How Does SMB over QUIC Enhance Secure File Access Outside the Corporate Network?

by Julianne Baracchi Development & Provision Of Server Message Block (SMB) Protocol Solutions

In today's modern work environment, where hybrid and remote work models have become the norm, the need for secure and efficient access to organizational files from anywhere has become critical. You, as an organization, are likely familiar with the challenges associated with traditional solutions like VPNs: the complexity of installation and maintenance, network strain, and compromised user experience. These solutions, designed for a different world, no longer meet the growing demands for security and flexibility. As a result, many organizations are now seeking modern alternatives that enable seamless, secure, and simple access to file resources, without compromising performance or security. This is where SMB over QUIC comes in – a revolutionary technology designed to address these challenges precisely.

What Exactly Is SMB over QUIC, and How Does It Work?

To understand the revolution that SMB over QUIC brings, it's important to understand the principles that underpin it. SMB over QUIC is an innovative solution for secure file sharing, designed specifically for untrusted networks like the internet. It offers a superior alternative to the traditional TCP-based SMB protocol by replacing the exposed TCP/445 port with the secure UDP/443 port.

How Does QUIC Improve Network Performance and Security?

At the heart of the solution is the QUIC (Quick UDP Internet Connections) protocol, originally developed by Google as a modern and improved alternative to TCP. QUIC operates over UDP and offers several key advantages: it is always encrypted and requires TLS 1.3 for certificate-based authentication, ensuring that all data traffic remains encrypted and secure. It significantly reduces connection times thanks to the fast TLS 1.3 handshake, and provides better performance even in the event of data packet loss, thanks to advanced error correction mechanisms. Moreover, QUIC enables seamless and easy connection migration when the network changes, maintaining work continuity even when switching between different networks or changing IP addresses.

Why Is SMB over QUIC Considered a "Built-in VPN"?

The combination of SMB with QUIC creates a solution that Microsoft calls "SMB with automatic built-in TLS 1.3 VPN." This means that you can enjoy secure file access without the need to set up a separate and complex VPN connection. The protocol eliminates the need for passwords, and all traffic is encrypted end-to-end. By using UDP/443, which is a standard port for secure internet traffic (like HTTPS), SMB over QUIC smoothly passes through most firewalls, making it easier to deploy and use in remote environments.

Visuality Systems is a global leader in developing and providing SMB (Server Message Block) protocol solutions for over two decades. We provide you with Microsoft SMB client and server solutions that are robust, secure, and flexible, designed specifically for embedded products, Java-based applications, and storage systems. Our extensive knowledge and experience in the field of SMB ensures reliable and advanced solutions that meet the most stringent requirements of the modern computing world.

What Benefits Does SMB over QUIC Offer to Users and Businesses?

SMB over QUIC brings a range of significant benefits for you, both at the individual user level and at the organizational level, especially when it comes to secure and convenient access to files outside the trusted network.

How Is Security Improved with SMB over QUIC?

First, and most notably, there is a dramatic improvement in security. By replacing the vulnerable TCP/445 port with the secure UDP/443 port, all SMB traffic outside the corporate network remains fully encrypted using TLS 1.3. This eliminates the need to expose the traditional port 445 to the internet, an exposure that previously posed a significant security risk. With SMB over QUIC, you can rest assured that your file data is well protected as it travels across the internet.

Does File Access Become Easier?

Absolutely! SMB over QUIC significantly simplifies the remote file access experience. It eliminates the need for end-users to manually connect to a separate and cumbersome VPN client. In an era of hybrid work, where many employees access organizational resources from different and diverse locations, this simplicity is a huge advantage. It reduces the support burden on IT teams and allows users to focus on their work without technical interruptions.

How Does SMB over QUIC Improve Connection Stability?

Another important advantage is connection stability. Thanks to the connection migration capabilities built into the QUIC protocol, users can seamlessly switch between different networks – for example, from office Wi-Fi to a mobile hotspot – without losing the file sharing session. This ensures work continuity even in dynamic environments, and provides a consistent and reliable user experience.

Finally, it is important to note the wider availability of the technology. Previously, SMB over QUIC was only available in Windows Server 2022 Azure Edition. But with Windows Server 2025, there is a significant change: SMB over QUIC is now also available in the Datacenter and Standard editions, in addition to the Azure Edition. This change expands the deployment range of the technology and allows more organizations to enjoy its benefits. For more information on SMB over QUIC solutions, we recommend that you check out smb over quic "visualityng".

How Does Visuality Systems Extend SMB over QUIC Capabilities Beyond Windows?

While Microsoft provides the SMB over QUIC server implementation, accessing it from non-Windows devices requires dedicated client solutions. This is where Visuality Systems comes in, extending the capabilities of SMB over QUIC and enabling you to securely access files from any device or operating system, regardless of VPN.

What Solutions Does Visuality Systems Provide?

Visuality Systems offers you a comprehensive suite of products that enable SMB Server and SMB Client connectivity on a variety of platforms:

  • YNQ (Embedded SMB): A powerful library designed for non-Windows embedded systems. It supports various operating systems, including Apple iOS (for iPad and iPhone), and provides a system driver that enables seamless integration of SMB into these devices.
  • jNQ (Java SMB Client): An advanced Java-based SMB client library that supports all major Java implementations (Oracle, OpenJDK, IBM) and works with Java 1.8 and above. It allows you to access Windows shared files from any Java-supported operating system.
  • Linux System Driver: A dedicated SMB driver for Linux, fully supporting SMB over QUIC. It enables direct and convenient access to file resources from within the Linux operating system, including integration with file managers like Nautilus in Ubuntu.

Through these solutions, Visuality Systems opens up the ability for you to use SMB over QUIC for various applications, ranging from IoT and manufacturing systems, through monitoring and logistics, to robotics. We provide you with robust, secure, and flexible Microsoft SMB client and server solutions for embedded products, Java-based applications, and storage systems, ensuring secure access to file data without the need for a VPN, and extending the potential of SMB over QUIC beyond the Windows environment.