Presentation is loading. Please wait.

Presentation is loading. Please wait.

Optimal Performance of Java Encryption

Published byFarida Hermawan Modified over 6 years ago

Similar presentations

Presentation on theme: "Optimal Performance of Java Encryption"— Presentation transcript:

1 Optimal Performance of Java Encryption
PardhaSaradhi D -Senior Technology Architect Infosys Limited

2 Abstract The usage and developments of computer and Internet technology in our life, is inseparable from the Internet. The Growth of emerging internet and web based applications will be significant in future. With these developments, users are enjoying quicker and more convenient services offered by the Internet based web applications. However, we face potential security threat to sensitive information. The data transferred over the internet or network between web applications or legacy systems can be exposed. It is very essential to have more sophisticated protection mechanisms for web application data transferred over the network. In addition to this, the data stored by web application in persistent storage needs to be encrypted so as to avoid any data exposure or chance of hacking. Data encryption is an efficient method of guaranteeing information security. There are many encryption methodologies available to encrypt the data. As Java language used for majority of WEB application development with its good features of portability and object oriented programming, this paper describes about the Java Cryptography Extension (JCE) API and its performance over 128 bit and 256 bit encryption techniques.

3 Introduction: The Java Cryptography Extension (JCE) provides a standard framework and implementations for data encryption, the key generation, key agreement and the message authentication Code algorithms. The encryption techniques includes symmetric, asymmetric, block, and stream ciphers. Java Cryptography Extension APIs are implemented by java cryptographic service providers. Each of these cryptographic service providers implements the service provider interface which specifies the functionalities which needs to be implemented by the service providers. Programmers can plugin any Service Providers for performing cryptographic functionalities provided by JCE. Choosing the right data encryption algorithm plays a vital role in achieving performance of overall transaction. Let’s briefly understand the encryption techniques for algorithms – AES, Blowfish, RC2, RC4 and Rijndael.

4 Case study: In recent studies it has been identified that for value transaction applications such as mobile banking, internet banking, credit card system, etc. the account details and transaction details are transferred in an encrypted xml format. Also it is noticed that in many web services based applications xml communication happens over the network in encrypted format. Let’s understand the impact of various encryption algorithms mentioned above which are provided by HOTSPOT jvm 1.7.x version. The below sample java program written to encrypt a sample xml, which has various account details generally used for enquiry type transactions. Various xml files with size 3KB, 10KB and 50KB are given as input for encryption.

5 Example: A work load with 1000 concurrent threads are triggered to invoke encryption (‘encrypt(..)’) method in parallel. Only one xml file was parsed at one time for multi-threaded execution and stored in static string variable. The Xml string was passed to each thread for encryption. The same procedure was repeated for each of the encryption algorithm by passing only one xml file at a time.

6 Sample program: private String Xml=""; private String algor=""; private String Thread_number=""; public SampleEncryption(String str,String alg,String ThreadNo){ this.Xml=str; this.algor=alg; this.Thread_number=ThreadNo;} public void run() { try { String key = " B………………………………………………63087………………………………………………………………………………………………………………………… …………………326D C A876"; // 128 or 256 bit key long l1=System.currentTimeMillis(); Key algKey = new SecretKeySpec(key.getBytes(), algor); Cipher cipher = Cipher.getInstance(algor); cipher.init(Cipher.ENCRYPT_MODE, algKey); byte[] encrypted = cipher.doFinal(Xml.getBytes()); long l2=System.currentTimeMillis(); System.err.println("Encryptopn cost:"+ ((l2-l1) + ":ThreadName:"+Thread_number+":"+algor)); cipher.init(Cipher.DECRYPT_MODE, algKey); String decrypted = new String(cipher.doFinal(encrypted)); long l3=System.currentTimeMillis(); }catch(Exception e) {e.printStackTrace();} }

7 Result analysis: The performance of encryption was measured in terms of response time (Average execution for 1000 concurrent threads) and CPU utilization. The result has been shown in graphical representation for Average execution time (Y- axis: milliseconds) and percentage of CPU utilization (Y-axis: percentage of CPU). For XML size of 3KB input file with 1000 concurrent threads, it is observed that ARCFOUR encryption algorithm has been fastest and Blowfish seems to be the slowest in encrypting the xml. The CPU utilized for ARCFOUR is the lowest and RC2 algorithm is the highest.

8 XML size of 10KB: For XML size of 10KB input file with 1000 concurrent threads, it is observed that RC4 encryption algorithm has been fastest and RC2 seems to be the slowest in encrypting the xml. The CPU utilized for RC4 is the lowest and RC2 algorithm is the highest.

9 XML size of 50KB: For XML size of 50KB (and above <1MB) input file with 1000 concurrent threads, it is observed that RC4 encryption algorithm has been fastest and AES seems to be the slowest in encrypting the xml. The CPU utilized for RC4 is the lowest and AES algorithm is the highest.

