Dave Garrett <davemgarr...@gmail.com> writes: >A TLS extension to negotiate max length might be viable.
I think a better starting point would be to look at the implementation that's causing the problem. There's nothing magical about a 16K max segment size that causes poor performance, TCP typically has an MSS of 1400-1500 bytes, one tenth of the TLS segment size, without there being a 187% loss in throughput so it looks like the problem is in the implementation, not the protocol. I don't see any reason why you couldn't get close to wire speeds, or at least min( crypto speed, wire speed ) for TLS for a properly-done implementation. Peter. _______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
