[prev in list] [next in list] [prev in thread] [next in thread]
List: ietf-tls
Subject: Re: [TLS] Alignment of the TLS/DTLS header
From: Eric Rescorla <ekr () networkresonance ! com>
Date: 2008-07-28 4:28:46
Message-ID: 20080728042846.7508B4B7B34 () kilo ! rtfm ! com
[Download RAW message or body]
At Sat, 26 Jul 2008 19:47:50 +0300,
Nikos Mavrogiannopoulos wrote:
>
> Abhijit Choudhury (achoudhu) wrote:
>
> > TLS, and hence DTLS, are possibly the only protocols that have
> > an odd number of bytes in the header. One thing I have consistently
> > seen in HW and even in SW implementations of DTLS is that the
> > 13 byte DTLS header causes implementation challenges. Almost all
> > headers in the IP packet are 4-byte aligned.
>
> > For ASICs, having the 13-byte DTLS header misaligns the HW parsers
> > so that subsequent headers in application-data type packets are
> > harder to parse out.
> Why is this? Probably if the design is based on an ASIC that parses IP
> packets, it will not be optimal, but can't a design specifically for TLS
> parse those packets optimally?
>
> > For processor based implementations, sometimes
> > the 13-byte header results in additional copies, and reduced
> > performance.
> I cannot understand this. Could you please elaborate?
After thinking about this for a while, this seems like a pretty
significant change to make to DTLS, especially given that I don't
expect us to change TLS 1.2 at this point, so hardware will need
to support the unaligned version anyway.
I'd prefer not to do this absent some pretty compelling
data indicating that it makes a big performance difference.
-Ekr
_______________________________________________
TLS mailing list
TLS@ietf.org
https://www.ietf.org/mailman/listinfo/tls
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic