TLS Goes Low Cost: When TLS Meets Edge

Intae Kim; Willy Susilo; Joonsang Baek; Jongkil Kim; Yang Wai Chow

doi:10.1007/978-3-031-25659-2_8

TLS Goes Low Cost: When TLS Meets Edge

Intae Kim, Willy Susilo, Joonsang Baek, Jongkil Kim, Yang Wai Chow

Cyber Security

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Recently, we have witnessed an upward trend in adopting the Transport Layer Security version 1.3 (TLS 1.3) to numerous applications (Google Cloud [25], Microsoft software products [20], CloudFlare [27]). Although TLS 1.3 provides higher efficiency than the previous versions of TLS, its handshake protocol still requires the server to send its certificate to the client which consumes a significant amount of network bandwidth. Moreover, the client becomes idle while it is waiting for the certificate to arrive. This latency is one of the causes of the TLS handshake delay. Adequate adoption of edge computing can increase the efficiency of traditional server client architectures. In this paper, we envision a new paradigm to adopt edge computing into TLS to improve the efficiency of session establishment. Our new architecture will motivate researchers to consider the edge in improving the TLS protocol in the future. TLS-EC (TLS with Edge Computing) protocol improves the TLS 1.3 handshake efficiency by reducing server-side certificate transmission overhead and network latency between server and client through edge computing. We also present the implementation of TLS-EC, which shows a reduction in both the handshake time and the bandwidth consumption between the server and the client during the TLS handshake. In particular, our experiments indicate that bandwidth consumption can be reduced by 33% and 49%, respectively, for ECDSA and RSA-based certificates with 128-bit security level compared to TLS 1.3 full handshake.

Original language	English
Title of host publication	Information Security Applications - 23rd International Conference, WISA 2022, Revised Selected Papers
Editors	Ilsun You, Taek-Young Youn
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	102-113
Number of pages	12
ISBN (Print)	9783031256585
DOIs	https://doi.org/10.1007/978-3-031-25659-2_8
State	Published - 2023
Event	23rd International Conference on Information Security Applications, WISA 2022 - Jeju Island, Korea, Republic of Duration: 24 Aug 2022 → 26 Aug 2022

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	13720 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	23rd International Conference on Information Security Applications, WISA 2022
Country/Territory	Korea, Republic of
City	Jeju Island
Period	24/08/22 → 26/08/22

Keywords

Bandwidth reduction
Edge computing
Handshake time reduction
Latency utilization
TLS 1.3

Access to Document

10.1007/978-3-031-25659-2_8

Cite this

Kim, I., Susilo, W., Baek, J., Kim, J., & Chow, Y. W. (2023). TLS Goes Low Cost: When TLS Meets Edge. In I. You, & T-Y. Youn (Eds.), Information Security Applications - 23rd International Conference, WISA 2022, Revised Selected Papers (pp. 102-113). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13720 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-25659-2_8

Kim, Intae ; Susilo, Willy ; Baek, Joonsang et al. / TLS Goes Low Cost : When TLS Meets Edge. Information Security Applications - 23rd International Conference, WISA 2022, Revised Selected Papers. editor / Ilsun You ; Taek-Young Youn. Springer Science and Business Media Deutschland GmbH, 2023. pp. 102-113 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{eaebd996df6545f1bfa6d9dbe5b9f0ea,

title = "TLS Goes Low Cost: When TLS Meets Edge",

abstract = "Recently, we have witnessed an upward trend in adopting the Transport Layer Security version 1.3 (TLS 1.3) to numerous applications (Google Cloud [25], Microsoft software products [20], CloudFlare [27]). Although TLS 1.3 provides higher efficiency than the previous versions of TLS, its handshake protocol still requires the server to send its certificate to the client which consumes a significant amount of network bandwidth. Moreover, the client becomes idle while it is waiting for the certificate to arrive. This latency is one of the causes of the TLS handshake delay. Adequate adoption of edge computing can increase the efficiency of traditional server client architectures. In this paper, we envision a new paradigm to adopt edge computing into TLS to improve the efficiency of session establishment. Our new architecture will motivate researchers to consider the edge in improving the TLS protocol in the future. TLS-EC (TLS with Edge Computing) protocol improves the TLS 1.3 handshake efficiency by reducing server-side certificate transmission overhead and network latency between server and client through edge computing. We also present the implementation of TLS-EC, which shows a reduction in both the handshake time and the bandwidth consumption between the server and the client during the TLS handshake. In particular, our experiments indicate that bandwidth consumption can be reduced by 33% and 49%, respectively, for ECDSA and RSA-based certificates with 128-bit security level compared to TLS 1.3 full handshake.",

keywords = "Bandwidth reduction, Edge computing, Handshake time reduction, Latency utilization, TLS 1.3",

author = "Intae Kim and Willy Susilo and Joonsang Baek and Jongkil Kim and Chow, {Yang Wai}",

note = "Publisher Copyright: {\textcopyright} 2023, Springer Nature Switzerland AG.; 23rd International Conference on Information Security Applications, WISA 2022 ; Conference date: 24-08-2022 Through 26-08-2022",

year = "2023",

doi = "10.1007/978-3-031-25659-2_8",

language = "English",

isbn = "9783031256585",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "102--113",

editor = "Ilsun You and Taek-Young Youn",

booktitle = "Information Security Applications - 23rd International Conference, WISA 2022, Revised Selected Papers",

