PTLS
Mitarbeiter: Xiaoming Fu ,
Dieter Hogrefe ,
Fang-Chun Kuo
Projektpartner: Siemens AG
In this project we investigate the issue of performance impact on difference protocol options for the IETF Transport Layer Security (TLS) protocol.
Referenzen Documents Publikationen of this project:
2006
Comparison Studies between Pre-Shared and Public Key Exchange Mechanisms for Transport Layer Security ,
Xiaoming Fu , Fang-Chun Kuo , Hannes Tschofenig, and Fabian Meyer, Proceedings of the 9th IEEE Global Internet Symposium, in conjunction with IEEE INFOCOM 2006, Barcelona, Spain, pages 77-82,
IEEE, ISBN 3-937201-01-7, April 2006.
Zusammenfassung lesen
The pre-shared key based mechanisms for Transport Layer Security (TLS) were recently standardized by the IETF to extend the set of ciphersuites by utilizing existing key management infrastructures. The benefit of pre shared based mechanisms is the avoidance or reduction of the cryptographic operations used in public-key based mechanisms. However, so far there are no performance measurements for pre-shared key based ciphersuites available. In this paper, we present a systematic analysis and performance comparison between the pre-shared key exchange mechanisms and the standard public key exchange mechanisms in TLS. Our performance metrics are processing
time and transmitted amount of data for a handshake establishment. Furthermore, the interaction between the overall TLS handshake duration and the network environment is evaluated. The results for different key exchange mechanisms are comparatively studied and the design choices of pre-shared key based key exchange mechanisms have been validated. Experimental results give details about the performance improvement of the preshared key based mechanisms compared to the standard public key based mechanisms.
PDF [331.4 kB]
Comparison Studies between Pre-Shared Key and Public Key Exchange Mechanisms for Transport Layer Security (TLS) ,
Xiaoming Fu , Fang-Chun Kuo , Hannes Tschofenig, and Fabian Meyer, Technical Report No. IFI-TB-2006-01, Institute for Informatics, University of Göttingen, Göttingen, Germany,
ISSN 1611-1044, January 2006.
Zusammenfassung lesen
The public-key based handshake process of TLS is regarded as part of bottleneck that significantly degrades the performance. The pre-shared key based key exchange mechanisms for TLS were recently standardized by the IETF for avoiding or reducing the cryptographic operations in public-key based mechanisms. However, so far there is no performance measurement for pre-shared key based key exchange suites available. In this paper, we present a systematic analysis of performance comparison between the pre-shared key exchange mechanisms and the standard public key exchange mechanisms in TLS. Our performance metrics are the processing time in both slow and fast processor machines as well as the transmitted data amount for a handshake establishment. Furthermore, the interaction of the overall TLS handshake duration and the network environment is evaluated. The results for different key exchange mechanisms are comparatively studied and the design choices of pre-shared key based key exchange mechanisms have been validated. It has been observed that pre-shared key based mechanisms perform better than the standard public key based mechanisms.
PDF [357.6 kB]
