<html>
<head>
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
</head>
<body text="#000000" bgcolor="#FFFFFF">
Hi Bernd,<br>
<br>
I do have some perf numbers, but I haven't done a lot of comparisons
yet against other algs like AES-GCM and CBC. It would be a good
idea to get those numbers before I release what I have so far.<br>
<br>
--Jamil<br>
<br>
<div class="moz-cite-prefix">On 6/5/2018 1:38 AM, Bernd Eckenfels
wrote:<br>
</div>
<blockquote type="cite"
cite="mid:HE1PR08MB279575075465DF5A927D2212FF660@HE1PR08MB2795.eurprd08.prod.outlook.com">
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
<meta name="Generator" content="Microsoft Exchange Server">
<!-- converted from text -->
<style><!-- .EmailQuote { margin-left: 1pt; padding-left: 4pt; border-left: #800000 2px solid; } --></style>
<div>
<div id="x_compose-container" itemscope=""
itemtype="https://schema.org/EmailMessage"
style="direction:ltr">
<span itemprop="creator" itemscope=""
itemtype="https://schema.org/Organization"><span
itemprop="name"></span></span>
<div>
<div style="direction:ltr">Jamil, I was wandering if you
have performance test numbers to share yet? Do you have an
internal acceptance criteria for it? Do we expect it to
beat unaccelerated AES256-GCM or come close to CBC
performance?</div>
<div><br>
</div>
<div class="x_acompli_signature">
<div style="direction:ltr">Gruss</div>
<div style="direction:ltr">Bernd</div>
<div style="direction:ltr">-- </div>
<div style="direction:ltr"><a class="moz-txt-link-freetext" href="http://bernd.eckenfels.net">http://bernd.eckenfels.net</a></div>
</div>
</div>
</div>
<hr tabindex="-1" style="display:inline-block; width:98%">
<div id="x_divRplyFwdMsg" dir="ltr"><font style="font-size:11pt"
face="Calibri, sans-serif" color="#000000"><b>From:</b>
security-dev <a class="moz-txt-link-rfc2396E" href="mailto:security-dev-bounces@openjdk.java.net"><security-dev-bounces@openjdk.java.net></a>
on behalf of Jamil Nimeh <a class="moz-txt-link-rfc2396E" href="mailto:jamil.j.nimeh@oracle.com"><jamil.j.nimeh@oracle.com></a><br>
<b>Sent:</b> Tuesday, June 5, 2018 8:15:44 AM<br>
<b>To:</b> OpenJDK Dev list<br>
<b>Subject:</b> [Sandbox]: ChaCha20 cipher suite prototype</font>
<div> </div>
</div>
</div>
<font size="2"><span style="font-size:11pt;">
<div class="PlainText">Hi guys,<br>
<br>
Since this is sandbox only right now and in prototype form I
wanted to <br>
go ahead and put this out there so folks could see where the
ChaCha20 <br>
cipher suite code was headed in the new handshaking model.
This has <br>
been tested with small webpages using openssl and Mozilla
NSS (through <br>
Firefox) as a client with JDK on the server side as both a
standalone <br>
server implementation and hooked into Tomcat7. I've also
used JDK as a <br>
client against openssl s_server.<br>
<br>
Disclaimer: Because of time constraints and the blocking
dependency on <br>
the new TLS handshaking code, I want to be clear that
putting this <br>
review out is not a commitment that this feature will make
JDK 11. I am <br>
putting this out though so folks can take a look at it and
hopefully get <br>
a little ahead of the curve if there's time left to get it
in after the <br>
new handshaker goes back.<br>
<br>
<a
href="http://cr.openjdk.java.net/%7Ejnimeh/reviews/tls13-cc20-ciphersuite/webrev.01"
moz-do-not-send="true">http://cr.openjdk.java.net/~jnimeh/reviews/tls13-cc20-ciphersuite/webrev.01</a><br>
<br>
--Jamil<br>
<br>
</div>
</span></font>
</blockquote>
<br>
</body>
</html>