Re: SSL Cert signed by Intermediary CAs cause delays?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: Re: SSL Cert signed by Intermediary CAs cause delays?
From: "Chad Morland" <cmorland@xxxxxxxxx>
Date: Sat, 21 Jun 2008 13:41:58 -0400
In-reply-to: <addede3b0806081547t69c4de84nd196f22df6914ab9@xxxxxxxxxxxxxx>
Reply-to: users@xxxxxxxxxxxxxxxx

On Sun, Jun 8, 2008 at 6:47 PM, Ali, Saqib <docbook.xml@xxxxxxxxx> wrote:

Do SSL Cert signed by Intermediary CAs cause additional delays
compared to SSL certs signed by root CAs?

Whether the certificate is signed directly by a root CA or is a 'chained SSL certificate' has no impact on the request time of the SSL connection.

However, changing the encryption level of the certificate will impact the time it takes for you to process SSL transactions. If you went from a 40-bit certificate to 128-bit, for example, it will take almost 3x as long for the necessary calculations to take place.

If your application is making an "excessive amount of SSL calls" then you can look into some hardware based SSL cards that are specifically designed to increase the performance of SSL calculations.

http://www.ncipher.com/products/ssl_acceleration/22/nfast/

-CM

References:
- SSL Cert signed by Intermediary CAs cause delays?
  - From: Ali, Saqib

Prev by Date: Re: Httpd Performance
Next by Date: Re: ProxyPassReverse problem inside <Location> -- is there a fix?
Previous by thread: SSL Cert signed by Intermediary CAs cause delays?
Next by thread: Rewrite ?
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]