EldoS | Feel safer!

Software components for data protection, secure storage and transfer

SSL Handshake

Also by EldoS: Solid File System
A virtual file system that offers a feature-rich storage for application documents and data with built-in compression and encryption.
#51
Posted: 04/24/2006 05:21:32
by Marco de Groot (Basic support level)
Joined: 04/24/2006
Posts: 4

Hi,

Currently I'm using SecureBlackbox 3.3.61. I think this version does a full handshake during every connection and not once a 'session'. Is this right and if so, is this changed in a new version?

The reason why I ask this is because one of the websites is used by users which connect by a UMTS/GPRS modem. The speed of the https website is a lot less for the mobile users. This can be explained by the high ping-times of the mobile users and the handshake connections.

Thanks,
Marco.
#52
Posted: 04/24/2006 05:52:51
by Eugene Mayevski (EldoS Corp.)

The session in SSL usually lives as long as the connection is present. And on reconnection new SSL session is created. If your clients support resuming the session, then you can try to provide this functionality in your server by attaching ElSessionPool component to the server.


Sincerely yours
Eugene Mayevski
#53
Posted: 04/24/2006 07:19:36
by Marco de Groot (Basic support level)
Joined: 04/24/2006
Posts: 4

The SessionPool was assigned, but after some debugging, it seemed the Interval was 0. So every Session was directly flushed before reuse. I don't think the 0 is a useful default timeout :)

Thanks.
#54
Posted: 04/24/2006 07:34:10
by Eugene Mayevski (EldoS Corp.)

Interval controls how frequently the pool is scanned for "expired" sessions. It's Timeout which defines how long the session lives.

Anyway, you have pointed at the possible problem that needs fixing. Done.


Sincerely yours
Eugene Mayevski
#55
Posted: 04/24/2006 07:48:32
by Marco de Groot (Basic support level)
Joined: 04/24/2006
Posts: 4

To what value did you change the default timeout? And did you change the default interval too? I think checking every second is too much.

But it seems that my version of the code has some unfinished egdes. The TTimerThread.Execute contains an fEvent which is never used. This was ment for returning from the WaitForSingleObject if the thread is terminated.
#56
Posted: 04/24/2006 08:03:54
by Eugene Mayevski (EldoS Corp.)

Quote
Marco de Groot wrote:
To what value did you change the default timeout? And did you change the default interval too? I think checking every second is too much.


We have only set Interval to be 1000 ms by default.
Regarding the event - yes, it's not used at the moment.


Sincerely yours
Eugene Mayevski
#72
Posted: 04/26/2006 13:11:49
by Marco de Groot (Basic support level)
Joined: 04/24/2006
Posts: 4

I've experienced some weird exceptions during unloading of a DLL which uses SBB. I changed the TTimerThread to correctly use the event. The TElSessionPool now waits for the termination of the thread. It looks like this solved my problem. I can mail you my changed file if you like.
#73
Posted: 04/27/2006 00:37:20
by Eugene Mayevski (EldoS Corp.)

yes, please, send it to support@eldos.com


Sincerely yours
Eugene Mayevski
Also by EldoS: CallbackDisk
Create virtual disks backed by memory or custom location, expose disk images as disks and more.

Reply

Statistics

Topic viewed 8784 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!