RSA on general-purpose CPU's [was:RE: Secure peripheral cards]
Adam Back
adam at cypherspace.org
Mon Mar 25 07:14:49 EST 2002
On Sat, Mar 23, 2002 at 05:00:12PM -0800, Eric Young wrote:
> >>openSSL on a PIII-633Mhz can do 265 512 bit CRT RSA per
>
> I don't know what the OpenSSL people did to the x86 ASM code, but
> SSLeay (the precursor to OpenSSL, over 3 years old) did/does 330
> 512bit and 55 1024 bit RSAs a second on a 333mhz celeron (linux
> and/or win32).
Hmm probably the question is how did whoever that compiled that binary
(not me) manage to compile it without bignum assembler.
Here's another binary, try this instead (also P3-633Mhz):
OpenSSL 0.9.5a 1 Apr 2000
built on: Wed Aug 30 14:46:28 EDT 2000
options:bn(32,32) rc4(ptr,int) des(ptr,risc1,16,long) blowfish(idx)
compiler: gcc -DTHREADS -D_REENTRANT -fPIC -ggdb -DNO_IDEA -DNO_MDC2 -DNO_RC5 -DNO_MD2 -DL_ENDIAN -DTERMIO -O2 -march=i386 -mcpu=i686 -Wall -DSHA1_ASM -DMD5_ASM -DRMD160_ASM
sign verify sign/s verify/s
rsa 512 bits 0.0019s 0.0002s 523.8 5095.9
(It is -O2 and has debug)
So I think more in-line with your figures, and I suppose making the
point even more strongly than current processors are amazingly fast
and cheap; plus Lucky's figures on the IA64 show the trend continuing.
Adam
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com
More information about the cryptography
mailing list