Keon Jang, Sangjin Han, Seungyeop Han, Sue Moon, and KyoungSoo Park
SSL/TLS is a standard protocol for secure Internet communication. Despite its great success, today’s SSL deployment is largely limited to security-critical domains. The low adoption rate of SSL is mainly due to high computation overhead on the server side. In this paper, we propose Graphics Processing Units (GPUs) as a new source of computing power to reduce the server-side overhead. We have designed and implemented an SSL proxy that opportunistically offloads cryptographic operations to GPUs. The evaluation results show that our GPU implementation of cryptographic operations, RSA, AES, and HMAC-SHA1, achieves high throughput while keeping the latency low. The SSL proxy significantly boosts the throughput of SSL transactions, handling 25.8K SSL transactions per second, and has comparable response time even when overloaded.
|Published in||ACM SIGCOMM Computer Communication Review|
Copyright is held by the author/owner(s). SIGCOMM’10, August 30–September 3, 2010, New Delhi, India. ACM 978-1-4503-0201-2/10/08.