[114413] in cryptography@c2.net mail archive
Re: Dutch Transport Card Broken
daemon@ATHENA.MIT.EDU (Peter Gutmann)
Fri Feb 1 09:13:52 2008
From: pgut001@cs.auckland.ac.nz (Peter Gutmann)
To: cryptography@metzdowd.com, Victor.Duchovni@MorganStanley.com
In-Reply-To: <20080130194746.GY17469@np305c2n2.ms.com>
Date: Fri, 01 Feb 2008 13:15:09 +1300
Victor Duchovni <Victor.Duchovni@MorganStanley.com> writes:
>Jumping in late, but the idea that *TCP* (and not TLS protocol design) adds
>round-trips to SSL warrants some evidence (it is very temping to express this
>skepticism more bluntly).
If anyone's interested, I did an analysis of this sort of thing in an
unpublished draft "Performance Characteristics of Application-level Security
Protocols", http://www.cs.auckland.ac.nz/~pgut001/pubs/app_sec.pdf. It
compares (among other things) the cost in RTT of several variations of SSL and
SSH. It's not the TCP RTTs that hurt, it's all the handshaking that takes
place during the crypto connect. SSH is particularly bad in this regard.
Peter.
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
