Investigating the efficiency of cryptographic algorithms in online transactions (2006)

Author(s): Lamprecht C, van Moorsel A, Tomlinson P, Thomas N

    Abstract: Web Service security is an important factor for Web Services to gain increased acceptance. This paper presents how message level security is achieved in web services interactions and we evaluate a number of commonly used cryptographic algorithms to determine which are most suitable for the task. In particular we explore whether VeriSign’s Trusted Services Integration Kit (TSIK) is a viable option for realising this. Furthermore, through measurement of TSIK as well as of an implementation using Java Cryptography Extensions (JCE), we conclude that TSIK provides an adequate level of security with minimal additional overheads. However, it would benefit from using SHA-256 and IDEA in future releases as well as decreasing algorithm operation time when processing larger messages.

      • Journal: International Journal of Simulation: Systems, Science & Technology
      • Volume: 7
      • Issue: 2
      • Pages: 63-75
      • Publisher: United Kingdom Simulation Society
      • Publication type: Article
      • Bibliographic status: Published
      Staff

      Dr Nigel Thomas
      Reader in Performance Engineering

      Professor Aad van Moorsel
      Head of School, Professor