optimized AES GCM

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

optimized AES GCM

From:	Nikos Mavrogiannopoulos
Subject:	optimized AES GCM
Date:	Wed, 01 Jun 2011 17:04:44 +0200
User-agent:	Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.17) Gecko/20110424 Thunderbird/3.1.10

Hello,
 I've ported Andy Polyakov's GCM code for intel processors using
PCLMULQDQ instruction and benchmarked it. The difference is quite
impressive:

Nettle's AES and GCM:
Testing DH_ANON_AES_128_GCM_SHA256 with 15360 packet size: Processed
259.65 Mb in 5.00 secs: 51.92 Mb/sec
Testing ANON_DH_AES_128_CBC_SHA1 with 15360 packet size: Processed
274.53 Mb in 5.00 secs: 54.88 Mb/sec

Andy's assembly code (AES-NI + PCLMULQDQ):
Testing DH_ANON_AES_128_GCM_SHA256 with 15360 packet size: Processed
1.87 Gb in 5.00 secs: 0.37 Gb/sec
Testing ANON_DH_AES_128_CBC_SHA1 with 15360 packet size: Processed
671.59 Mb in 5.00 secs: 134.29 Mb/sec


The CPU was: Intel(R) Xeon(R) CPU X5670  @ 2.93GHz

regards,
Nikos

[Prev in Thread]

Current Thread

[Next in Thread]

optimized AES GCM, Nikos Mavrogiannopoulos <=

Prev by Date: Re: Problem building master
Next by Date: Re: gnutls 2.99.2
Previous by thread: Re: Problem building master
Next by thread: Re: gnutls 2.99.2
Index(es):
- Date
- Thread