Providing secure communication in distributed systems often introduces a performance penalty due to the CPU-intensive operations used by security protocols such as the Secure Sockets Layer (SSL) protocol. This paper proposes a technique, called security sieve, which enhances the performance of SSL-based document transmission. Security sieve separates the sensitive components from the non-sensitive components, and transmits the separated components over a secure channel and a (faster) non-secure channel, respectively. At the receiving end, the separated components are re-assembled to reconstruct the original document. A significant performance improvement with security sieve is observed for a number of system and workload parameters.

Additional Metadata
Keywords performance engineering of SSL/TLS, performance optimization, security system performance, SSL/TLS performance
Persistent URL dx.doi.org/10.1080/17445760.2015.1071367
Journal International Journal of Parallel, Emergent and Distributed Systems
Citation
Lim, N. (Norman), Majumdar, S, & Srivastava, V. (Vineet). (2016). Security sieve: a technique for enhancing the performance of secure sockets layer-based distributed systems. International Journal of Parallel, Emergent and Distributed Systems, 31(5), 481–503. doi:10.1080/17445760.2015.1071367