Archive for the 'tls' Category

Is TLS Fast Yet?

Monday, September 8th, 2014

Published on Jul 24, 2014 “TLS has exactly one performance problem: not enough sites are using it. Everything else can and will be optimized. A hands on look at how to achieve 1-RTT handshakes, eliminate validation latency, and more.” Slides: bit.ly/…

CRIME (security exploit) – Wikipedia, the free encyclopedia

Sunday, July 14th, 2013

from http://tech.slashdot.org/story/13/07/09/1455200/ It works like this. You visit a site that has malicious JavaScript which sends a HTTPS request to some site (like your bank). This request will include whatever known plain-text that the JavaScript …

CRIME (security exploit) – Wikipedia, the free encyclopedia

Sunday, July 14th, 2013

from http://tech.slashdot.org/story/13/07/09/1455200/ It works like this. You visit a site that has malicious JavaScript which sends a HTTPS request to some site (like your bank). This request will include whatever known plain-text that the JavaScript …

SSL termination: stunnel, nginx & stud | Vincent Bernat

Sunday, September 25th, 2011

Interesting test results comparing and analyzing SSL performance. Using right combination of software and proper tunning, you can get up to 14000 TPS (re-shake every 80 requests) on HP DL 380 G7, with two Xeon L5630 (running at 2.13GHz for a total of…

SSL termination: stunnel, nginx & stud | Vincent Bernat

Sunday, September 25th, 2011

Interesting test results comparing and analyzing SSL performance. Using right combination of software and proper tunning, you can get up to 14000 TPS (re-shake every 80 requests) on HP DL 380 G7, with two Xeon L5630 (running at 2.13GHz for a total of…

Understanding the TLS Renegotiation Attack – Educated Guesswork

Tuesday, November 10th, 2009

explains Marsh Ray’s attack in details, pls patch to fix the TLS protocol