- This event has passed.
SSL Handshake Analysis
February 25, 2015 @ 10:00 pm - 11:00 pm EST
February 25 @ 10 PT/Noon CT/ 1:00 ET
ABOUT THE WEBINAR
SSL is being widely implemented to protect TCP application traffic. How can you diagnose problems? If the connection setup and negotiation causes poor response time, can you tell?
Part of the security relies on digital certificates. In the past, only server certificates were used. Now, more and more companies are requiring client certificates. This complicates the handshake process and poses a number of new issues in management and control.
We will diagram and discuss:
- SSL handshakes with only a server certificate,
- SSL handshakes with both server and client certificates, and
- Resumed handshakes
Then, we will move on to:
- Diagnose SSL handshake problems,
- View invalid certificate authorities and bad certificates,
- Discuss incorrect cipher suites,and
- Analyze performance issues.
We will show a recent case with 95% overhead for an SSL FTP. After much analysis, it turned out that the SSL application was coded to encrypt one byte at a time. So, data was being sent with one byte of real data and 20 bytes of SSL overhead. No wonder it was taking so long!
ABOUT THE PRESENTER
Nalini Elkins, 2014 A.A. Michelson Award Winner
Nalini Elkins, the CEO and Founder of Inside Products, Inc., is a recognized leader in the field of computer performance measurement and analysis. In addition to being an experienced software product designer, developer, and planner, she is a formidable businesswoman. She has been the founder or co-founder of two start-ups in the high-tech arena.
Nalini has a strong computer networking background, but specializes in network performance analysis, measurement, monitoring, tuning, and troubleshooting of large enterprise computing networks including TCP/IP and SNA. One of her specialties is training and network design for IPv6 migration.
Nalini started her career working as an applications developer for Farm Bureau Insurance in Indiana and Decimus Corporation in San Francisco. It was at Decimus that she developed her initial expertise and love for networks and network performance analysis. This love affair has continued for over 25 years – longer than many marriages!
Nalini further honed her network design, performance, and diagnostics expertise during her tenure at Chevron Corporation. At that time, Chevron had one of the most complex networks in the world. Nalini helped to design the hardware configurations of their network. In fact, she was one of the chief architects responsible for the merger of the Chevron and Gulf networks.
During her career Nalini served in groups responsible for network performance design, analysis, troubleshooting, and systems programming. The classes Nalini produces and instructs, and the products she develops are designed with the needs of systems programmers as a key requirement. Nalini has an excellent understanding for the needs of system programmers because she was in their shoes for many years.
While at Chevron, Nalini developed an expert system for diagnosing network hardware problems. The marketing rights for this product were sold to Boole & Babbage (which was later taken over by BMC). Nalini then joined Boole to further develop and support this product. After some time at Boole, Nalini joined some other Boole employees in co-founding a new company – Applied Expert Systems.
As Technical Co-founder, Nalini helped to design and develop a number of products in the SNA and TCP/IP network management area. These products included expert systems for SNA diagnostics, web performance diagnostics, TCP/IP routing diagnosis and TCP/IP network management. She was the Chief Developer of the product IBM OEMed and marketed as the first version of NetView Performance Monitor for TCP/IP.
Nalini founded Inside Products, Inc. in 2001 to design, develop and market network management software. The products include: the Inside the Stack TCP/IP monitor, TCP Problem Finder, TCP Response Time Monitor, SSL Problem Finder, IPv6 Problem Finder, and Connection Log. Inside Products has many popular training classes attended by some of the largest corporations in the U.S., Canada, South Africa, Argentina, Brazil, Germany, Spain, and Portugal. Inside Products provides consulting for IPv6 and to resolve network problems such as FTP throughput, socket application performance and TCP/IP tuning. Inside Products has international distributors in Australia, the European Union and Israel.
Nalini has published numerous articles in publications such as zJournal, Technical Support, Xephon’s TCP/IP Update, and Enterprise Systems Journal. Nalini is also a regular speaker at SHARE, NASPA, both national and regional Computer Measurement Groups (CMGs), and variety of international conferences. She was also the founder of the IPv6 Business Information Exchange (BIE).