|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: hardware crypto and SSL?
From: Michael Sierchio (kudzu
tenebras.com)
Date: Wed Oct 22 2003 - 09:04:53 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Eric Anderson wrote:
> The new VIA Eden-N processors have built in high-speed AES encryption
Forgive me, but that's really not important -- for SSL the bulk
encryption algorithm is usually RC4 (oops, ARCFOUR ;-), which
is efficient in software . It's the handshake and public key
operations that really benefit from the use of HW crypto.
In which case the currently-supported cards (either by the
OpenBSD /dev/crypto scheme ported by Sam Leffler, or those
directly supported in the OpenSSL engine) all work fine.
IOW the current Soekris boards help quite a bit, and they
also help because they have a HW RBG which actually stirs
the entropy pool for /dev/random -- very helpful for not
running out of random bits on machines that have no
keyboard or mouse.
_______________________________________________
freebsd-securityfreebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribefreebsd.org"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]