G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing Electronic Commerce: Reducing SSL Overhead," in IEEE Network, pp. 8--16, July 2000.  Home/Search   Document Details and Download   Summary   Related Articles   Check

....considering the increased risk of being lost or stolen. Due to the above factors, wireless handset designers must face the following challenges: Security processing gap: It is well known that security protocols significantly increase computational requirements at the network clients and servers [6, 26]. These security processing requirements stretch the limited resources of wireless clients, significantly impairing user experience due to poor connection latencies and data rates, and shorter battery life. For example, a PalmIIIx handset requires 3.4 minutes to perform 512 bit RSA key generation, ....

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing electronic commerce: Reducing SSL overhead," in IEEE Network, pp. 8--16, July 2000.

....(e.g. smart phones, PDAs) are much more resource Work done when the author was with NEC USA Inc. processing capability, battery) constrained than their wired counterparts. On the other hand, security protocols significantly increase computation requirements at the network clients and servers [6, 7], placing them beyond the capabilities of wireless handsets. For example, sample performance measurements [8] of the pilotSSLeay security libraries running on a Palm IIIx PDA [9] indicate that (i) 512 bit RSA key generation, digital signature generation, and signature verification require 3.4 ....

....on extensive algorithmic exploration and tuning of the underlying cryptographic algorithms as the mechanism to achieve these objectives. The proposed techniques are complementary to, and can be applied in conjunction with, improvements in security mechanisms, protocols, and hardware architectures [7, 10, 11, 12, 13, 14, 15, 16]. For most secure wireless transactions, the processing at the client is dominated by the public key algorithm [7, 17] Hence, we focus on the encryption decryption operation used in most popular public key algorithms [3, 18] namely modular exponentiation . We present an extensive suite of ....

[Article contains additional citation context not shown here]

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing Electronic Commerce: Reducing SSL Overhead," in IEEE Network, pp. 8--16, July 2000.

....Wireless clients (e.g. smart phones, PDAs) are, and will always be, much more resource (processing capability, battery) constrained than their wired counterparts. On the other hand, security protocols significantly increase computation requirements at the network clients and servers [5] [6], placing them beyond the capabilities of wireless handsets. For example, sample performance measurements of the pilotSSLeay security libraries running on a Palm IIIx [7] indicate that [8] i) 512 bit RSA key generation, digital signature generation, and signature verification require 3.4 minutes, ....

....these issues. However, most of the efforts towards improving the efficiency of security processing have been targeted at addressing performance issues in e commerce servers, network routers, firewalls, and VPN gateways. Performance analysis of SSL based security in web servers is presented in [6], 14] 15] The use of session caching to alleviate SSL related processing overheads is explored in [6] 16] The fact that public key algorithms often dominate security processing requirements has driven the recent development of alternative public key algorithms that offer reduced ....

[Article contains additional citation context not shown here]

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing Electronic Commerce: Reducing SSL Overhead," in IEEE Network, pp. 8--16, July 2000.

....networks. Wireless clients (e.g. smart phones, PDAs) are, and will always be, much more resource (processing capability, battery) constrained than their wired counterparts. On the other hand, security protocols significantly increase computational requirements at the network clients and servers [6, 7, 8] to levels that exceed the capabilities of wireless handsets. For example, a PalmIIIx handset requires 3.4 minutes to perform 512 bit RSA key generation, 7 seconds to perform digital signature generation, and can perform (single) DES encryption at only 13kpbs, assuming that the CPU is completely ....

....was more found to be than adequate for the purpose of algorithm exploration. 5. RELATED WORK Most of the efforts towards improving the efficiency of security processing have been targeted at addressing performance issues in e commerce servers, network routers, firewalls, and VPN gateways [7, 25, 26, 27]. The fact that public key algorithms often dominate security processing requirements has driven the recent development of alternative public key algorithms that offer reduced computational complexity [28, 29] Various companies offer commercial security processor ICs to improve the performance ....

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing Electronic Commerce: Reducing SSL Overhead," in IEEE Network, pp. 8--16, July 2000.

....handles the subsequent packets by changing the IP and TCP packet headers (IP addresses and checksum recalculations) so that both the client and the target server can recognize these packets as destined to them. The TCP splicing mechanism can be also implemented by hardware based switches (e.g. [5]) 18 In one way architectures the server nodes return outbound packets directly to clients, without passing through the Web switch, as illustrated in Figure 10. w . w. w : s. o .r .g . Local DNSserver R eq ....

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha. Securing electronic commerce: Reducing the SSL overhead. IEEE Network, 14(4):8-16, July/Aug. 2000.

....established. The default SSL session timeout is 300 seconds with Windows 2000. However, many large Web sites, which use a pool of replicated Web servers, cannot re use cached sessions, as a resume request may not be passed to the same Web server process as before, which has the keys cached [APPS00]. This can result in a new SSL handshake for every request to the site. The e cheque scheme can be offline due to the use of smart cards to prevent cheating. For every payment it has a similar communications cost to Ecash, and several hundred bytes less than a first payment with SSL WTLS. ....

....in response to a user purchase. We did not consider this as part of payment. The same payment message sizes were used with WTLS. It was assumed that ongoing payments take place in the same SSL session, or in a re established session, despite some server clusters being unable to resume SSL sessions [APPS00]. Multiple SSL handshake messages were assumed to be placed into a single SSL record message, before being transmitted across the network. It must be noted that SSL record structures and field sizes have been optimised in the protocol specification, unlike our micropayment estimates. WTLS was not ....

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha. Securing electronic commerce: reducing the SSL overhead. IEEE Network, 14(4): 8-16, July 2000.

No context found.

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing Electronic Commerce: Reducing SSL Overhead," in IEEE Network, pp. 8--16, July 2000.

No context found.

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing Electronic Commerce: Reducing the SSL Overhead," IEEE Network, pp. 8-16, July 2000.

No context found.

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing electronic commerce: Reducing the SSL overhead," IEEE Network, pp. 8--16, July 2000.

No context found.

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, "Securing Electronic Commerce: Reducing SSL Overhead," in IEEE Network, pp. 8--16, July 2000.

No context found.

G. Apostolopoulos, V. Peris, P. Pradhan, and D. Saha, Securing Electronic Commerce: Reducing the SSL Overhead, IEEE Network, (14)4: 8-16, July/Aug 2000.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC