Uh, what? “Elliptic Curve Digital Signature (ECDSA) is the new kid on the block and makes for much smaller key sizes but isn’t quite as performance friendly or compatible as the old standby RSA.”https://aws.amazon.com/blogs/aws/aws-certificate-manager-launches-private-certificate-authority/ …
-
-
Here's "openssl speed" for a simple example, ECDSA Vs RSA for verify. In wall-clock time: we've measured about an 80 microsecond hit. Keep in mind that ACM Private CA is for client certificates.pic.twitter.com/UVT97hMRlN
-
Our EC2 network RTTs are in tens of micros too, so it can show up. Moral of the story: ECDSA can slow things down end-to-end. But probably too nuanced a take for a launch blog post.
- 3 more replies
New conversation -
-
-
How often does a client perform verify vs a server doing sign operations?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.