WebApp Sec mailing list archives

Re: Idea for making SSL more efficient

From: "Kurt Seifried" <bt () seifried org>
Date: Fri, 16 Jul 2004 19:38:38 -0700

Cost of deploying this:

Huge. You have to update every single web browser. Try convincing MS/etc.

Cost of not deploying this:

Nothing to minimal. Buy a crypto accelerator card for $100 or up depending
on how much extra power you need.
Use an intelligent firm that will produce shrunken graphics (file size wise)
for your server.

In any event the major cost of SSL is usually session setup, not the crypto
itself (which in any event can largely be offloaded to a 100$ card). So even
with this you'd have as many sessions being created, they would just
transfer a little less data.

Kurt Seifried, kurt () seifried org
A15B BEE5 B391 B9AD B0EF
AEB0 AD63 0B4E AD56 E574
http://seifried.org/security/

Current thread:

Idea for making SSL more efficient Paul Johnston (Jul 16)
- Re: Idea for making SSL more efficient Kurt Seifried (Jul 17)
  - Re: Idea for making SSL more efficient Frank O'Dwyer (Jul 18)
    - RE: Idea for making SSL more efficient V. Poddubnyy (Jul 18)
    - Re: Idea for making SSL more efficient Frank O'Dwyer (Jul 18)
- <Possible follow-ups>
- RE: Idea for making SSL more efficient Scovetta, Michael V (Jul 16)
- RE: Idea for making SSL more efficient Michael Howard (Jul 16)
  - Re: Idea for making SSL more efficient Frank O'Dwyer (Jul 16)
- Re: Idea for making SSL more efficient Jason Coombs PivX Solutions (Jul 16)
- RE: Idea for making SSL more efficient Michael Howard (Jul 16)
  - Re: Idea for making SSL more efficient Kurt Seifried (Jul 16)
- Re: Idea for making SSL more efficient Kurt Seifried (Jul 18)
  - Re: Idea for making SSL more efficient Frank O'Dwyer (Jul 18)