The site uses SSL certificates will affect the speed of access to the site?

Enterprise 2019-11-14 23:19:19 views: null

The site uses SSL certificates will affect the speed of access to the site?

When it comes to https and SSL certificates , we have to say the difference between http and https, and I believe most people are not familiar with http, it is a hypertext transfer protocol, but there are some security risks, that detecting inadequate integrity plaintext message and transmitting. Very easy to use to obtain personal information, such as: mobile phones, identity information, credit card numbers. To ensure the safety of these data, SSL certificates was born.
In fact, there are quite a few friends want to know the rate of use of SSL certificates will not affect the site it? Want to know the answer to this question, we need to thoroughly understand https works can be.

https works

https once shook hands before the need to transfer data between the client (browser) and server (website), establish password information encrypted transmission of data both in the handshake process. TLS / SSL protocol just set encrypted transmission protocol, TLS / SSL used in asymmetric encryption, symmetric encryption and HASH algorithm.

Brief description of SSL handshake process is as follows:

1. The browser sends its own set of encryption rules to support the site.

2. The site selected from a group encryption algorithm and HASH algorithm, and their identity information in the form of a certificate sent back to the browser. Certificate which contains the website address, public key encryption, as well as information about the certificate authority and so on.

3. After obtaining the site certificate the browser does the following:

Institutions a) verify the legitimacy of the certificate (a certificate is legitimate, whether the website address contained in the certificate matches the address being accessed, etc.), if a trusted certificate, the browser displays a small bar inside the lock, otherwise it will untrusted certificate is given prompt.

b) If the certificate is trusted, or is the user accepts the certificate is not the letter, the browser will generate a password string of random numbers and encrypted with the public key certificate provided.

c) using the HASH calculation good agreement handshake message, and using the generated random number to encrypt a message, all information sent to the site generated earlier.

4. The website receives data sent by the browser to do after the following operations:

a) uses its own private key to decrypt the message out passwords, using password decryption browser sent a handshake messages and verify whether the same HASH sent by the browser.

b) the use of password encryption for a handshake message, sent to the browser.

The calculated HASH browser and decrypts handshake message sent to the server and if the HASH, where this end of the handshake, the communication data after all of the browser will be generated before the random password and encrypted using a symmetric encryption algorithm.

Here browsers and websites to send each other encrypted handshake messages and verify that the aim is to ensure that both sides get the same password and data encryption and decryption can be normal, to do a real test for the subsequent transmission of data. Further, encryption and HTTPS HASH algorithm generally used as follows:

Asymmetric encryption algorithms: RSA, DSA / DSS

Symmetric encryption algorithms: AES, RC4,3DES

HASH algorithm: MD5, SHA1, SHA256

Wherein an asymmetric encryption algorithm for encrypting passwords generated during the handshake, the symmetric encryption algorithm for encrypting data is actually transmitted, the HASH algorithm for data integrity verification. Because the browser generated password is the key data encryption, so when transmitted using asymmetric encryption algorithm to encrypt. Asymmetric encryption algorithm will generate a public key and a private key, a public key can only be used to encrypt the data, so you can freely transfer, while the private key for the site to decrypt the data, so the site will be very careful to keep their private key, prevent leakage.

TLS handshake process if there are any errors, will make an encrypted connection is disconnected, thereby preventing the transmission of private information.

We can whether SSL certificates will affect the speed of the site, opened with Firefox (https://www.zzidc.com/) through a set of data look at, to study under the debug tool.

SSL Certificates

SSL Certificates

to sum up

In fact, access speed difference between http and https an SSL handshake, the two companies may have a look below:

HTTP consuming = TCP handshake

HTTPS consuming = TCP + SSL handshake handshake

With the current bandwidth is increasing and escalating hardware, SSL handshake takes real time may be only a few hundred milliseconds, the normal ordinary users access to virtually experience not see any gaps, no need to worry about a negative impact on the speed of https.


  "" Free SSL certificate request entrance: https://certmall.trustauth.cn/Free


Guess you like

Origin blog.51cto.com/14588847/2450251
Recommended
Face Wall Intelligence releases the Eurux-8x22B open source large model - it can be called the "science champion"
Kaiyuan Daily | Google supports Hongmeng to take over; open source Rabbit R1; Android phones supported by Docker; Microsoft’s anxiety and ambition; Haier Electric shuts down the open platform
Ranking
Jianzhi offer interview questions 68-II. The nearest common ancestor of a binary tree (recursive)
jQuery Mobile development 1-UI components
Summary of Kotlin function knowledge
[ZZ] The Naked Truth About Anisotropic Filtering
Diagnosis: record a recovery of abnormal CRASH storage caused the database to be unable to be opened normally
Redis introduction and Linux installation Redis
Experiment 2 Introduction to switches
glances open source command-line system monitoring tools introduced
Use of selector
vue3 handwriting a carousel picture
Daily
More
2024-05-06(6)
2024-05-05(0)
2024-05-04(18)
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)

Code World

© 2018 codetd.com