Subject: Re: Algorithm number/name allocation for opencrypto?
To: None <>
From: Miles Nordin <carton@Ivy.NET>
List: tech-crypto
Date: 12/08/2007 11:29:10
Content-Type: text/plain; charset=US-ASCII

>>>>> "tls" == Thor Lancelot Simon <> writes:

   tls> hardware that can directly perform SSL record encryption and
   tls> decryption with hash checking.

   tls> what other work should I look at?

solaris has all kinds of crazy web proxying inside kernel space.  I
don't understand it well, but you might want to have a look.  I would
be surprised if I learned it's part of the open source piece, but at
least you could steal some of their metaphors.

Also I noticed some of their crypto accelerator Xnnnnn options for
older boxes like V120 are sold in the form of Ethernet cards.  It's an
interesting world because the hardware was so costly per CPU power
that the i386 ``just throw more CPU's at it'' approach comes with this
HUGE marginal cost you can deflect into complicated crypto cards.
When they architected their crypto hardware/software, they had control
of the whole system, and maybe they had a lot of money to play with
too and did a good job.  or...not.  I dunno.

Content-Type: application/pgp-signature
Content-Transfer-Encoding: 7bit

Version: GnuPG v1.4.2 (NetBSD)