp-image-7526 lazyload\" sizes=\"(max-width: 1247px) 100vw, 1247px\" data-src=\"\/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation.png\" data-srcset=\"\/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation.png 1247w, \/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation-300x185.png 300w, \/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation-1024x632.png 1024w, \/wp-content\/uploads\/2022\/05\/common-channel-traffic-allocation-768x474.png 768w\">\r\n\r\nVemos que los protocolos HTTP\/HTTPS y QUIC\/QUIC IETF est\u00e1n presentes en el canal com\u00fan. Esto nos dice que hay una transici\u00f3n sin problemas a los nuevos est\u00e1ndares. La selecci\u00f3n de aplicaciones en base a estos protocolos se realiza por el nombre de los dominios host en los que se encuentra el contenido, por ejemplo, YOUTUBE, TWITTER, FACEBOOK, INSTAGRAM.\r\n\r\n<h2>Firmas Stingray SG<\/h2>\r\nLas firmas son patrones de b\u00fasqueda en el tr\u00e1fico que se cargan en el motor DPI. Se utilizan para escanear constantemente todos los paquetes IP para determinar si el Flujo (IPscr: puerto \u2013 IPdst: puerto) pertenece a una aplicaci\u00f3n\/protocolo\/firma en particular.\r\n\r\nLas firmas en Stingray SG se dividen en dos grupos:\r\n\r\n<ol>\r\n\t<li>Firmas comunes<\/li>\r\n\t<li>Firmas personalizadas (programables).<\/li>\r\n<\/ol>\r\n\r\n<h3>Firmas comunes<\/h3>\r\nAgregado y modificado solo por desarrolladores de VAS Experts. Se cargan en el Stingray SG al actualizar la versi\u00f3n del software Stingray SG.\r\n\r\n<h3>Custom signatures<\/h3>\r\nEl usuario los agrega a trav\u00e9s de Stingray SG GUI utilizando una cuenta personal en VAS Cloud.\r\n\r\n<noscript><img decoding=\"async\" src=\"\/wp-content\/uploads\/2022\/05\/vas-cloud.png\" alt=\"vas cloud\" width=\"100%\" height=\"auto\" class=\"alignnone size-full wp-image-7527\" srcset=\"\/wp-content\/uploads\/2022\/05\/vas-cloud.png 1914w, \/wp-content\/uploads\/2022\/05\/vas-cloud-300x111.png 300w, \/wp-content\/uploads\/2022\/05\/vas-cloud-1024x379.png 1024w, \/wp-content\/uploads\/2022\/05\/vas-cloud-768x284.png 768w, \/wp-content\/uploads\/2022\/05\/vas-cloud-1536x569.png 1536w\" sizes=\"(max-width: 1914px) 100vw, 1914px\"><\/noscript><img decoding=\"async\" src=\"\/wp-content\/uploads\/2022\/05\/vas-cloud.png\" alt=\"vas cloud\" width=\"100%\" height=\"auto\" class=\"alignnone size-full wp-image-7527 lazyload\" sizes=\"(max-width: 1914px) 100vw, 1914px\" data-src=\"\/wp-content\/uploads\/2022\/05\/vas-cloud.png\" data-srcset=\"\/wp-content\/uploads\/2022\/05\/vas-cloud.png 1914w, \/wp-content\/uploads\/2022\/05\/vas-cloud-300x111.png 300w, \/wp-content\/uploads\/2022\/05\/vas-cloud-1024x379.png 1024w, \/wp-content\/uploads\/2022\/05\/vas-cloud-768x284.png 768w, \/wp-content\/uploads\/2022\/05\/vas-cloud-1536x569.png 1536w\">\r\n\r\nLa firma personalizada est\u00e1 determinada por la IP o el nombre de dominio del host (SNI) con el que interact\u00faa el usuario. Todos los flujos con estos par\u00e1metros se marcan con la firma correspondiente, que luego se puede asignar a una de las ocho clases de vigilancia, omitir sin procesar o bloquear.\r\n\r\n[subscription id=\u00bb11987\u2033]Suscr\u00edbase a nuestro bolet\u00edn y mant\u00e9ngase actualizado sobre los \u00faltimos avances y ofertas especiales.[\/subscription]","protected":false},"excerpt":{"rendered":"<p>Brevemente sobre QUIC: QUIC es un protocolo de comunicaci\u00f3n de transporte que se considera un reemplazo de TCP debido a su mayor confiabilidad, seguridad y latencia reducida y se ejecuta sobre UDP. Esta tecnolog\u00eda fue creada por los desarrolladores de Google y originalmente se llamaba \u00abHTTP\/2-encrypted-over-UDP\u00bb.<\/p>\n","protected":false},"author":7,"featured_media":7524,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[55],"tags":[],"class_list":["post-7520","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-functionality"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.1 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>VAS Experts<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/\",\"url\":\"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/\",\"name\":\"[:en]From TCP to QUIC. Stingray SG Signatures \u2014 VAS Experts Blog[:es]Transici\u00f3n de TCP a QUIC. Firmas Stingray SG \u2014 VAS Experts Blog[:fr]Passage de TCP \u00e0 QUIC. Signatures Stingray SG \u2014 VAS Experts Blog[:br]Do TCP ao QUIC. Assinaturas do Stingray SG \u2014 Blog de VAS Experts\",\"isPartOf\":{\"@id\":\"https:\/\/vasexperts.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#primaryimage\"},\"thumbnailUrl\":\"\/wp-content\/uploads\/2022\/05\/quic-signature.jpg\",\"datePublished\":\"2022-05-05T09:24:37+00:00\",\"dateModified\":\"2025-08-12T11:49:52+00:00\",\"author\":{\"@id\":\"https:\/\/vasexperts.com\/#\/schema\/person\/f4edcaef26fe49b6b59baf8ac5b62170\"},\"description\":\"[:en]QUIC implies mandatory encryption of traffic: to do this, it uses TLS 1.3 to set session keys, and then encrypt each package.[:es]QUIC implica encriptaci\u00f3n de tr\u00e1fico obligatoria: para esto, utiliza TLS 1.3 para establecer claves de sesi\u00f3n y luego encripta cada paquete.