shibboleth-dev - RE: Tomcat and certificate validation for SSL
Subject: Shibboleth Developers
List archive
- From: "Scott Cantor" <>
- To: "'Wilcox, Mark'" <>
- Cc: <>
- Subject: RE: Tomcat and certificate validation for SSL
- Date: Tue, 14 Jun 2005 19:20:15 -0400
- Organization: The Ohio State University
> Just another future monkey wrench - some installations
> undoubtedly will be offloading their SSL to the
> load-balancer. I'm not sure how that works if you want SSL
> client-cert delivered to your system.
It doesn't. But it's still slower to sign, it's really that bad in
comparison on standard hardware, because SSL is designed to cache and reuse
its crypto and signing doesn't unless you sign with HMACs and implement some
kind of key exchange.
-- Scott
- RE: Tomcat and certificate validation for SSL, (continued)
- RE: Tomcat and certificate validation for SSL, Alistair Young, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Tom Scavo, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Alistair Young, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Tom Scavo, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Walter Hoehn, 06/14/2005
- Re: Tomcat and certificate validation for SSL, Tom Scavo, 06/14/2005
- RE: Tomcat and certificate validation for SSL, Scott Cantor, 06/14/2005
Archive powered by MHonArc 2.6.16.