Current time: 12-02-2020, 11:38 PM Hello There, Guest! (LoginRegister)

Post Reply 
 
Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
SSL Settings
01-30-2012, 10:11 AM
Post: #3
RE: SSL Settings
Some HTTPS tips:

First check to see how you are doing on the security side:
https://www.ssllabs.com/ssldb/

Second, if you are technical enough you should check if the HTTPS webserver is setup correctly, so sessionids should work (if they don't you will have a lot worse performance for multiple connections).

Next thing is to check if Chrome is able to connect to your site with 'false start', so your site doesn't have to be added to blacklist.

Some other things you could do:
setup your whole site to use a CDN, that way the connection time for HTTPS goes down, because the initial connection time is limited by the latency between the client (browser) and server.

An other trick you could do, because that data is kind of large and not compressed is to shorten the certificate chain. Try to find a CA which does not need a 'intermediate certificate' and which is already supported by all browsers that might use your site. You do not need to include the certificate which is already in the browsers. So if there is no intermediate needed, you can remove the whole chain and only send the certificate for the site.

You should also keep an eye on SPDY, there is currently a production ready webserver which supports SPDY out of the box but when there is you should start to set that up. With the 'Alternative' header. Chrome already support SPDY, Firefox will probably enable it in Firefox 11.
Visit this user's website Find all posts by this user
Quote this message in a reply
Post Reply 


Messages In This Thread
SSL Settings - RuudBoon - 08-12-2011, 01:15 AM
RE: SSL Settings - pmeenan - 08-12-2011, 10:22 AM

Forum Jump:


User(s) browsing this thread: 1 Guest(s)