Which encryption method(s) have the best performance?

  • We have a situation where we are trying to connect to SQL Server over a VPN.  The performance of the VPN is unbearable.  We are trying to figure out some other alternatives.  We have considered using some other encryption protocol in SQL Server 2000 to see if it is faster than the VPN. 

    Does anyone have any suggestions as to what encryption protocol will be the fastest?  Is there a comparison chart anywhere that could give us any information?

  • Which VPN? I'm not sure the overhead is substantially worse in one v the other. I'm sure a hardware VPN works better than PPTP in software, but bandwidth is likely the big limiting factor. What type of connnections do you have?

  • Steve is probably right, bandwidth is usually the issue with VPN's or implementing the wrong sort of VPN (such as software VPN's instead of VPN's on a dedicated router).

    As far as which protocol is faster / better? Always benchmark and test test test. Usually the performance statistics that one person publishes on a protocol is very specific to the workload and type of data that is being pushed through. Encryption and Compression heavily rely on what type of data is being used, the method, and hardware behind it. Some methods are optimised for different hardware, and so perfom differently in different environments.

    The only way to know for sure which is better is to try different ones in your development envionment, under the same workload/conditions that you expect the production environment to suffer. Repeat the same abuse under each different protocol you want to try, and also make sure you test unencrypted and VPN-less so you can verify the performance loss is actually happening in the VPN. Don't turn off encryption in your production environment of course!


    Julian Kuiters
    juliankuiters.id.au

Viewing 3 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Login to reply