Abstract
The secure socket layer/ transport layer security(SSL/TLS) handshake protocol uses public key cryptographic algorithms such as RSA for key establishment. Typically, public key cryptographic algorithm is computational intensive due to the modular multiplications. Therefore, SSL/TLS servers often become swamped while performing public key decryptions when the simultaneous requests increase quickly. A batch RSA decryption algorithm was proposed. The novel algorithm provides the reasonable response time and optimizes server performance significantly. The decryption speedup is proportional to the batch size b, for instance, the speedup factor is 4, while in Shacham’s scheme the acceleration rate is only 2.5 when b = 4.
Similar content being viewed by others
References
Rescorla E, Cain A, Korver B. SSLACC: A Clustered SSL accelerator [C]//Proceedings of the 11th USENIX Security Symposium. Berkeley, CA, USA: USENIX Association, 2002: 229–246.
Coarfa C, Druschel P, Wallach D. Performance analysis of TLS web servers[J]//ACM Trans Comput Syst, 2006, 24(1): 39–69.
Shacham H, Boneh D, Rescorla E. Client-side caching for TLS [J]. ACM Trans Inf Syst Secur, 2004, 7(4): 553–575.
Castelluccia C, Mykletun E, Tsudik G. Improving secure server performance by rebalancing SSL/TLS handshakes [C]//Proceedings of the 2006 ACM Symposium on Information, Computer and Communications Security. Taipei: ACM Press, 2006: 26–34.
Shacham H, Boneh D. Improving SSL handshake performance via batching [C]//CT-RSA 2001: Proceedings of the 2001 Conference on Topics in Cryptology. London, UK: Springer-Verlag, 2001: 28–43.
Fiat Amos. Batch RSA[C]//CRYPTO’ 89: Proceedings on Advances in Cryptology. New York, NY, USA: Springer-Verlag, 1989: 175–185.
Author information
Authors and Affiliations
Corresponding author
Additional information
Foundation item: The National Natural Science Foundation of China (No. 60273049, 60303026, 60473020)
Rights and permissions
About this article
Cite this article
Li, Sq., Wu, Yd., Zhou, Jy. et al. A practical SSL server performance improvement algorithm based on batch RSA decryption. J. Shanghai Jiaotong Univ. (Sci. 13, 67–70 (2008). https://doi.org/10.1007/s12204-008-0067-y
Received:
Published:
Issue Date:
DOI: https://doi.org/10.1007/s12204-008-0067-y