[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Remove little-used algorithms from IKEv2

To: Paul Koning <pkoning@equallogic.com>
Subject: Re: Remove little-used algorithms from IKEv2
From: Dan McDonald <danmcd@east.sun.com>
Date: Fri, 15 Mar 2002 14:08:31 -0500 (EST)
CC: ipsec@lists.tislabs.com
In-Reply-To: <15506.522.496821.516359@pkoning.dev.equallogic.com> from Paul Koningat "Mar 15, 2002 09:15:38 am"
Organization: Sun Microsystems, Inc. - Solaris Internet Engineering
Sender: owner-ipsec@lists.tislabs.com

> I found it to be about 15% faster than SHA-1, and that on a big endian
> machine.

OTOH, if your big-endian machine can dance the little-endian dance better,
you get noticeable speedup.  The UltraSPARC-tuned MD5 is 30% faster than the
non-UltraSPARC-tuned MD5.  Using your 15% improvement as a base...

		M is MD5
		S is SHA-1
		M' is tuned MD5

	M = 0.85S

	M' = 0.70M

	M' / 0.70 = 0.85S

	M' = 0.70 * 0.85S

	M' = 0.59S

If you want to see what I mean precisely, utter this on a sun4m (e.g. SPARC
20) machine running Solaris 7 or later:

	dis -F MD5Transform /kernel/misc/md5

and utter this on a sun4u (e.g. any UltraSPARC box)

	dis -F MD5Transform /platform/sun4u/kernel/misc/md5

and note the instruction count savings.

> That number makes sense given the structure of the two
> algorithms.  So, somewhat better, yes.  "Far better", no.

See my math above for SW and dancing the little-endian dance.

> In hardware implementations, the two tend to be pretty close, and
> usually faster than the encryption transform so it doesn't matter
> which you chose as far as performance goes.

Now _this_ I'll buy.

Dan

References:
- Re: Remove little-used algorithms from IKEv2
  - From: Paul Koning <pkoning@equallogic.com>

Prev by Date: Re: Remove SHOULD for elliptic curve groups in IKEv2
Next by Date: Re: 10 years and no ubiquitous security
Prev by thread: Re: Remove little-used algorithms from IKEv2
Next by thread: RE: Remove little-used algorithms from IKEv2
Index(es):
- Date
- Thread