PERFORMANCE EVALUATION OF THE TLS HANDSHAKE IN THE CONTEXT OF EMBEDDED DEVICES

Manuel Koschuch, Matthias Hudler, Michael Krüger

Abstract

With the strong advent of mobile and embedded devices communicating in a wireless way using the air interface, the need for secure connections, efficient en- and decryption and strong authentication becomes more and more pronounced. The Transport Layer Security (TLS) protocol provides a convenient and well researched way to establish a secure authenticated connection between 2 communicating parties. By utilizing Elliptic Curve Cryptography (ECC) instead of the more common RSA algorithms, asymmetric cryptography is feasible even for tiny integrated devices. However, when dealing with heavily resource constrained appliances, it does not suffice to speed up just the cryptography related computations, but to also keep the communication necessary to establish a secure connection to a minimum, in order not to drain the scarce energy resources of the small devices. In this work we give a thorough investigation of the communication overhead the TLS handshake requires when used in conjunction with elliptic curve cryptography, together with experimental results using our own library handcrafted to support ECC on embedded systems. The results give implementers a useful guide for weighing security versus performance and also justifies the need for new authentication methods, requiring less communication overhead.

References

  1. Blake-Wilson, S., Bolyard, N., Gupta, V., Hawk, C., and Moeller, B. (2006a). RFC 4492: Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS). Technical report, The Internet Society.
  2. Blake-Wilson, S., Nystrom, M., Hopwood, D., Mikkelsen, J., and Wright, T. (2006b). RFC 4366: Transport Layer Security (TLS) Extensions. Technical report, The Internet Society.
  3. Dierks, T. and Rescorla, E. (2006). RFC 4346: The Transport Layer Security (TLS) Protocol Version 1.1. Technical report, The Internet Society.
  4. Gupta, V., Gupta, S., Chang, S., and Stebila, D. (2002). Performance Analysis of Elliptic Curve Cryptography for SSL. In Workshop on Wireless Security - Proceedings of the 1st ACM workshop on Wireless security, pages 87-94. ACM.
  5. Hankerson, D., Menezes, A., and Vanstone, S. (2004). Guide to Elliptic Curve Cryptography. Springer Professional Computing. Springer-Verlag New York.
  6. Lederer, C., Mader, R., Koschuch, M., Großschädl, J., Szekely, A., and Tillich, S. (2009). Energy-Efficient Implementation of ECDH Key Exchange for Wireless Sensor Networks. In Workshop in Information Security Theory and Practices (WISTP'09), volume 5746 of Lecture Notes in Computer Science, pages 112- 127, Brussels, Belgium. Springer-Verlag New York. 01.-04. September 2009.
  7. Lenstra, A. K. and Verheul, E. R. (2001). Selecting Cryptographic Key Sizes. Journal of Cryptology: the journal of the International Association for Cryptologic Research, 14(4):255-293.
  8. Potlapallyy, N. R., Raviy, S., Raghunathany, A., and Lakshminarayanaz, G. (2002). Optimizing Public-Key Encryption for Wireless Clients. In Communications, 2002. ICC 2002. IEEE International Conference on, volume 2, pages 1050 - 1056.
  9. Ravi, S., Raghutan, A., and Potlapally, N. (2002). Securing Wireless Data: System Architecture Challenges. In ISSS 02.
Download


Paper Citation


in Harvard Style

Koschuch M., Hudler M. and Krüger M. (2010). PERFORMANCE EVALUATION OF THE TLS HANDSHAKE IN THE CONTEXT OF EMBEDDED DEVICES . In Proceedings of the International Conference on Data Communication Networking and Optical Communication Systems - Volume 1: DCNET, (ICETE 2010) ISBN 978-989-8425-25-6, pages 35-44. DOI: 10.5220/0002983200350044


in Bibtex Style

@conference{dcnet10,
author={Manuel Koschuch and Matthias Hudler and Michael Krüger},
title={PERFORMANCE EVALUATION OF THE TLS HANDSHAKE IN THE CONTEXT OF EMBEDDED DEVICES},
booktitle={Proceedings of the International Conference on Data Communication Networking and Optical Communication Systems - Volume 1: DCNET, (ICETE 2010)},
year={2010},
pages={35-44},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0002983200350044},
isbn={978-989-8425-25-6},
}


in EndNote Style

TY - CONF
JO - Proceedings of the International Conference on Data Communication Networking and Optical Communication Systems - Volume 1: DCNET, (ICETE 2010)
TI - PERFORMANCE EVALUATION OF THE TLS HANDSHAKE IN THE CONTEXT OF EMBEDDED DEVICES
SN - 978-989-8425-25-6
AU - Koschuch M.
AU - Hudler M.
AU - Krüger M.
PY - 2010
SP - 35
EP - 44
DO - 10.5220/0002983200350044