Hi Team,
I want to test openssl performance with and without using cryptodev
driver.I tried 2 things but my both cases are fluctuating.
*1. Openssl speed test with and without HW*
When i am running openssl speed test using the below command,
openssl speed -evp aes-128-cbc
*I am getting
From: openssl-users On Behalf Of Michael Wojcik
Sent: Thursday, December 18, 2014 21:27
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On
Behalf
Of Kurt Roeckx
Sent: Thursday, December 18, 2014 16:36
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL
From: openssl-users On Behalf Of Kurt Roeckx
Sent: Thursday, December 18, 2014 16:36
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote:
***
This is for *Client - Agent*
***
[...]
Version
On 19/12/2014 00:10, Prabhat Puroshottam wrote:
I am trying to summarize the problem again, since the previous
mail seems confusing to some of you. It might help you quickly understand
the problem I am facing:
We have a product, where Client connects to Server (Proxy Server in my
earlier mail).
On 19/12/2014 12:11, Jakob Bohm wrote:
On 19/12/2014 00:10, Prabhat Puroshottam wrote:
I am trying to summarize the problem again, since the previous
mail seems confusing to some of you. It might help you quickly understand
the problem I am facing:
We have a product, where Client connects to
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote:
As you can see the big time difference between the two executions - which
actually involve the same application level data. The largest chunk of
time is spent waiting for handshake from *Proxy Server*. The response time
of
On 19/12/14 15:17, Brian Reichert wrote:
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote:
As you can see the big time difference between the two executions - which
actually involve the same application level data. The largest chunk of
time is spent waiting for handshake
@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
So the differnce here is that jave picks a DHE ciphersuite while
otherwise
you
didn't. DHE gives you forward secrecy but is slower.
And if DH parameters have not been set, OpenSSL will have to generate
them
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf
Of Dr. Stephen Henson
Sent: Friday, December 19, 2014 11:37
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
On Fri, Dec 19, 2014, Dave Thompson wrote:
From: openssl-users
Hi,
I think my last email was somehow lost in transition between the mail
servers so I am starting afresh if somebody can help. If you have
already taken pains to read through this mail, kindly skip to the bottom
of the mail. Thanks for your patience.
First let me state upfront that I am
*Client* and *Agent* are implemented in C, while *Proxy Server* uses Java
code (This shouldn't really matter). But might be helpful for you to know.
The issue is, connecting *Client* to *Agent* is very fast (that is
relatively).
While connecting *Client* to *Proxy Server* is very slow - that
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote:
***
This is for *Client - Agent*
***
[...]
Version 3.1
[...]
cipherSuite TLS_RSA_WITH_AES_256_CBC_SHA
[...]
Why do you say it shouldn't matter? The new Java proxy server is most likely
the cause. Do some packet captures, between ClientAgent and ClinetProxy.
L ook at the timing, and see if the client ends up waiting for packets from
the proxy.
Sorry may be I wasn't able to convey it. The java
So the differnce here is that jave picks a DHE ciphersuite while
otherwise you didn't. DHE gives you forward secrecy but is
slower.
Being relatively new to OpenSSL and security programming in general,
obviously I need to read into these, but could it cause the delay in
sending ServerHello by
So the differnce here is that jave picks a DHE ciphersuite while
otherwise you didn't. DHE gives you forward secrecy but is
slower.
Being relatively new to OpenSSL and security programming in general,
obviously I need to read into these, but could it cause the delay in
sending ServerHello by
I am trying to summarize the problem again, since the previous
mail seems confusing to some of you. It might help you quickly understand
the problem I am facing:
We have a product, where Client connects to Server (Proxy Server in my
earlier mail). Client is implemented in C and uses OpenSSL,
I would like to understand why startHandshake() is taking so long.
Somebody else pointed out the differences in ciphers. You should take the time
to understand that message.
___
openssl-users mailing list
openssl-users@openssl.org
Date: Thu, 18 Dec 2014 22:36:08 +0100
From: k...@roeckx.be
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote
Date: Thu, 18 Dec 2014 22:36:08 +0100
From: k...@roeckx.be
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
On Fri, Dec 19, 2014 at 02:30:07AM +0530, Prabhat Puroshottam wrote
From: openssl-users [mailto:openssl-users-boun...@openssl.org] On Behalf
Of Kurt Roeckx
Sent: Thursday, December 18, 2014 16:36
To: openssl-users@openssl.org
Subject: Re: [openssl-users] OpenSSL performance issue
So the differnce here is that jave picks a DHE ciphersuite while otherwise
From: owner-openssl-us...@openssl.org On Behalf Of Prabhat Puroshottam
Sent: Tuesday, December 02, 2014 07:04
We have a product which uses OpenSSL to connect and transfer
application level data. There are two ways to connect, and get the
application level data from *Agent* to *Client*
1.
Hi,
First let me state upfront that I am relatively very new to OpenSSL.
Also please forgive me if this is not the correct mailing list for this issue.
We have a product which uses OpenSSL to connect and transfer
application level data. There are two ways to connect, and get the application
Hello again,It doesn’t sound like you did profile, but rather a stop-watch at
start and stop. That’s more coarse-grained than I think you need to do. For
example,you need to measure time to do the key exchange, time to do the
encryption, time to put the traffic over the network. For example,
Aside: this message was pretty garbled, and in richtext which my Outlook won't
fix sensibly.
I've tried to manually reformat what I can, but it would be easier if you
posted plaintext.
Really sorry for that, I saw it only once message was already posted.
Thanks for taking the time anyway.
Do
(sorry for duplicating the thread, I did'nt receive any answer in my mailbox as
I expected, I only saw them through the mail archive...?)
