Re: openssl performance

Hello,

[email]owner-openssl-users@openssl.org[/email] wrote on 04/03/2008 04:18:42 AM:
[color=blue]
> Anybody any comments?[/color]
[color=blue]
> On Tue, Apr 1, 2008 at 11:56 PM, raj H <rajatopenssl@gmail.com> wrote:
> Hi Experts,
>
> OpenSSL 9.8b. We are facing some performance issues with it. I[/color]
heard that[color=blue]
> doing session reuse or using some other ciphers can help improve the[/color]
performance significantly.[color=blue]
> I would like to know -
>
> 1. Is using the session reuse with ssl handshake is advisable? I read[/color]
somewhere that[color=blue]
> session reuse with openssl is controversial with memory usage. It might[/color]
have some memory[color=blue]
> leaks. Is that true? What are other issues with ssl session reuse? Does[/color]
anyone has any[color=blue]
> numbers on performance gain with session reuse?[/color]
This is method improves handshake performance when your client
connects/disconnects
many times to your server in short time (like https client connections
with HTTP/1.0).
In this case handshake exchanges only 6 packets (without RSA encryption in
case where
RSA certificates are used) instead of 9/10/12 (depending of authorization
scheme).
[color=blue]
> 2. Does changing cipher used improve performance? We use the default[/color]
one. Is there any[color=blue]
> numbers on this too? I plan to use one of -[/color]
In general: use AES instead of DES3, its faster.

Best regards,
--
Marek Marcola <Marek.Marcola@malkom.pl>

______________________________________________________________________
OpenSSL Project [url]http://www.openssl.org[/url]
User Support Mailing List [email]openssl-users@openssl.org[/email]
Automated List Manager [email]majordomo@openssl.org[/email]