Abstract
In recent years, protocols have been developed to ensure secure communications over the Internet, e.g., the secure sockets layer (SSL) and secure electronic transaction (SET). Deployment of these protocols incurs additional resource requirements at the client and server. This may have a negative impact on system performance. In this paper, we consider a scenario where users request information pages stored on a web server, and some of the requests require secure communication. An analytic model is developed to study the performance of a web server based on SSL. In our model, the details of the client-server interactions found in a typical SSL session are represented explicitly. Input parameters to this model are obtained by measuring an existing SSL implementation. Numerical examples on the performance characteristics of SSL are presented.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Gregory B. White, Eric A. Fisch, Udo W. Pooch. Computer System and Network Security. CRC Press, Inc., New York, 1996.
Kipp E.B. Hickman. SSL 2.0 Protocol Specification. February 1995. http://www.netscape.com/eng/security/SSL2.html
Alan O. Freier, Philip Karlton, Paul C. Kocher. SSL 3.0 Protocol Specification. March 1996. http://home.netscape.com/eng/ssl3/index.html
MasterCard International Incorporated, Visa International. The SET Specification 1.0, Dec. 1997. http://www.setco.org/setspecifications.html
Arthur Goldberg, Robert Buff, Andrew Schmitt. Secure Web Server Performance Dramatically Improved by Caching SSL Session Keys.Workshop on Internet Server Performance, SIGMETRICS’ 98, Madison, Wisconsin, June 1998.
George Apostolopoulos, Vinod Peris, Debanjan Saha. Transport Layer Security: How much does it really cost? Proc. INFOCOM’ 99, New York, March 1999.
The Standard Performance Evaluation Corporation. SPECweb96 Benchmark, 1996. http://www.spec.org/osg/web96/
Chris Le Tocq, Steve Young. Set Comparative Performance Analysis: Gartner Group White Paper. http://www.setco.org/download/setco6.pdf
T.J. Hudson, E.A. Young. SSLeay Programmer Reference. January 1996. http://www.psy.uq.oz.au/_ftp/Crypto/ssl.html
T. Dierks, C. Allen. RFC2246: The TLS Protocol Version 1.0, January 1999.
F. Baskett, K.M. Chandy, R.R. Muntz, F.G. Palacios. Open, Closed and Mixed Network of Queues with Different Classes of Customers. Journal of the ACM 22(2), April 1975, 248–260.
J.D. Little. A Proof of the Queueing Formula L = λW. Operations Research 9(3), 1961, 383–387.
W. Richard Stevens. UNIX Network Programming, Volume 1, Second Edition: Networking APIs: Sockets and XTI. Prentice Hall, Upper Saddle River, New Jersey, 1998.
A.J. Menezes, P.C. van Oorschot, S.A. Vanstone. Handbook of Applied Cryptography. CRC Press, New York, 1997.
J.W. Wong. Queueing Network Models for Computer Systems. Ph.D. thesis, University of California at Los Angeles, 1975.
Rainbow Technologies Company. Secure Web Server and VPN (IPSec) Acceleration. http://isg.rainbow.com/index.html
Special Issue on Web Performance, IEEE Network 14(3), May/June 2000.
The Standard Performance Evaluation Corporation. SPECweb99 Benchmark, 1999. http://www.spec.org/osg/web99/
R. Hariharan, W. K. Ehrlich, D. Cura, P. K. Reeser. End to End Performance Modeling of Web Server Architectures. Performance Evaluation Review 28(2) September 2000, 57–63.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2000 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Lin, X., Wong, J.W., Kou, W. (2000). Performance Analysis of Secure Web Server Based on SSL. In: Goos, G., Hartmanis, J., van Leeuwen, J., Pieprzyk, J., Seberry, J., Okamoto, E. (eds) Information Security. ISW 2000. Lecture Notes in Computer Science, vol 1975. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-44456-4_19
Download citation
DOI: https://doi.org/10.1007/3-540-44456-4_19
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-41416-2
Online ISBN: 978-3-540-44456-5
eBook Packages: Springer Book Archive