[TLS] Fwd: I-D Action:draft-bmoeller-tls-falsestart-00.txt

[Bodo Moeller <bmoeller@acm.org>]

A downside of deploying TLS is the latency penalty due to the TLS  
handshake: when starting a new session, HTTPS needs two additional  
round-trip times compared with unencrypted HTTP.  This document shows  
that it's easy to do better than that, just by changing the client's  
protocol implementation -- no change to server code is required to  
speed up full handshakes.

(Similarly, a server-only change can speed up abbreviated handshakes  
for application protocols in which, unlike HTTP, the server sends data  
first.)

An example implementation for OpenSSL is available as  
handshake_cutthrough.patch at http://bazaar.launchpad.net/~nagendra/openssl-patches/trunk/files 
.

Bodo



> A New Internet-Draft is available from the on-line Internet-Drafts  
> directories.
>
> 	Title           : Transport Layer Security (TLS) False Start
> 	Author(s)       : A. Langley, et al.
> 	Filename        : draft-bmoeller-tls-falsestart-00.txt
> 	Pages           : 11
> 	Date            : 2010-06-02
>
> This document specifies an optional behavior of TLS implementations,
> dubbed False Start.  It affects only protocol timing, not on-the-wire
> protocol data, and can be implemented unilaterally.  The TLS False
> Start feature leads to a latency reduction of one round trip for
> certain handshakes.
>
> A URL for this Internet-Draft is:
> http://www.ietf.org/internet-drafts/draft-bmoeller-tls-falsestart-00.txt
>
> Internet-Drafts are also available by anonymous FTP at:
> ftp://ftp.ietf.org/internet-drafts/
>
> Below is the data which will enable a MIME compliant mail reader
> implementation to automatically retrieve the ASCII version of the
> Internet-Draft.
> <ftp://ftp.ietf.org/internet-drafts/draft-bmoeller-tls-falsestart-00.txt 
> >