On Thu, Apr 08, 2004, [EMAIL PROTECTED] wrote: > I am trying to solve a problem for which the "SSL On-Disk Session Caching" > seems to be an appropriate solution. I need confirmation and pointers to > HOW-TO on this subject. > > I have a CLI application that connects over SSL to a gSOAP server. I'm > currently experiencing around 7 seconds for the session (or communication) > or be established. I can affort this latency for one-time, call it a > "login" phase. I need to find a way to lower this to zero or 1 second > for subsequent usage. > > The end result should be something like cvs login; cvs logout, that is > > cli login > cli cmd > cli cmd > ... > cli logout // or some time expires > > O'Reilly OpenSSL, "Advanced Programming with SSL" chapter talks about > "An On-Disk, session caching framework". This seems like an appropriate > solution. But first I wanted to check... > > So I ask you gurus. Is this the way .... > > Also I'd appreciate some help from people with gSOAP experience > to dig into the 7 seconds latency. It has been posted to gSOAP group > but with no avail. >
I don't know what O'Reilly says but that would certainly solve your problem subsequent sessions could be resumed instead of starting a new one each time. You have to be careful to keep the session data secure since that would allow any other application to impersonate that user. However even a full handshake shouldn't take 7 seconds unless the server is heavily loaded. Steve. -- Dr Stephen N. Henson. Email, S/MIME and PGP keys: see homepage OpenSSL project core developer and freelance consultant. Funding needed! Details on homepage. Homepage: http://www.drh-consultancy.demon.co.uk ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]