Open Access Open Access  Restricted Access Subscription Access
Open Access Open Access Open Access  Restricted Access Restricted Access Subscription Access

Improving SSL Server Performance While Preventing DOS Attack Using Reverse SSL with Client Puzzle


Affiliations
1 Maulana Azad National Institute of Technology, Bhopal (M.P.), India
2 Maulana Azad National Institute of Technology, Bhopal (M.P.), India
     

   Subscribe/Renew Journal


Secure communication is an intrinsic requirement of today’s world of on-line transactions. SSL and its variant TLS are most widely acceptable protocol to create secure connection between the client/server communicating applications. Although SSL provides confidentiality, integrity of data and authentication of the communicating parties but imposes overhead on web server to perform costly cryptographic operations. Therefore it degrades the secure server performance compare to an insecure web server. Moreover an attacker can take dvantage of this overhead and can run automated scripts to generate bulk of requests, each request requires server to perform some costly computation therefore cause denial of service attack on server. So DOS makes highly desirable to improve performance of the SSL handshakes. This paper focuses on Reverse SSL approach with client puzzle to improve server performance.Reverse SSL is an extension of SSL that alleviate the performance cost at server by exchanging role of client and server. Reverse SSL combined the client puzzle to prevent DOS attack. The purpose of paper is to show how the Reverse SSL with client puzzle can be implemented using openssl library and how it improves server performance while preventing the DOS attack.


Keywords

Security, SSL/TLS, Server Performance, DOS, Reverse SSL, Client Puzzle.
User
Subscription Login to verify subscription
Notifications
Font Size

Abstract Views: 222

PDF Views: 4




  • Improving SSL Server Performance While Preventing DOS Attack Using Reverse SSL with Client Puzzle

Abstract Views: 222  |  PDF Views: 4

Authors

R. K. Pateriya
Maulana Azad National Institute of Technology, Bhopal (M.P.), India
S. C. Shrivastava
Maulana Azad National Institute of Technology, Bhopal (M.P.), India
Neetu Agrawal
Maulana Azad National Institute of Technology, Bhopal (M.P.), India

Abstract


Secure communication is an intrinsic requirement of today’s world of on-line transactions. SSL and its variant TLS are most widely acceptable protocol to create secure connection between the client/server communicating applications. Although SSL provides confidentiality, integrity of data and authentication of the communicating parties but imposes overhead on web server to perform costly cryptographic operations. Therefore it degrades the secure server performance compare to an insecure web server. Moreover an attacker can take dvantage of this overhead and can run automated scripts to generate bulk of requests, each request requires server to perform some costly computation therefore cause denial of service attack on server. So DOS makes highly desirable to improve performance of the SSL handshakes. This paper focuses on Reverse SSL approach with client puzzle to improve server performance.Reverse SSL is an extension of SSL that alleviate the performance cost at server by exchanging role of client and server. Reverse SSL combined the client puzzle to prevent DOS attack. The purpose of paper is to show how the Reverse SSL with client puzzle can be implemented using openssl library and how it improves server performance while preventing the DOS attack.


Keywords


Security, SSL/TLS, Server Performance, DOS, Reverse SSL, Client Puzzle.