是否可以通过HTTPS运行所有网络流量? [英] Will it ever be possible to run all web traffic via HTTPS?
问题描述
我正在考虑将所有网络流量移动到HTTPS(技术上)需要什么。我认为电脑越来越快,速度越来越快,所以从现在开始,有可能通过HTTPS运行所有流量,没有任何明显的成本。
I was considering what would it take (technologically) to move all the web traffic to HTTPS. I thought that computers are getting faster, and faster, so some time from now it will be possible to run all traffic via HTTPS without any noticeable cost.
但是再一次,我以为,加密的力量必须发展,以抵御安全性的损失。如果电脑的速度要快10倍,那么加密必须要强10倍,否则会更容易破解。
But then again, I thought, encryption strength will have to evolve to counter the loss of security. If computers get 10x faster, encryption will have to be 10x stronger, or it will be 10x easier to break.
所以,我们能否加密所有网络流量免费?
So, will we ever be able to encrypt all web traffic "for free"?
编辑:我只询问计算性能提升的逻辑vs加密。如果我们在20年内可以使用相同的加密算法和密钥,那么它们将占用服务器(或客户端)总体计算能力的百分比要低得多,实际上这将使其免费加密和签署所有内容我们通过网络传输。
I'm asking only about the logic of performance increases in computing vs encryption. If we can use the same crypto algorhytms and keys in 20 years, they will consume a far lower percentage of the overall computing capacity of a server (or client), and in effect, that will make it "free" to encrypt and sign everything that we transmit over networks.
推荐答案
使用HTTPS的一个重大问题是它被认为是安全的,因此大多数网络浏览器不要做任何缓存,或至少做非常有限的缓存。
One of the big issues with using HTTPS is that its considered secure and so most web browsers don't do any caching, or at least do very limited caching.
没有缓存,你会注意到HTTPS页面加载速度明显变慢,而非加密页面
Without the cache, you'll notice that HTTPS pages load significantly slower and a non-encrypted page would.
HTTPS应用于保护敏感信息。
HTTPS should be used to protect sensitive information.
我不知道运行中的CPU影响一切通过SSL。我会说在客户端,CPU并不是问题,因为大多数工作站大部分时间都在闲置。由于正在处理的并发请求数量庞大,所以大程序将在Web服务器端。
I have no idea about the CPU impact of running everything through SSL. I would say that on the client side, the CPU isn't an issue since most workstations are running idle most of the time anyway. The big program would be on the web server side due to the sheer number of concurrent requests that are being handled.
为了达到SSL基本上免费,您必须拥有加密专用硬件(今天已经存在)。
In order to get to the point that SSL is basically 'free', you'd have to have dedicated hardware for encryption (which already exists today).
编辑:根据评论,问题的作者建议这是他正在寻找的答案:
EDIT: Based on the comments, the question's author suggests this is the answer he was looking for :
使用加密已经很快,
特别是考虑到我们' re
使用CPU周期与数据
传输。加密密钥不需要
来获得更长的时间。我不认为这是
任何技术原因为什么这是
不切实际。
- David Thornley
更新:我刚读到 Google的SPDY协议(旨在替换HTTP)看起来像在每个连接上使用SSL。因此,Google认为这是可能的!
UPDATE: I just read that Google's SPDY protocol (designed to replace HTTP) looks like it will use SSL on every connection. So, it looks like Google thinks that it's possible!
为了使SSL成为底层传输
协议,为了更好的安全性和
与现有网络
基础设施的兼容性。虽然SSL
引入延迟处罚,但我们
认为网络的长期未来
取决于安全网络
连接。另外,使用
SSL是必要的,以确保现有代理
之间的
通信不被破坏。
To make SSL the underlying transport protocol, for better security and compatibility with existing network infrastructure. Although SSL does introduce a latency penalty, we believe that the long-term future of the web depends on a secure network connection. In addition, the use of SSL is necessary to ensure that communication across existing proxies is not broken.
这篇关于是否可以通过HTTPS运行所有网络流量?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
