Ping a Specific Port

Question

Nathaniel Varona

Asked: 2009-06-13 06:53:46 +0800 CST2009-06-13 06:53:46 +0800 CST 2009-06-13 06:53:46 +0800 CST

Why do https connections take longer to establish than straight http connections?

772

Why is it that Secured HTTP Connection (https) is Slower then than typical HTTP (http)?

Just interested in knowing only.

Thanks.

7 Answers

Voted

Dave Cheney · Answer 1 · 2009-06-13T07:00:26+08:00

Best Answer

Dave Cheney

2009-06-13T07:00:26+08:002009-06-13T07:00:26+08:00

To open a TCP/IP connection requires 3 packets to be exchanged between the client and the server. The connection is then considered established, and the client can submit its request.

When SSL is added on top of the TCP/IP connection there are several additional interactions that have to happen before the connection is considered established.

Unless the latency is negligible between the client and the server (read, the same network), then it is likely that this additional latency, due to the additional round trips to exchange SSL handshaking data, not the CPU overhead of calculating the key material, is the major factor in the delay in establishing an SSL connection.

More information about TCP/IP connection establishment

More information about SSL/TLS handshaking

20

pauska · Answer 2 · 2009-06-13T06:55:15+08:00

pauska

2009-06-13T06:55:15+08:002009-06-13T06:55:15+08:00

In simple words: Because it encrypts and decrypts the traffic, this requires processing on both sides (the server and the client).

8

David Spillett · Answer 3 · 2009-06-13T07:05:28+08:00

David Spillett

2009-06-13T07:05:28+08:002009-06-13T07:05:28+08:00

As mentioned by other people there is the encryption and decryption steps for all transfers. There are two other issues though:

The negotiation phase when you first talk to the server, in which the server and browser negotiate a key for the encryption process and your browser performs some checks on the servers certificate (it it checks yours if you are using client certs).
The fact that no content (including the main page source, scripts, images and stylesheets) carried on a HTTPS connection should be cached by your browser, so it has to re-request objects it would otherwise get from cache every time it needs them.

7

Rob Bell · Answer 4 · 2009-06-13T07:04:23+08:00

Rob Bell

2009-06-13T07:04:23+08:002009-06-13T07:04:23+08:00

Jeff Moser just posted a good article on this explaining the ins and outs, handshaking etc.

http://www.moserware.com/2009/06/first-few-milliseconds-of-https.html

3

Jim Blizard · Answer 5 · 2009-06-13T06:57:53+08:00

Jim Blizard

2009-06-13T06:57:53+08:002009-06-13T06:57:53+08:00

To add to pauska's answer:

Most web server platforms can add hardware/software to improve the performance of SSL on the server. This product does this.

1

Jack B Nimble · Answer 6 · 2009-06-13T06:56:20+08:00

Jack B Nimble

2009-06-13T06:56:20+08:002009-06-13T06:56:20+08:00

Because it takes a little bit of time to encrypt the content, and the encryption generally increases the size of the content.

0

phil · Answer 7 · 2015-04-24T11:15:06+08:00

phil

2015-04-24T11:15:06+08:002015-04-24T11:15:06+08:00

i have that establish secure connetion lag too... i look in chrome advanced parameter. scroll down to https/ssl and deleted all certificate relative to comodo (found them in the second or third tab, din't remember), never got that establish secure connection lag again hope that help

-2

Why do https connections take longer to establish than straight http connections?

Ping a Specific Port

What port does SFTP use?

Resolve host name from IP address

How can I sort du -h output by size

Command line to list users in a Windows Active Directory group?

What's the command-line utility in Windows to do a reverse DNS look-up?

How to check if a port is blocked on a Windows machine?

What port should I open to allow remote desktop?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?