[cabfpub] Draft ballot to create the SSL Performance Working Group

Rob Stradling rob.stradling at comodo.com
Tue Oct 15 09:07:55 UTC 2013

On 14/10/13 17:31, Gervase Markham wrote:
> At the face-to-face and on the last call, interest was expressed in
> creating a Working Group to look at issues related to getting the best
> performance out of an SSL deployment. The aim would be to write one or
> more best practice documents such that all involved can collaborate to
> make sure that SSL websites have the best possible performance, so
> promoting the security and welfare of the web.

Gerv, how does it follow that "best possible performance" leads to 
"promoting the security and welfare of the web" ?

SSL websites that want "best possible performance" still have a habit of 
prioritizing RC4 ciphers, not enabling forward secrecy, and using 
1024-bit RSA keys.  Or disabling SSL altogether!

I think this proposed WG needs to consider performance _and_ security, 
and make recommendations on how to achieve good performance without 
undermining security.

Rob Stradling
Senior Research & Development Scientist
COMODO - Creating Trust Online

More information about the Public mailing list