[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

(FWD) TLS False Start

To: or-dev@xxxxxxxxxxxxx
Subject: (FWD) TLS False Start
From: Roger Dingledine <arma@xxxxxxx>
Date: Wed, 2 Jun 2010 12:42:21 -0400
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-dev-outgoing@xxxxxxxx
Delivered-to: or-dev@xxxxxxxx
Delivery-date: Wed, 02 Jun 2010 12:42:29 -0400
Reply-to: or-dev@xxxxxxxxxxxxx
Sender: owner-or-dev@xxxxxxxxxxxxx
User-agent: Mutt/1.5.18 (2008-05-17)

Forwarding for Adam.

Any nice volunteer want to play with combining this with Tor?

--Roger

----- Forwarded message from Adam Langley <agl@xxxxxxxxxxxxxxxxxx> -----

From: Adam Langley <agl@xxxxxxxxxxxxxxxxxx>
To: Roger Dingledine <arma@xxxxxxx>, Nick Mathewson <nickm@xxxxxxxxxxxxx>
Subject: TLS False Start
Delivery-Date: Wed, 02 Jun 2010 10:06:51 -0400

We've just published a draft[1] about a trick that we've been using in
Chrome for a while now which reduces the latency for a full TLS
handshake from two round trips to one without any server-side
modifications. I thought it might be useful for you.

The OpenSSL patch can be found at [2].

I have another trick to reduce the round trips to zero for both full
and abbreviated handshakes, but that one is still cooking. (And
precludes the possibility of EDH, which might be important to you.)

Cheers

AGL

[1] http://www.ietf.org/internet-drafts/draft-bmoeller-tls-falsestart-00.txt
[2] http://bazaar.launchpad.net/~nagendra/openssl-patches/trunk/files

-- 
Adam Langley agl@xxxxxxxxxxxxxxxxxx http://www.imperialviolet.org

----- End forwarded message -----

Follow-Ups:
- Re: (FWD) TLS False Start
  - From: Adam Langley

Prev by Author: Re: Proposal: GETINFO controller option for connection information
Next by Author: Re: [or-cvs] [PATCH] Create a sample bridge configuration torrc.
Previous by thread: TorBEL data formats and active testing: feedback requested
Next by thread: Re: (FWD) TLS False Start
Index(es):
- Author
- Thread