Files

Christian Nennemann 9fdb37876a Remove Noise protocol references from wiki docs and tests

Delete 8 Noise-specific documentation pages (noise-xx.md,
transport-keys.md, adr-001/003/006, framing-codec.md) and update
~30 remaining wiki pages to reflect QUIC+TLS as the sole transport.
Remove obsolete Noise-based integration tests (auth_service.rs,
mls_group.rs). Code-side Noise removal was done in f334ed3.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-22 08:25:23 +01:00

4.9 KiB

Raw Blame History

Protocol Layers Overview

quicnprotochat composes four distinct protocol layers into a single security stack. Each layer addresses a specific class of threat and delegates everything else to the layers above or below it. No single layer is sufficient on its own; the composition is what delivers end-to-end confidentiality, server authentication, forward secrecy, post-compromise security, and post-quantum resistance.

This page provides a high-level comparison and a suggested reading order. The deep-dive pages that follow contain implementation details drawn directly from the source code.

Layer comparison

Layer	Standard / Spec	Crate(s)	Security Properties
QUIC + TLS 1.3	RFC 9000, RFC 9001	`quinn 0.11`, `rustls 0.23`	Transport confidentiality, server authentication, 0-RTT resumption
Cap'n Proto	capnproto.org specification	`capnp 0.19`, `capnp-rpc 0.19`	Zero-copy deserialisation, schema-enforced types, canonical serialisation for signing, async RPC
MLS	RFC 9420	`openmls 0.5`	Group key agreement, forward secrecy, post-compromise security (PCS)
Hybrid KEM	draft-ietf-tls-hybrid-design	`ml-kem 0.2`, `x25519-dalek 2`	Post-quantum resistance via ML-KEM-768 combined with X25519

How the layers compose

Data flows through the stack from top to bottom on send and from bottom to top on receive:

Application plaintext
       |
       v
  +-----------+
  |    MLS    |   RFC 9420 group encryption (PrivateMessage)
  +-----------+
       |
       v
  +-----------+
  | Cap'n Proto|  Schema-typed serialisation into Envelope frames
  +-----------+
       |
       v
  +-----------+
  | QUIC+TLS  |   QUIC transport encryption (TLS 1.3)
  +-----------+
       |
       v
    Network

The Hybrid KEM layer operates orthogonally: it wraps MLS payloads in an outer post-quantum encryption envelope before they enter the transport layer. It is implemented and tested but not yet integrated into the MLS ciphersuite (planned for the M5 milestone).

Cross-cutting concerns

Several topics span multiple layers and have their own dedicated pages elsewhere in this book:

Forward secrecy: Provided by MLS epoch ratcheting. See Forward Secrecy.
Post-compromise security: Provided by MLS Update proposals. See Post-Compromise Security.
Post-quantum readiness: Currently provided by the standalone Hybrid KEM module; integration into MLS is planned for M5. See Post-Quantum Readiness.
Key lifecycle and zeroization: Private key material is zeroized after use across all layers. See Key Lifecycle and Zeroization.
Wire format details: The Cap'n Proto schema definitions are documented in the Wire Format Reference section.
Design rationale: The ADR pages explain why each layer was chosen. See Design Decisions Overview.

Crate mapping

Each protocol layer maps to one or more workspace crates:

Layer	Primary Crate	Source File(s)
QUIC + TLS 1.3	`quicnprotochat-server`, `quicnprotochat-client`	`main.rs` (server and client entry points)
Cap'n Proto	`quicnprotochat-proto`	`src/lib.rs`, `build.rs`, `schemas/*.capnp`
MLS	`quicnprotochat-core`	`src/group.rs`, `src/keystore.rs`
Hybrid KEM	`quicnprotochat-core`	`src/hybrid_kem.rs`

For a full crate responsibility breakdown, see Crate Responsibilities.

4.9 KiB Raw Blame History