> doing a crypto handshake for each flow is too expensive, so QUIC kinda
merges these into one. It's basically IPsecInTLSinUDP.
And QUIC does it all in user-space, which means end-users can play with and experiment with and try new options. It's a much broader community than having to do TCP and TLS in kernel hacking mode.