Abstract
This paper discusses techniques for improving Web performance and how they are affected by security. While security is an essential component for many Web applications, it can negatively affect performance. Encryption results in significant overhead. A scalable Web site deploying SSL has special load balancing requirements in order to allow efficient use of the protocol. We discuss how fragment-based creation of Web content can allow partial caching of pages containing encrypted content. We also discuss performance issues related to security checks on mobile code.
The original version of this chapter was revised: The copyright line was incorrect. This has been corrected. The Erratum to this chapter is available at DOI: 10.1007/978-0-387-35696-9_19
Chapter PDF
Similar content being viewed by others
Keywords
References
G. Apostolopoulos, V. Peris, and D. Saha. Transport Layer Security: How much does it really cost? In Proceedings of IEEE INFOCOM’99, March 1999.
T. Brisco. DNS Support for Load Balancing. Technical Report RFC 1974, Rutgers University, April 1995.
J. Challenger, A. Iyengar, K. Witting, C. Ferstat, and P. Reed. A Publishing System for Efficiently Creating Dynamic Web Content. In Proceedings of IEEE INFOCOM 2000, March 2000.
K. Connelly, and A. Chien. Breaking the Barriers: High Performance Security for High Performance Computing. In New Security Paradigms Workshop, 2002.
D. Dias, W. Kish, R. Mukherjee, and R. Tewari. A Scalable and Highly Available Web Server. In Proceedings of the 1996 IEEE Computer Conference (COMPCON), February 1996.
T. Dierksand, and C. Allen. The TLS Protocol (RFC 2246 ). http://www.ietforg/rfc/.
S. Garfinkel, and G. Spafford. Web Security, Privacy, and Commerce. O’Reilly & Associates, second edition, 2002.
G. Hunt, G. Goldszmidt, R. King, and R. Mukherjee. Network Dispatcher: A Connection Router for Scalable Internet Services. In Proceedings of the 7th International World Wide Web Conference, April 1998.
IBM Corporation. IBM 4197 Cryptographic Accelerator. http://www.ibm.com/, 2000.
A. Iyengar, and J. Challenger. Improving Web Server Performance by Caching Dynamic Data. In Proceedings of the USENIX Symposium on Internet Technologies and Systems, December 1997.
C: Kaufman, R. Perlman, and M. Speciner. Network Security, Private Communication in a Public World. Prentice-Hall, 2002.
T.T. Kwan, R.E. McGrath, and D.A. Reed. NCSA’s World Wide Web Server: Design and Performance. IEEE Computer, 28 (11): 68–74, November 1995.
J. Mogul. The Case for Persistent-Connection HTTP. In Proceedings of SIGCOMM ‘85, pages 299–313, 1995.
R. Mraz, K. Witting, and P. Dantzig. Using SSL Session ID Reuse for Characterization of Scalable Secure Web Servers. Technical Report RC 22323(Revised May 5, 2002 ), IBM Research Division, Yorktown Heights, NY, September 2002.
R. Mraz. Secure Blue: An Architecture for a High Volume SSL Interent Server. In 17th Annual Computer Security Applications Conference, December 2001, New Orleans, Louisiana, 2001.
G. Necula, and P. Lee. Safe Kernel Extensions Without Run-Time Checking. In Proceedings of OSDI ‘86, October 1996.
E. Resorla. HTTP Over TLS (RFC 2818 ). http://www.ietf.org/rfc/.
B. Schneier. Applied Cryptography. John Wiley & Sons, Inc., New York, NY, 1996.
A. Shaikh, R. Tewari, and M. Agrawal. On the Effectiveness of DNS-based Server Selection. In Proceedings of IEEE INFOCOM 2001, 2001.
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 IFIP International Federation for Information Processing
About this chapter
Cite this chapter
Iyengar, A., Mraz, R., Zurko, M.E. (2003). Performance Considerations in Web Security. In: Nardelli, E., Posadziejewski, S., Talamo, M. (eds) Certification and Security in E-Services. IFIP WCC TC11 2002. IFIP — The International Federation for Information Processing, vol 127. Springer, Boston, MA. https://doi.org/10.1007/978-0-387-35696-9_4
Download citation
DOI: https://doi.org/10.1007/978-0-387-35696-9_4
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4757-4737-9
Online ISBN: 978-0-387-35696-9
eBook Packages: Springer Book Archive