Skip to main content
Springer Nature Link
Log in

Performance Analysis of Secure Web Server Based on SSL

  • Conference paper
  • First Online:
Information Security (ISW 2000)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 1975))

Included in the following conference series:

Abstract

In recent years, protocols have been developed to ensure secure communications over the Internet, e.g., the secure sockets layer (SSL) and secure electronic transaction (SET). Deployment of these protocols incurs additional resource requirements at the client and server. This may have a negative impact on system performance. In this paper, we consider a scenario where users request information pages stored on a web server, and some of the requests require secure communication. An analytic model is developed to study the performance of a web server based on SSL. In our model, the details of the client-server interactions found in a typical SSL session are represented explicitly. Input parameters to this model are obtained by measuring an existing SSL implementation. Numerical examples on the performance characteristics of SSL are presented.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
eBook
USD 39.99
Price excludes VAT (USA)
Softcover Book
USD 54.99
Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Gregory B. White, Eric A. Fisch, Udo W. Pooch. Computer System and Network Security. CRC Press, Inc., New York, 1996.

    MATH  Google Scholar 

  2. Kipp E.B. Hickman. SSL 2.0 Protocol Specification. February 1995. http://www.netscape.com/eng/security/SSL2.html

  3. Alan O. Freier, Philip Karlton, Paul C. Kocher. SSL 3.0 Protocol Specification. March 1996. http://home.netscape.com/eng/ssl3/index.html

  4. MasterCard International Incorporated, Visa International. The SET Specification 1.0, Dec. 1997. http://www.setco.org/setspecifications.html

  5. Arthur Goldberg, Robert Buff, Andrew Schmitt. Secure Web Server Performance Dramatically Improved by Caching SSL Session Keys.Workshop on Internet Server Performance, SIGMETRICS’ 98, Madison, Wisconsin, June 1998.

    Google Scholar 

  6. George Apostolopoulos, Vinod Peris, Debanjan Saha. Transport Layer Security: How much does it really cost? Proc. INFOCOM’ 99, New York, March 1999.

    Google Scholar 

  7. The Standard Performance Evaluation Corporation. SPECweb96 Benchmark, 1996. http://www.spec.org/osg/web96/

  8. Chris Le Tocq, Steve Young. Set Comparative Performance Analysis: Gartner Group White Paper. http://www.setco.org/download/setco6.pdf

  9. T.J. Hudson, E.A. Young. SSLeay Programmer Reference. January 1996. http://www.psy.uq.oz.au/_ftp/Crypto/ssl.html

  10. T. Dierks, C. Allen. RFC2246: The TLS Protocol Version 1.0, January 1999.

    Google Scholar 

  11. F. Baskett, K.M. Chandy, R.R. Muntz, F.G. Palacios. Open, Closed and Mixed Network of Queues with Different Classes of Customers. Journal of the ACM 22(2), April 1975, 248–260.

    Article  MATH  MathSciNet  Google Scholar 

  12. J.D. Little. A Proof of the Queueing Formula L = λW. Operations Research 9(3), 1961, 383–387.

    Article  MATH  MathSciNet  Google Scholar 

  13. W. Richard Stevens. UNIX Network Programming, Volume 1, Second Edition: Networking APIs: Sockets and XTI. Prentice Hall, Upper Saddle River, New Jersey, 1998.

    Google Scholar 

  14. A.J. Menezes, P.C. van Oorschot, S.A. Vanstone. Handbook of Applied Cryptography. CRC Press, New York, 1997.

    MATH  Google Scholar 

  15. J.W. Wong. Queueing Network Models for Computer Systems. Ph.D. thesis, University of California at Los Angeles, 1975.

    Google Scholar 

  16. Rainbow Technologies Company. Secure Web Server and VPN (IPSec) Acceleration. http://isg.rainbow.com/index.html

  17. Special Issue on Web Performance, IEEE Network 14(3), May/June 2000.

    Google Scholar 

  18. The Standard Performance Evaluation Corporation. SPECweb99 Benchmark, 1999. http://www.spec.org/osg/web99/

  19. R. Hariharan, W. K. Ehrlich, D. Cura, P. K. Reeser. End to End Performance Modeling of Web Server Architectures. Performance Evaluation Review 28(2) September 2000, 57–63.

    Article  Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Science, University of Waterloo, N2L 3G1, Waterloo, Ontario, Canada

    Xiaodong Lin & Johnny W. Wong

  2. E-Business Technology Institute, University of Hong Kong, Pokfulam Road, Hong Kong

    Weidong Kou

Authors
  1. Xiaodong Lin
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Johnny W. Wong
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Weidong Kou
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Karlsruhe University, Germany

    Gerhard Goos

  2. Cornell University, NY, USA

    Juris Hartmanis

  3. Utrecht University, The Netherlands

    Jan van Leeuwen

  4. School of Information Technology and Computer Science Center for Computer Security Research, Wollongong University, NSW 2522, Wollongong, Australia

    Josef Pieprzyk  & Jennifer Seberry  & 

  5. Faculty of Science Department of Information Science, Toho University, 2-2-1, Miyama, 274-8510, Chiba, Funabashi, Japan

    Eiji Okamoto

Rights and permissions

Reprints and permissions

Copyright information

© 2000 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Lin, X., Wong, J.W., Kou, W. (2000). Performance Analysis of Secure Web Server Based on SSL. In: Goos, G., Hartmanis, J., van Leeuwen, J., Pieprzyk, J., Seberry, J., Okamoto, E. (eds) Information Security. ISW 2000. Lecture Notes in Computer Science, vol 1975. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-44456-4_19

Download citation

  • DOI: https://doi.org/10.1007/3-540-44456-4_19

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-41416-2

  • Online ISBN: 978-3-540-44456-5

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation