From: openssl-users On Behalf Of Michael Wojcik
Sent: Thursday, December 18, 2014 21:27
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On
Behalf
Of Kurt Roeckx
Sent: Thursday, December 18, 2014 16:36
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL
From: openssl-users On Behalf Of Kurt Roeckx
Sent: Thursday, December 18, 2014 16:36
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote:
***
This is for *Client - Agent*
***
[...]
Version
On 19/12/2014 00:10, Prabhat Puroshottam wrote:
I am trying to summarize the problem again, since the previous
mail seems confusing to some of you. It might help you quickly understand
the problem I am facing:
We have a product, where Client connects to Server (Proxy Server in my
earlier mail).
On 19/12/2014 12:11, Jakob Bohm wrote:
On 19/12/2014 00:10, Prabhat Puroshottam wrote:
I am trying to summarize the problem again, since the previous
mail seems confusing to some of you. It might help you quickly understand
the problem I am facing:
We have a product, where Client connects to
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote:
As you can see the big time difference between the two executions - which
actually involve the same application level data. The largest chunk of
time is spent waiting for handshake from *Proxy Server*. The response time
of
On 19/12/14 15:17, Brian Reichert wrote:
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote:
As you can see the big time difference between the two executions - which
actually involve the same application level data. The largest chunk of
time is spent waiting for handshake
@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
So the differnce here is that jave picks a DHE ciphersuite while
otherwise
you
didn't. DHE gives you forward secrecy but is slower.
And if DH parameters have not been set, OpenSSL will have to generate
them
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf
Of Dr. Stephen Henson
Sent: Friday, December 19, 2014 11:37
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
On Fri, Dec 19, 2014, Dave Thompson wrote:
From: openssl-users
Hi,
I think my last email was somehow lost in transition between the mail
servers so I am starting afresh if somebody can help. If you have
already taken pains to read through this mail, kindly skip to the bottom
of the mail. Thanks for your patience.
First let me state upfront that I am
*Client* and *Agent* are implemented in C, while *Proxy Server* uses Java
code (This shouldn't really matter). But might be helpful for you to know.
The issue is, connecting *Client* to *Agent* is very fast (that is
relatively).
While connecting *Client* to *Proxy Server* is very slow - that
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote:
***
This is for *Client - Agent*
***
[...]
Version 3.1
[...]
cipherSuite TLS_RSA_WITH_AES_256_CBC_SHA
[...]
Why do you say it shouldn't matter? The new Java proxy server is most likely
the cause. Do some packet captures, between ClientAgent and ClinetProxy.
L ook at the timing, and see if the client ends up waiting for packets from
the proxy.
Sorry may be I wasn't able to convey it. The java
So the differnce here is that jave picks a DHE ciphersuite while
otherwise you didn't. DHE gives you forward secrecy but is
slower.
Being relatively new to OpenSSL and security programming in general,
obviously I need to read into these, but could it cause the delay in
sending ServerHello by
So the differnce here is that jave picks a DHE ciphersuite while
otherwise you didn't. DHE gives you forward secrecy but is
slower.
Being relatively new to OpenSSL and security programming in general,
obviously I need to read into these, but could it cause the delay in
sending ServerHello by
I am trying to summarize the problem again, since the previous
mail seems confusing to some of you. It might help you quickly understand
the problem I am facing:
We have a product, where Client connects to Server (Proxy Server in my
earlier mail). Client is implemented in C and uses OpenSSL,
I would like to understand why startHandshake() is taking so long.
Somebody else pointed out the differences in ciphers. You should take the time
to understand that message.
___
openssl-users mailing list
openssl-users@openssl.org
Date: Thu, 18 Dec 2014 22:36:08 +0100
From: k...@roeckx.be
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote
Date: Thu, 18 Dec 2014 22:36:08 +0100
From: k...@roeckx.be
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf
Of Kurt Roeckx
Sent: Thursday, December 18, 2014 16:36
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
So the differnce here is that jave picks a DHE ciphersuite while otherwise
19 matches
Mail list logo
