Client Side Caching for TLS

The authors propose two new mechanisms for caching handshake information on TLS clients. The "Fast-track" mechanism provides a client side cache of a server's public parameters and negotiated parameters in the course of an initial, enabling handshake. These parameters need not be resent on subsequent handshakes. Fast-track reduces both network traffic and the number of round trips, and requires no additional server state. These savings are most useful in high latency environments such as wireless networks. The "Client side session cache" mechanism allows the server to store an encrypted version of the session information on a client, allowing a server to maintain a much larger number of active sessions in a given memory footprint.

Provided by: Stanford University Topic: Security Date Added: Jan 2011 Format: PDF

Find By Topic