Are you sure that the key exchange is not a factor? Have you measured SSL
setup times compared to post-setup transfer times?4K RSA is computationally
RSA key size only affects handshake, and should be costly client side only if
using client-auth; are you?No; as client and server code is under my
responsability, I chosed to also asked for client-auth. Still, I don't see how
this could be the reason for my slowdown given the overall data
Ø (sorry for duplicating the thread, I did'nt receive any answer in my mailbox
as I expected, I only saw them through the mail archive...?)
It’s common (and many would say, the correct behavior) for mailing list replies
to go to the mailing list.
Ø I've started with a 1K key and later on
Aside: this message was pretty garbled, and in richtext which my Outlook won't
fix sensibly.
I've tried to manually reformat what I can, but it would be easier if you
posted plaintext.
From: owner-openssl-us...@openssl.org On Behalf Of laurent.boll...@laposte.net
Sent: Tuesday, October 08,
Hello,
I'm using openSSL on a low-end embedded processor: an Intel Atom running at
1.1Ghz.Using SSL divides down my transfer speed by two so I try to figure out
how I can improve performance.
For information I'm using 1.0.1e release, recompiled for Win32 (my embedded
system uses an XP embedded)
Are you sure that the key exchange is not a factor? Have you measured SSL
setup times compared to post-setup transfer times?
4K RSA is computationally expensive. Are you sure that the rest of your system
is secure enough to justify that instead of 2K RSA?
/r$
--
Principal
: Monday, October 07, 2013 02:05
To: mailto:openssl-users@openssl.org openssl-users@openssl.org
Subject: *** Spam *** openSSL performance
Hello,
I'm using openSSL on a low-end embedded processor: an Intel Atom running at
1.1Ghz.
Using SSL divides down my transfer speed by two so I try
Hey guys,
So I've been running into an issue when using OpenSSL 1.0.1c with the new
iOS 6 SDK.
I compiled the app using openssl-xcode project on GitHub which is part of
the sqlcipher project. I have been using the same OpenSSL functions for the
lifetime of my app (mainly SHA-256 hashing and RSA
try typing
openssl s_time ?
raj H wrote:
*[safeTgram (optim1) receive status: NOT encrypted, NOT signed.]*
Thanks Jimmy! This command looks to help me for the performance! Only
thing is I have to get it working. I keep on getting errors.
Anyways, thanks! I will go through and get it
Hi raj,
Try openssl speed
Best regards,
On Fri, Apr 4, 2008 at 5:48 AM, raj H [EMAIL PROTECTED] wrote:
Thanks Jimmy! This command looks to help me for the performance! Only
thing is I have to get it working. I keep on getting errors.
Anyways, thanks! I will go through and get it running.
Hello,
[EMAIL PROTECTED] wrote on 04/03/2008 04:18:42 AM:
Anybody any comments?
On Tue, Apr 1, 2008 at 11:56 PM, raj H [EMAIL PROTECTED] wrote:
Hi Experts,
OpenSSL 9.8b. We are facing some performance issues with it. I
heard that
doing session reuse or using some other
Thanks Marek for your comments!
When you say, session reuse improves the handshake performance, what factor?
If normal handshake takes 1 second, how long it will take to negotiate
session re-use?
What about the other issues such as memory leaks and security concerns with
session re-use?
Does
raj H wrote:
Thanks Marek for your comments!
[snip]
I am sorry these questions are really vague and not of challenge for the
technical personals. But I believe these are the questions any solution
developer or openssl user would have. Isn't the OpenSSL publishes any
numbers?
Have you
Thanks Jimmy! This command looks to help me for the performance! Only thing
is I have to get it working. I keep on getting errors.
Anyways, thanks! I will go through and get it running.
Any inputs on session reuse?
On Thu, Apr 3, 2008 at 12:39 PM, jimmy bahuleyan [EMAIL PROTECTED]
wrote:
raj H
Hi Experts,
OpenSSL 9.8b. We are facing some performance issues with it. I
heard that doing session reuse or using some other ciphers can help improve
the performance significantly.
I would like to know -
1. Is using the session reuse with ssl handshake is advisable? I read
somewhere
Anybody any comments?
On Tue, Apr 1, 2008 at 11:56 PM, raj H [EMAIL PROTECTED] wrote:
Hi Experts,
OpenSSL 9.8b. We are facing some performance issues with it. I
heard that doing session reuse or using some other ciphers can help improve
the performance significantly.
I would like
On Tue, Apr 1, 2008 at 11:56 PM, raj H [EMAIL PROTECTED] wrote:
Anybody any comments?
It's really hard to help you because your question is so vague. What
platform are you using? What performance are you seeing? What performance
did you expect? Is the problem with session setup rate or
On Monday 09 July 2001 13:52, Steven A. Bade wrote:
OK Stupid question Where can one find SWAMP???
There's a downloadable tarball at;
http://www.geoffthorpe.net/crypto/
However, expect a heavily revamped version soon ...
Cheers,
Geoff
Ah, big difference. It is running much, much faster, and now runs pretty
much even with the apache/mod_ssl server. Thanks Geoff.
Chris
On Monday 09 July 2001 11:17 am, you wrote:
On Mon, 9 Jul 2001, C. Gould wrote:
I've created some server code based on openssl 0.9.6 that seems to be
Hi,
Has anyone done any performance measuring of OpenSSL and published
it on the WWW ? I'm not particularly fussed about hardware (that can
be factored in). I'm interested in measurements of kB/sec encryption
and connections/sec setup/accept for 3DES+MD5.
Darren
44 matches
Mail list logo