The last couple of years has seen a growing momentum towards using the Internet for conducting business. One of the key enablers for business applications is the ability to setup secure channels across the Internet. The Secure Sockets Layer (SSL) protocol provides this capability and it is the most widely used transport layer security protocol. In this paper we investigate the performance of SSL both from a latency as well as a throughput point of view. Since SSL is primarily used to secure Web transactions, we use the SPECWeb96 benchmark suitably modified for use with the SSL protocol. We benchmark two of the more popular Web servers that are in use today and find that they are a couple of orders of magnitude slower when it comes to serving secure Web pages. We investigate the reason for this deficiency by instrumenting the SSL protocol stack with a detailed profiling of the protocol processing components. Based on our findings we suggest two modifications to the protocol that reduce the latency as well as increase the throughput at the server.
[1]
Whitfield Diffie,et al.
New Directions in Cryptography
,
1976,
IEEE Trans. Inf. Theory.
[2]
Adi Shamir,et al.
A method for obtaining digital signatures and public-key cryptosystems
,
1978,
CACM.
[3]
Walter Tuchman,et al.
IV. `Hellman presents no shortcut solutions to the DES¿
,
1979,
IEEE Spectrum.
[4]
A. Bosselaers.
PKCS # 1 : RSA Encryption Standard
,
1991
.
[5]
Roy T. Fielding,et al.
Hypertext Transfer Protocol - HTTP/1.0
,
1996,
RFC.
[6]
Roy T. Fielding,et al.
Hypertext Transfer Protocol - HTTP/1.1
,
1997,
RFC.
[7]
염흥렬,et al.
[서평]「Applied Cryptography」
,
1997
.
[8]
Daniel Bleichenbacher,et al.
Chosen Ciphertext Attacks Against Protocols Based on the RSA Encryption Standard PKCS #1
,
1998,
CRYPTO.
[9]
Christopher Allen,et al.
The TLS Protocol Version 1.0
,
1999,
RFC.
[10]
Blake Ramsdell,et al.
S/MIME Version 3 Message Specification
,
1999,
RFC.
[11]
Erik Wilde.
Hypertext Transfer Protocol (HTTP)
,
1999
.