How to reduce SSL handshake time?

0

Hi, I have an HTTPS server on EC2 and I want to reduce the SSL time of this website. The SSL certificate has been installed on Tomcat 7.

When i monitor on chrome network tab i see that ssl handshake is taking long time. How can i reduce SSL handshake time?

Enter image description here

질문됨 일 년 전233회 조회
2개 답변
0

Hi There

Are you monitoring the performance of the EC2 instance? Are you seeing increased load or resource exhaustion? One thing you can try is placing an Application Load Balancer in front of your EC2 instance and offloading SSL. This way your EC2 instance does not need the extra resources for encryption, its all handled by the load balancer.

Additional Resources:

https://docs.aws.amazon.com/elasticloadbalancing/latest/application/application-load-balancer-getting-started.html

profile pictureAWS
전문가
Matt-B
답변함 일 년 전
  • Hello, Thanks for answer but I got an error message on chrome " ... has been blocked by CORS policy: No 'Access-Control-Allow-Origin' "

0

Hi,

I agree with the previous suggestion that using an Application Load Balancer may speed up your SSL handshake (among other benefits).

I will also suggest that https://aws.amazon.com/cloudfront/getting-started/EC2/ will likely speed up your SSL handshake. This is because the client's TLS is terminated at an edge location geographically closer to the client. It may also speed up other aspects of your site/portal/service because the communication from the edge location to your EC2 instance will take place over the Amazon network rather than the general Internet.

Also, I see documentation that TLS v1.3 has a faster handshake than TLS v1.2, so perhaps make sure your site supports TLS v1.3.

Regards, Ryan

profile pictureAWS
Ryan_M
답변함 일 년 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인