Tag Archives: Performance

SSL Session Resume

June 28, 2011 by Bruce Morton     No Comments

Yngve Pettersen of Opera has written a great article on SSL Session Resume. The SSL session resumption feature in the SSL/TLS protocol allows multiple connections to use the same negotiated secret key data to calculate encryption keys for the connection. This allows a secure connection to be re-established very quickly with no loss of security, [Read More...]

Filed Under: SSL Deployment Tagged With: Performance, SSL

SSL False Start Performance Results

May 19, 2011 by Bruce Morton     No Comments

As a follow-up to ‘Google is speeding up SSL’, Google has reported very favorable SSL False Start performance results. In summary, False Start reduces the latency of a SSL handshake by 30 percent. In addition, Google has implemented False Start into Chrome so that it is basically 100 percent backwards-compatible. Google Chrome is the only [Read More...]

Filed Under: Secure Browsing, SSL, Technical Tagged With: False Start, Performance, SSL

HTTPS Performance Tuning

February 14, 2011 by Bruce Morton     No Comments

Following up my last post, “SSL is not computationally expensive anymore,” I noticed Google is still using a 1024-bit RSA certificate for Gmail. I did some digging and confirmed that the performance hit of using a 2048-bit RSA key is about five times that of 1024-bit key. So this could create a 5-10 percent load [Read More...]

Filed Under: SSL Deployment, Technical Tagged With: Mixed Content, Performance, SSL

SSL is not computationally expensive anymore

February 7, 2011 by Bruce Morton     No Comments

A recurring theme in this blog is proper SSL deployment [1] [2] [3]. One of the push backs that we hear is that SSL brings a lot of overhead, so it only gets deployed when absolutely necessary. Well, that myth was busted about a year ago when Google switched of Gmail to HTTPS. An article [Read More...]

Filed Under: SSL Deployment, Technical Tagged With: Performance, SSL, Technical

Google is speeding up SSL

December 9, 2010 by Bruce Morton     No Comments

Everyone loves SSL, also known as Transport Layer Security (TLS), right? Well, the good people at Google have decided to make it even better by speeding it up with a feature called TLS False Start. Setting up an SSL session requires an initial handshake, which is a series of back-and-forth messages between the Web server [Read More...]

Filed Under: Secure Browsing, Technical Tagged With: False Start, Performance, SSL