Optimizacion de Rendimiento y de Costo de Infraestructuras Distribuidas Aseguradas con SSL (Cost-Performance Optimization of SSL-Based Secure Distributed Infrastructures)

Stefano Bregni (bregni@elet.polimi.it), Paolo Giacomazzi (giacomaz@elet.polimi.it), Alessandro Poli (poli@elet.polimi.it)

Politecnico di Milano
This paper appears in: Revista IEEE América Latina

Publication Date: July 2011
Volume: 9,   Issue: 4 
ISSN: 1548-0992

Business-to-Business and Business-to-Customer transactions in Internet require secure communication, especially for web applications. The Secure Socket Layer (SSL) protocol is one of the most viable solutions to provide the required level of confidentiality, message integrity and endpoint authentication. The two main alternatives for providing SSL security are the end-to-end and the accelerated solutions, which enable different cost-performance tradeoffs, where performance is intended as the overall delay that the customer experiences to complete the tran-saction. The accelerated solution is enabled by special devices (SSL acceleration cards) placed in network nodes. In this paper, we propose an optimization algorithm, which designs the ICT in-frastructure minimizing the total cost, given a target perform-ance objective defined as the end-to-end delay for the completion of the distributed application tasks. We apply this method to evaluate the efficiency of SSL acceleration versus end-to-end SSL, in order to determine in what conditions SSL acceleration is convenient. Our algorithm performs joint optimization of com-puting and communication resources, whilst in literature hard-ware and network are typically optimized separately.

Index Terms:
Communication system security, information systems, information technology, optimization methods.   

Documents that cite this document
This function is not implemented yet.

[PDF Full-Text (438)]