Improving SSL Handshake Performance via Batching

Hovav Shacham and Dan Boneh.

In Proceedings of CT-RSA 2001, vol. 2020 of LNCS, pages 28–43. Springer-Verlag, Apr. 2001.


We present an algorithmic approach for speeding up SSL’s performance on a web server. Our approach improves the performance of SSL’s handshake protocol by up to a factor of 2.5 for 1024-bit RSA keys. It is designed for heavily-loaded web servers handling many concurrent SSL sessions. We improve the server’s performance by batching the SSL handshake protocol. That is, we show that b SSL handshakes can be done faster as a batch than doing the b handshakes separately one after the other. Experiments show that taking b=4 leads to optimal results, namely a speedup of a factor of 2.5. Our starting point is a technique due to Fiat for batching RSA decryptions. We improve the performance of batch RSA and describe an architecture for using it in an SSL web server. We give experimental results for all the proposed techniques.



@InProceedings{shacham-boneh:ssl-batching:rsa01, author = {Hovav Shacham and Dan Boneh}, title = {Improving {SSL} Handshake Performance via Batching}, booktitle = {Proceedings of CT-RSA 2001}, pages = {28-43}, editor = {David Naccache}, year = 2001, month = apr, volume = 2020, series = {LNCS}, publisher = {Springer-Verlag} }

Navigation: Hovav Shacham // Publications // [SB01]