Abstract
Secure socket layer (SSL) is the most popular protocol to secure Internet communications. Since SSL handshake requires a large amount of computational resource, batch RSA was proposed to speedup SSL session initialization. However, the batch method is impractical since it requires a multiple of certificates. In this paper, we overcome this problem without modifying SSL protocol. To select the optimal batching parameters in terms of performance of server and durable waiting time of the client, we model the connection request with M/D/1 queue. We validate the solutions of the analytical model through simulation.
The first author’s work is done during her attachment to Institute for Infocomm Research under its sponsorship. This effort is partially sponsored by the National Basic Research Program (973) MOST of China under Grant No. 2003CB317003.
Chapter PDF
Similar content being viewed by others
Keywords
These keywords were added by machine and not by the authors. This process is experimental and the keywords may be updated as the learning algorithm improves.
References
Coarfa, C., Druschel, P., Wallach, D.S.: Performance Analysis of TLS Web Servers. In: NDSS 2002 (2002)
Dierks, T., Rescorla, E.: The TLS Protocol, Version 1.1, IETF Draft, RFC 2246 (2005)
Goldberg, I., Wagner, D.: Randomness and the Netscape Browser. Dr. Dobb’s Journal, 66–70 (January 1996)
Freier, A.O., Karlton, P., Kocher, P.C.: The SSL Protocol, V3.0
Feigenbaum, J., Freedman, M.J., Sander, T., Shostack, A.: Privacy Engineering for Digital Rights Management Systems. In: Sander, T. (ed.) DRM 2001. LNCS, vol. 2320, pp. 76–105. Springer, Heidelberg (2002)
Rescorla, E., Cain, A., Korver, B.: SSLACC: A Clustered SSL Accelerator. In: Proceedings of the 11th USENIX Security Conference
Goldberg, A., Buff, R., Schmitt, A.: Secure Web Server Performance Dramatically Improved By Caching SSL Session Keys. In: Workshop on Internet Server Performance (June 1998)
Fiat, A.: Batch RSA. In: Brassard, G. (ed.) CRYPTO 1989. LNCS, vol. 435, pp. 175–185. Springer, Heidelberg (1990); See also Journal of Cryptology 10(2), 75–88 (1997)
Shacham, H., Boneh, D.: Improving SSL Handshake Performance via Batching. In: Naccache, D. (ed.) CT-RSA 2001. LNCS, vol. 2020, pp. 28–43. Springer, Heidelberg (2001)
Kleinrock, L.: Queueing Systems, vol. I. Wiley-Interscience, Hoboken (1975)
Cheng, W.C., Chou, C.-F., Golubchik, L.: Performance of Batch-based Digital Signatures. In: 10th IEEE International Symposium on Modeling, Analysis, and Simulation of Computer and Telecommunication Systems, pp. 291–299 (2002)
Alec, R.: Capitalism Is Dead: Peoplism Rules: Creating Success Out of Corporate Chaos. McGraw-Hill, New York (2003)
Vuillaume, C.: Efficiency Comparison of Several RSA Variants, Studienarbeit (March 2003) http://www.cdc.informatik.tu-darmstadt.de/reports/reports/studien.pdf
Cryptix: The Open Source Toolkit, http://www.cryptix.org/
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Qi, F., Jia, W., Bao, F., Wu, Y. (2005). Batching SSL/TLS Handshake Improved. In: Qing, S., Mao, W., López, J., Wang, G. (eds) Information and Communications Security. ICICS 2005. Lecture Notes in Computer Science, vol 3783. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11602897_34
Download citation
DOI: https://doi.org/10.1007/11602897_34
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-30934-5
Online ISBN: 978-3-540-32099-9
eBook Packages: Computer ScienceComputer Science (R0)