[Resource Topic] 2006/212: Reverse SSL: Improved Server Performance and DoS Resistance for SSL Handshakes

Welcome to the resource topic for 2006/212

Title:
Reverse SSL: Improved Server Performance and DoS Resistance for SSL Handshakes

Authors: Kemal BICAKCI, Bruno Crispo, Andrew S. Tanenbaum

Abstract:

Common occurrence of server overload and the threat of denial-of-service (DoS) attacks makes highly desirable to improve the performance and DoS resistance of SSL handshakes. In this paper, we tackle these two related problems by proposing reverse SSL, an extension in which the server is relieved from the heavy public key decryption operation and authenticated by means of a digital signature instead. On the server side, reverse SSL employs online/offline signatures to minimize the online computation required to generate the signature and on the client side, RSA key generation computation can be used as a client puzzle when clients do not have a public key certificate. The preliminary performance results show that reverse SSL is a promising technique for improving the performance and DoS resistance of SSL servers.

ePrint: https://eprint.iacr.org/2006/212

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .