[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: What price security?

To: Bart Preneel <Bart.Preneel@esat.kuleuven.ac.be>
Subject: Re: What price security?
From: Bill Sommerfeld <sommerfeld@apollo.hp.com>
Date: Fri, 20 Jun 1997 12:08:31 -0400
Cc: Phil Karn <karn@Qualcomm.com>, perry@piermont.com, uri@watson.ibm.com, trei@process.com, ipsec@tis.com
In-Reply-To: Bart.Preneel's message of Fri, 20 Jun 1997 11:20:21 +0200. <Pine.HPP.3.96.970620110854.20447r-100000@domein.esat.kuleuven.ac.be>
Sender: owner-ipsec@ex.tis.com

> FYI: 
> The 3DES code of my colleague Antoon Bosselaers runs 
> at 9.2 Mbit/s on a 133MHz Pentium.  

Bart,

To make this more relevant to ipsec, how, umm, "agile" is this 3DES?

I think there are three relevant measurements:

	- How much memory is required by the key schedules
	- How long does it take to set them up
	- How well does it perform on short blocks (64 bytes to ~4k bytes),
	if you have to change to a new key schedule after every block
	(assume you're rotating among 10 to 100 different keys).

Clearly one can (and perhaps should) cache precomputed key schedules
into your SA data structure(s), but whether to do it and how long to
retain it is clearly a memory vs time engineering tradeoff..
	
					- Bill

Follow-Ups:

Re: What price security?

From: Bart Preneel <Bart.Preneel@esat.kuleuven.ac.be>

References:

Re: What price security?

From: Bart Preneel <Bart.Preneel@esat.kuleuven.ac.be>

Prev by Date: Re: What price security?
Next by Date: Re: What price security?
Next by thread: Re: New draft -- IPSEC AH
Index(es):
- Main
- Thread