10 Conclusion: The above case study showcase the performance of each of ARCFOUR, AES, Blowfish, RC2, RC4 and Rijndeal java crypto algorithms. The average execution time for encryption by each of the algorithm is increased with the data to be encrypted. However it is observed that RC4 encryption algorithm is very optimistic in resource utilization (in terms of CPU) and execution time. The encryption algorithm AES found to be expensive in overall performance. The performance of various algorithm discussed in the case study are graphically represented below for encrypting different xml sizes with a concurrent load of 1000 threads.

11 References & Appendix The following websites has been referred to gain knowledge on JCE.

12 Author Biography PardhaSaradhi did masters and a Bachelor of Engineering in Electrical and Electronics from India. He has started perusing his career in IT industry from 2004 and been working with top IT clients all over the globe from last thirteen years in performance engineering & testing domain. Pardha has been analysing performance issues raised by various banking and telecom clients. He has been providing technical solutions for Java based applications with performance improvements. Combining his expertise in Performance engineering and interest in exploring new methodologies to improve the productivity of his team, Pardha has created many frameworks to analyse and identify application bottlenecks quickly.

13 Thank You!!!

Download ppt "Optimal Performance of Java Encryption"

Similar presentations

Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University.

Creating HIPAA-Compliant Medical Data Applications with Amazon Web Services Presented by, Tulika Srivastava Purdue University.
TIE Extensions for Cryptographic Acceleration Charles-Henri Gros Alan Keefer Ankur Singla.

TIE Extensions for Cryptographic Acceleration Charles-Henri Gros Alan Keefer Ankur Singla.
Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.

Topic 7: Using cryptography in mobile computing. Cryptography basics: symmetric, public-key, hash function and digital signature Cryptography, describing.
Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.

Cryptography. 2 Objectives Explain common terms used in the field of cryptography Outline what mechanisms constitute a strong cryptosystem Demonstrate.
Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.

Cryptography and Authentication Lab ECE4112 Group4 Joel Davis Scott Allen Quinn.
Principles of Information Security, 2nd edition1 Cryptography.

Principles of Information Security, 2nd edition1 Cryptography.
Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.

Security Overview Hofstra University University College for Continuing Education - Advanced Java Programming Lecturer: Engin Yalt May 24, 2006.
Java Security Model Lab#1 I. Omaima Al-Matrafi. Safety features built into the JVM Type-safe reference casting Structured memory access (no pointer arithmetic)

Java Security Model Lab#1 I. Omaima Al-Matrafi. Safety features built into the JVM Type-safe reference casting Structured memory access (no pointer arithmetic)
LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.

LAB#2 JAVA SECURITY OVERVIEW Prepared by: I.Raniah Alghamdi.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Edward Tsai – CS 239 – Spring 2003 Strong Security for Active Networks CS 239 – Network Security Edward Tsai Tuesday, May 13, 2003.

Edward Tsai – CS 239 – Spring 2003 Strong Security for Active Networks CS 239 – Network Security Edward Tsai Tuesday, May 13, 2003.
Wireless Encryption By: Kara Dolansky Network Management Spring 2009.

Wireless Encryption By: Kara Dolansky Network Management Spring 2009.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.

Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the reasons for having system.
Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.

Dr Alejandra Flores-Mosri Security Internet Management & Security 06 Learning outcomes At the end of this session, you should be able to: –Describe the.
Signing, Sealing, and Guarding Java TM Objects Li Gong and Roland Schemers Javasoft, Sun Microsystems, Inc. “In This Paper, We Describe a Few New Constructs.

Signing, Sealing, and Guarding Java TM Objects Li Gong and Roland Schemers Javasoft, Sun Microsystems, Inc. “In This Paper, We Describe a Few New Constructs.
Chapter 2 Architectural Models. Keywords Middleware Interface vs. implementation Client-server models OOP.

Chapter 2 Architectural Models. Keywords Middleware Interface vs. implementation Client-server models OOP.
Sinaia, Romania August, 2014 14 TH Workshop “Software Engineering Education and Reverse Engineering” Dhuratë Hyseni, Betim Çiço South East European University.

Sinaia, Romania August, TH Workshop “Software Engineering Education and Reverse Engineering” Dhuratë Hyseni, Betim Çiço South East European University.
.Net Security and Performance -has security slowed down the application By Krishnan Ganesh Madras.

.Net Security and Performance -has security slowed down the application By Krishnan Ganesh Madras.
每时每刻 可信安全 1The DES algorithm is an example of what type of cryptography? A Secret Key B Two-key C Asymmetric Key D Public Key A.

每时每刻 可信安全 1The DES algorithm is an example of what type of cryptography? A Secret Key B Two-key C Asymmetric Key D Public Key A.

Similar presentations

Ads by Google