Hosting Provided By

Re: [Users] Pub/private Key vs Preshared secret Speed

From: Andreas Steffen <andreas.steffen(at)strongsec.net>
Date: Sat Oct 04 2003 - 07:41:47 EDT

The available bandwidth doesn't have anything to do with whether you use RSA or PSK based authentication, since the authentication process is done only once every couple of hours.

Much more important is the choice of the encryption algorithm for securing the ESP payload packets. Here encryption/decryption with AES is about twice as fast as 3DES if the processing power available on the gateway is the bottleneck. On the other hand if available network bandwidth (e.g. ADSL/CABLE) is the limiting factor then 3DES is preferable over AES since the packet overhead is smaller due to 64 bit block size of DES vs the 128 bit size of AES.

Regards

Andreas

Francesco wrote:
> Hello,

Andreas Steffen                   e-mail: andreas.steffen@strongsec.com
strongSec GmbH                    home:   
http://www.strongsec.com
Alter Zürichweg 20                phone:  +41 1 730 80 64

CH-8952 Schlieren (Switzerland) fax: +41 1 730 80 65

==========================================[strong internet security]===

_______________________________________________

FreeS/WAN Users mailing list
users@lists.freeswan.org
https://mj2.freeswan.org/cgi-bin/mj_wwwusr Received on Sat Oct 4 07:50:57 2003

This message: [ Message body ]
Next message: Jim Carter: "Re: [Users] Main Mode message received ... but no connection has"
Previous message: Andreas Steffen: "Re: [Users] Mixed roadwarrior with RSA or 3DES must connect to my"
In reply to Francesco: "[Users] Pub/private Key vs Preshared secret Speed"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 13:02:04 EDT