DocumentCode :
2957028
Title :
Enhancing security performance with parallel crypto operations in SSL bulk data transfer phase
Author :
Alaidaros, Hashem Mohammed ; Rasid, Mohd Fadlee A ; Othman, Mohamed ; Abdullah, Raja Syamsul Azmir Raja
Author_Institution :
Univ. Putra, Putra
fYear :
2007
fDate :
14-17 May 2007
Firstpage :
129
Lastpage :
133
Abstract :
Information security, including integrity and privacy, is an important concern among today´s computer users due to increased connectivity. Despite a number of secure algorithms that have been proposed, the trade-offs made between security and performance demands further research toward improvement. In bulk data transfer, especially in large messages, the secured processing time takes much longer than non-secured processes. This is due to crypto operations, which include symmetric encryption operations and hashing functions. In the current bulk data transfer phase in secure socket layer (SSL), the server or the client firstly calculates the message authentication code (MAC) of the data using keyed-hash message authentication code (HMAC) operation, and then performs the symmetric encryption on the data together with the MAC. This paper proposes a new algorithm which provides a significant performance gain in bulk data transfer without compromising the security. The proposed algorithm performs the encryption of the data and the calculation of the MAC in parallel. The server calculates the MAC of the data at the same time as the encryption process of the data. Once the calculation of the MAC is completed, only then the MAC will be encrypted. The algorithm was simulated in two processors with one processor performing the MAC calculation and the other on encrypting the data, simultaneously. The communication between the two processors was done via message passing interface (MPI). Based on the performance simulations, the new parallel algorithm gained speedup of 1.74 with 85% efficiency over the current (sequential) algorithm.
Keywords :
client-server systems; cryptography; data communication; data privacy; message authentication; parallel algorithms; telecommunication security; SSL bulk data transfer phase; client-server system; information privacy; information security; keyed-hash message authentication code; message passing interface; parallel algorithm; parallel crypto operation; secure socket layer; symmetric encryption; Communication system security; Computer networks; Computer security; Concurrent computing; Cryptography; Data engineering; Data security; Information security; Message authentication; Parallel processing; Information security; bulk data transfer; encryption; hashing; parallel crypto operations;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Telecommunications and Malaysia International Conference on Communications, 2007. ICT-MICC 2007. IEEE International Conference on
Conference_Location :
Penang
Print_ISBN :
978-1-4244-1094-1
Electronic_ISBN :
978-1-4244-1094-1
Type :
conf
DOI :
10.1109/ICTMICC.2007.4448620
Filename :
4448620
Link To Document :
بازگشت