Encrypting the internet

Michael E. Kounavis, Xiaozhu Kang, Ken Grewal, Mathew Eszenyi, Shay Gueron, David Durham

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

Abstract

End-to-end communication encryption is considered necessary for protecting the privacy of user data in the Internet. Only a small fraction of all Internet traffic, however, is protected today. The primary reason for this neglect is economic, mainly security protocol speed and cost. In this paper we argue that recent advances in the implementation of cryptographic algorithms can make general purpose processors capable of encrypting packets at line rates. This implies that the Internet can be gradually transformed to an information delivery infrastructure where all traffic is encrypted and authenticated. We justify our claim by presenting technologies that accelerate end-to-end encryption and authentication by a factor of 6 and a high performance TLS 1.2 protocol implementation that takes advantage of these innovations. Our implementation is available in the public domain for experimentation.

Original languageEnglish
Title of host publicationSIGCOMM'10 - Proceedings of the SIGCOMM 2010 Conference
Pages135-146
Number of pages12
DOIs
StatePublished - 2010
Externally publishedYes
Event7th International Conference on Autonomic Computing, SIGCOMM 2010 - New Delhi, India
Duration: 30 Aug 20103 Sep 2010

Publication series

NameSIGCOMM'10 - Proceedings of the SIGCOMM 2010 Conference

Conference

Conference7th International Conference on Autonomic Computing, SIGCOMM 2010
Country/TerritoryIndia
CityNew Delhi
Period30/08/103/09/10

Keywords

  • AES
  • GCM
  • HTTPS
  • RSA
  • SSL
  • TLS
  • cryptographic algorithm acceleration
  • secure communications

ASJC Scopus subject areas

  • Computational Theory and Mathematics
  • Theoretical Computer Science

Fingerprint

Dive into the research topics of 'Encrypting the internet'. Together they form a unique fingerprint.

Cite this