Alternative ssl

Hi,

NGINX dev team has been working with CyaSSL in regard to integrating
this library as an alternative SSL engine:

What would be opinions here in regards to what kind of an SSL is good to
have with nginx? And what would be the reasons for that (short)?

Many thanks!

Are there any (recent) benchmarks vs OpenSSL? or features not
supported by CyaSSL but supported in OpenSSL?

Its all about performance, cpu usage. I have lots of SSL connections
coming through so any improvements with speed and decrease in CPU
usage I’m for it.

Ryan,

There’s a preliminary work done so far, no benchmarks. CyaSSL is
primarily about reducing memory per connection several times.

On 02/21/2012 12:48 PM, Ryan B. wrote:

Are there any (recent) benchmarks vs OpenSSL? or features not
supported by CyaSSL but supported in OpenSSL?

Its all about performance, cpu usage. I have lots of SSL connections
coming through so any improvements with speed and decrease in CPU
usage I’m for it.

Cyassl has cleaner implementation and api. Maintainers also claim lower
memory footprint, which is considerable argument

http://www.yassl.com/yaSSL/Products-cyassl.html
http://en.wikipedia.org/wiki/Comparison_of_TLS_Implementations

Brane

Was there ever any progress on this topic? Personally I think it would
be
very interesting to see nginx supporting CyaSSL with the NTRU algorithm
for
high performance websites. To be honest, I’d love to run some benchmarks
on
my own on this.

Posted at Nginx Forum:
http://forum.nginx.org/read.php?2,222763,244238#msg-244238