On 11 mai 2015, at 07:45, Viktor Dukhovni <openssl-users at dukhovni.org> wrote: > On Mon, May 11, 2015 at 07:24:10AM +0200, Patrick Proniewski wrote: > >> I've compiled OpenSSL 1.0.2a on Mac OS X 10.6.8, and used `openssl >> speed` to compare performances with stock OpenSSL (0.9.8). In many >> tests, 1.0.2a is a bit faster, or as fast as 0.9.8y, but on the 6 >> AES tests, the old one is almost twice as fast as the new one: > > Use "openssl speed -evp". Then if your hardware has AES-NI, it > will be faster in 1.0.2. Otherwise, the slowdown is expected. > The software-only AES in 1.0.x is constant-time, and avoids > timing side-channel attacks. The 0.9.8 version is not > constant time (faster, but less secure). Thank you for this explanation. The evp flag works great on my hardware: $ apps/openssl speed -evp aes-256-cbc ../.. aes-256-cbc 171795.47k 200081.86k 208523.35k 211620.52k 210927.62k $ apps/openssl speed aes-256-cbc ../.. aes-256 cbc 68905.90k 73930.92k 75199.15k 75868.16k 76136.45k regards, patpro