}

Kim, I, Susilo, W, Baek, J, Kim, J & Chow, YW 2023, TLS Goes Low Cost: When TLS Meets Edge. in I You & T-Y Youn (eds), Information Security Applications - 23rd International Conference, WISA 2022, Revised Selected Papers. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 13720 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 102-113, 23rd International Conference on Information Security Applications, WISA 2022, Jeju Island, Korea, Republic of, 24/08/22. https://doi.org/10.1007/978-3-031-25659-2_8

TLS Goes Low Cost: When TLS Meets Edge. / Kim, Intae; Susilo, Willy; Baek, Joonsang et al.
Information Security Applications - 23rd International Conference, WISA 2022, Revised Selected Papers. ed. / Ilsun You; Taek-Young Youn. Springer Science and Business Media Deutschland GmbH, 2023. p. 102-113 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13720 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - TLS Goes Low Cost

T2 - 23rd International Conference on Information Security Applications, WISA 2022

AU - Kim, Intae

AU - Susilo, Willy

AU - Baek, Joonsang

AU - Kim, Jongkil

AU - Chow, Yang Wai

PY - 2023

Y1 - 2023

N2 - Recently, we have witnessed an upward trend in adopting the Transport Layer Security version 1.3 (TLS 1.3) to numerous applications (Google Cloud [25], Microsoft software products [20], CloudFlare [27]). Although TLS 1.3 provides higher efficiency than the previous versions of TLS, its handshake protocol still requires the server to send its certificate to the client which consumes a significant amount of network bandwidth. Moreover, the client becomes idle while it is waiting for the certificate to arrive. This latency is one of the causes of the TLS handshake delay. Adequate adoption of edge computing can increase the efficiency of traditional server client architectures. In this paper, we envision a new paradigm to adopt edge computing into TLS to improve the efficiency of session establishment. Our new architecture will motivate researchers to consider the edge in improving the TLS protocol in the future. TLS-EC (TLS with Edge Computing) protocol improves the TLS 1.3 handshake efficiency by reducing server-side certificate transmission overhead and network latency between server and client through edge computing. We also present the implementation of TLS-EC, which shows a reduction in both the handshake time and the bandwidth consumption between the server and the client during the TLS handshake. In particular, our experiments indicate that bandwidth consumption can be reduced by 33% and 49%, respectively, for ECDSA and RSA-based certificates with 128-bit security level compared to TLS 1.3 full handshake.

AB - Recently, we have witnessed an upward trend in adopting the Transport Layer Security version 1.3 (TLS 1.3) to numerous applications (Google Cloud [25], Microsoft software products [20], CloudFlare [27]). Although TLS 1.3 provides higher efficiency than the previous versions of TLS, its handshake protocol still requires the server to send its certificate to the client which consumes a significant amount of network bandwidth. Moreover, the client becomes idle while it is waiting for the certificate to arrive. This latency is one of the causes of the TLS handshake delay. Adequate adoption of edge computing can increase the efficiency of traditional server client architectures. In this paper, we envision a new paradigm to adopt edge computing into TLS to improve the efficiency of session establishment. Our new architecture will motivate researchers to consider the edge in improving the TLS protocol in the future. TLS-EC (TLS with Edge Computing) protocol improves the TLS 1.3 handshake efficiency by reducing server-side certificate transmission overhead and network latency between server and client through edge computing. We also present the implementation of TLS-EC, which shows a reduction in both the handshake time and the bandwidth consumption between the server and the client during the TLS handshake. In particular, our experiments indicate that bandwidth consumption can be reduced by 33% and 49%, respectively, for ECDSA and RSA-based certificates with 128-bit security level compared to TLS 1.3 full handshake.

KW - Bandwidth reduction

KW - Edge computing

KW - Handshake time reduction

KW - Latency utilization

KW - TLS 1.3

UR - http://www.scopus.com/inward/record.url?scp=85148017557&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-25659-2_8

DO - 10.1007/978-3-031-25659-2_8

M3 - Conference contribution

AN - SCOPUS:85148017557

SN - 9783031256585

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 102

EP - 113

BT - Information Security Applications - 23rd International Conference, WISA 2022, Revised Selected Papers

A2 - You, Ilsun

A2 - Youn, Taek-Young

PB - Springer Science and Business Media Deutschland GmbH

Y2 - 24 August 2022 through 26 August 2022

ER -

Kim I, Susilo W, Baek J, Kim J, Chow YW. TLS Goes Low Cost: When TLS Meets Edge. In You I, Youn T-Y, editors, Information Security Applications - 23rd International Conference, WISA 2022, Revised Selected Papers. Springer Science and Business Media Deutschland GmbH. 2023. p. 102-113. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-031-25659-2_8

TLS Goes Low Cost: When TLS Meets Edge

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this