What is it about?
Establishing secure connections fast to end-users is crucial to online services. However, when a client sets up a TLS session with a server, the TLS handshake needs one round trip time (RTT) to negotiate a session key. We propose ZTLS to eliminate the 1-RTT latency for the TLS handshake by leveraging the DNS. Our prototype-based experiments show that ZTLS effectively reduces the approximately 1-RTT delay for first responses on the Internet. ZTLS supports incremental deployment since it satisfies backward compatibility with the standard TLS protocol.
Featured Image
Photo by toine G on Unsplash
Why is it important?
ZTLS effectively reduces the approximately 1-RTT delay for first responses. Related works to eliminate the 1-RTT latency for TLS handshake are available in subsequent connections but not in the first connection. ZTLS does not require a previous session since it employs the DNS system. Furthermore, ZTLS supports incremental deployment since it satisfies backward compatibility with the standard TLS protocol.
Perspectives
I believe that ZTLS can significantly contribute to improving the response speed of the WWW, as 1-RTT is becoming more and more noteworthy due to the increase in the wireless environment.
Sangwon Lim
Seoul National University
Read the Original
This page is a summary of: ZTLS: A DNS-based Approach to Zero Round Trip Delay in TLS handshake, April 2023, ACM (Association for Computing Machinery),
DOI: 10.1145/3543507.3583516.
You can read the full text:
Contributors
The following have contributed to this page
