On Fri, 11 Feb 2011 10:53:48 -0600 DRC <dcomman...@users.sourceforge.net> wrote:
> > All of the Internet chatter I'm seeing about it points to a fundamental > performance limitation in GnuTLS. I don't think that optimizing the way > we use it is going to help much. I guess what I'm interested in hearing > is why GnuTLS is fundamentally better than SSh or libssh or even > OpenSSL. I have a lot of experience with OpenSSL, and I know that it > creates some overhead, but it's more on the order of 10% slower, not > 2.5X slower than the unencrypted case. > License issues. Primarily that it clashes badly with the GPL. There are also some FIPS issues, but I think GnuTLS is no better in that regard. Red Hat chose NSS because of that issue. On pure technical grounds, I think OpenSSL has a nice lead over the other ones. Rgds -- Pierre Ossman OpenSource-based Thin Client Technology System Developer Telephone: +46-13-21 46 00 Cendio AB Web: http://www.cendio.com
signature.asc
Description: PGP signature
------------------------------------------------------------------------------ The ultimate all-in-one performance toolkit: Intel(R) Parallel Studio XE: Pinpoint memory and threading errors before they happen. Find and fix more than 250 security defects in the development cycle. Locate bottlenecks in serial and parallel code that limit performance. http://p.sf.net/sfu/intel-dev2devfeb
_______________________________________________ Tigervnc-devel mailing list Tigervnc-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/tigervnc-devel
