[ / / / / / / / / / / / / / ] [ dir / animu / hentai / htg / hydrus / kind / pdfs / sapphic / sl ][Options][ watchlist ]

/tech/ - Technology

You can now write text to your AI-generated image at https://aiproto.com It is currently free to use for Proto members.
Email
Comment *
File
Select/drop/paste files here
Password (Randomized for file and post deletion; you may also set your own.)
Archive
* = required field[▶ Show post options & limits]
Confused? See the FAQ.
Expand all images

File (hide): 776bff648e84034⋯.png (83.96 KB, 512x376, 64:47, rustls-logo-web.png) (h) (u)

[–]

 No.1082970>>1083007 [Watch Thread][Show All Posts]

There are quite a few dimensions to how performance can vary between TLS libraries

Handshake performance covers how quickly new TLS sessions can be set up. There are broadly two kinds of TLS handshake: full and resumed. Full handshake performance will be dominated by the expense of public key crypto -- certificate validation, authentication and key exchange. Resumed handshakes require no or few public key operations, so are much quicker.

Bulk performance covers how quickly application data can be transferred over an already set-up session. Performance here will be dominated by symmetric crypto performance -- the name of the game is for the TLS library to stay out of the way and minimise overhead in the main data path. The data rates concerned are typically many times a typical network link speed.

A TLS library will represent separate sessions in memory while they are in use. How much memory these sessions use will dictate how many sessions can be concurrently terminated on a given server.

This series of blog posts measures and compares the performance of rustls (a TLS library in rust) and OpenSSL.

...

See those posts for details and analysis. To summarise the results, though, we can say approximately:

rustls is 15% quicker to send data.

rustls is 5% quicker to receive data.

rustls is 20-40% quicker to set up a client connection.

rustls is 10% quicker to set up a server connection.

rustls is 30-70% quicker to resume a client connection.

rustls is 10-20% quicker to resume a server connection.

rustls uses less than half the memory of OpenSSL.

https://jbp.io/2019/07/01/rustls-vs-openssl-performance.html

____________________________
Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.

 No.1082983>>1082987

>implying the problem with openssl was ever performance

It's that OpenSSL is complete spaghetti code implementing a retardedly overcomplex protocol with a lifetime supply of outdated ciphers for compatibility. Most of this won't be fixed by using Rust (though at least it will get rid of some of the Heartbleed-tier exploits) and as far as I can tell from a quick source scan RustTLS (or rather, its dependencies that do all the work) is seriously incomplete.

Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.

 No.1082987>>1083002

>>1082983

But millennial coffeeshop programmers who code fast and loose & lazily says it's the second coming of Jesus Christ.

Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.

 No.1083002

>>1082987

That is the great irony of the language.

Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.

 No.1083007

>>1082970 (OP)

>rustls is 15% quicker to send "telemetry" data.

Disclaimer: this post and the subject matter and contents thereof - text, media, or otherwise - do not necessarily reflect the views of the 8kun administration.



[Return][Go to top][Catalog][Screencap][Nerve Center][Update] ( Scroll to new posts) ( Auto) 5
4 replies | 0 images | Page ???
[Post a Reply]
[ / / / / / / / / / / / / / ] [ dir / animu / hentai / htg / hydrus / kind / pdfs / sapphic / sl ][ watchlist ]