Re: hardware crypto and SSL?
From: Mark Murray (markm_at_freebsd.org)
Date: 10/22/03
- Previous message: Jonathan M. Bresler: "Re: hardware crypto and SSL?"
- In reply to: Gregory Sutter: "Re: hardware crypto and SSL?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: Gregory Sutter <gsutter@zer0.org> Date: Wed, 22 Oct 2003 22:07:52 +0100
Gregory Sutter writes:
> On 2003-10-21 20:27 -0700, Bill Swingle <unfurl@dub.net> wrote:
> > Is anyone successfully using some sort of hardware crypto solution to
> > combat the overhead of SSL in http transactions? I'd love to hear
> > anything good or bad about this.
>
> Alteon and F5, among others, both make SSL acceleration appliances.
> I'm sure a device like this would greatly speed the processing of
> your HTTPS transactions. Good stuff.
You will most likely not notice hardware encryption speedup (much)
on a client machine if all you are doing is the usual 'net surfing.
Where a hardware crypto unit _really_ shines is in a server,
particularly a heavily loaded one, and they are _brilliant_ if they
have BIGNUM units to make D-H, RSA, DSA etc faster.
If you are a heavy consumer of crypto, and your box is bottlenecked
in the CPU, then a hardware crypto unit will be of great use to
you.
M
-- Mark Murray iumop ap!sdn w,I idlaH _______________________________________________ freebsd-security@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-security To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
- Previous message: Jonathan M. Bresler: "Re: hardware crypto and SSL?"
- In reply to: Gregory Sutter: "Re: hardware crypto and SSL?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