[:fr]QUIC implique un cryptage du trafic obligatoire : pour ce faire, il utilise TLS 1.3 pour d\u00e9finir les cl\u00e9s de session, puis crypter chaque paquet.[:br]O QUIC implica a criptografia obrigat\u00f3ria do tr\u00e1fego: para isso, ele usa o TLS 1.3 para definir as chaves de sess\u00e3o e, em seguida, criptografar cada pacote\",\"breadcrumb\":{\"@id\":\"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#breadcrumb\"},\"inLanguage\":\"es\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"es\",\"@id\":\"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#primaryimage\",\"url\":\"\/wp-content\/uploads\/2022\/05\/quic-signature.jpg\",\"contentUrl\":\"\/wp-content\/uploads\/2022\/05\/quic-signature.jpg\",\"width\":1740,\"height\":1080,\"caption\":\"quic-signature\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"\u0413\u043b\u0430\u0432\u043d\u0430\u044f \u0441\u0442\u0440\u0430\u043d\u0438\u0446\u0430\",\"item\":\"https:\/\/vasexperts.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"From TCP to QUIC. Stingray SG Signatures\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/vasexperts.com\/#website\",\"url\":\"https:\/\/vasexperts.com\/\",\"name\":\"ITGLOBAL.COM\",\"description\":\"(English) VASExperts\",\"inLanguage\":\"es\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/vasexperts.com\/#\/schema\/person\/f4edcaef26fe49b6b59baf8ac5b62170\",\"name\":\"Elena Rudich\",\"url\":\"https:\/\/vasexperts.com\/es\/blog\/author\/elena-rudich\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"VAS Experts","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/","url":"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/","name":"[:en]From TCP to QUIC. Stingray SG Signatures \u2014 VAS Experts Blog[:es]Transici\u00f3n de TCP a QUIC. Firmas Stingray SG \u2014 VAS Experts Blog[:fr]Passage de TCP \u00e0 QUIC. Signatures Stingray SG \u2014 VAS Experts Blog[:br]Do TCP ao QUIC. Assinaturas do Stingray SG \u2014 Blog de VAS Experts","isPartOf":{"@id":"https:\/\/vasexperts.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#primaryimage"},"image":{"@id":"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#primaryimage"},"thumbnailUrl":"\/wp-content\/uploads\/2022\/05\/quic-signature.jpg","datePublished":"2022-05-05T09:24:37+00:00","dateModified":"2025-08-12T11:49:52+00:00","author":{"@id":"https:\/\/vasexperts.com\/#\/schema\/person\/f4edcaef26fe49b6b59baf8ac5b62170"},"description":"[:en]QUIC implies mandatory encryption of traffic: to do this, it uses TLS 1.3 to set session keys, and then encrypt each package.[:es]QUIC implica encriptaci\u00f3n de tr\u00e1fico obligatoria: para esto, utiliza TLS 1.3 para establecer claves de sesi\u00f3n y luego encripta cada paquete.[:fr]QUIC implique un cryptage du trafic obligatoire : pour ce faire, il utilise TLS 1.3 pour d\u00e9finir les cl\u00e9s de session, puis crypter chaque paquet.[:br]O QUIC implica a criptografia obrigat\u00f3ria do tr\u00e1fego: para isso, ele usa o TLS 1.3 para definir as chaves de sess\u00e3o e, em seguida, criptografar cada pacote","breadcrumb":{"@id":"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#breadcrumb"},"inLanguage":"es","potentialAction":[{"@type":"ReadAction","target":["https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/"]}]},{"@type":"ImageObject","inLanguage":"es","@id":"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#primaryimage","url":"\/wp-content\/uploads\/2022\/05\/quic-signature.jpg","contentUrl":"\/wp-content\/uploads\/2022\/05\/quic-signature.jpg","width":1740,"height":1080,"caption":"quic-signature"},{"@type":"BreadcrumbList","@id":"https:\/\/vasexperts.com\/blog\/functionality\/from-tcp-to-quic\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"\u0413\u043b\u0430\u0432\u043d\u0430\u044f \u0441\u0442\u0440\u0430\u043d\u0438\u0446\u0430","item":"https:\/\/vasexperts.com\/"},{"@type":"ListItem","position":2,"name":"From TCP to QUIC. Stingray SG Signatures"}]},{"@type":"WebSite","@id":"https:\/\/vasexperts.com\/#website","url":"https:\/\/vasexperts.com\/","name":"ITGLOBAL.COM","description":"(English) VASExperts","inLanguage":"es"},{"@type":"Person","@id":"https:\/\/vasexperts.com\/#\/schema\/person\/f4edcaef26fe49b6b59baf8ac5b62170","name":"Elena Rudich","url":"https:\/\/vasexperts.com\/es\/blog\/author\/elena-rudich\/"}]}},"_links":{"self":[{"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/posts\/7520"}],"collection":[{"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/users\/7"}],"replies":[{"embeddable":true,"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/comments?post=7520"}],"version-history":[{"count":10,"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/posts\/7520\/revisions"}],"predecessor-version":[{"id":12953,"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/posts\/7520\/revisions\/12953"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/media\/7524"}],"wp:attachment":[{"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/media?parent=7520"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/categories?post=7520"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/vasexperts.com\/es\/wp-json\/wp\/v2\/tags?post=7520"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}