SSL acceleration

From Wikipedia, the free encyclopedia

SSL acceleration is a method of offloading the processor-intensive public key encryption algorithms involved in SSL transactions to a hardware accelerator. Typically, this is a separate card that plugs into a PCI slot in a computer that contains one or more co-processors able to handle much of the SSL processing.

The most computationally expensive part of an SSL session is the stage where the SSL server (usually an SSL webserver) software is required to decrypt the SSL session key (an asymmetric key) that has been sent to it from the SSL client (usually a web browser), this is known as the SSL handshake. Typically a hardware SSL accelerator will offload processing of the SSL handshake while leaving the server software to process the less intense symmetric cryptography of the actual SSL data exchange, but some accelerators act as a proxy handling all SSL operations and leaving the server seeing only plaintext connections[1].

[edit] Vendors

• Array Networks
• CAI Networks
• Cisco Systems
• Citrix Systems
• Coyote point systems
• Crescendo Networks
• F5 Networks
• Foundry Networks
• Freescale Semiconductor
• Futurex
• Hifn
• IBM
• jetNEXUS
• Juniper Networks
• KEMP Technologies
• nCipher
• Nortel Networks
• Radware
• SafeNet
• Strangeloop Networks
• Sun Microsystems
• Proto Balance

[edit] See also

• Co-Processor
• Public-key cryptography
• SSL

[edit] External links

• Information Site Dedicated to SSL Accleration
• Overview of SSL Acceleration Implementations
• SSL Acceleration and Offloading: What Are the Security Implications?