Rustls Outperforms OpenSSL and BoringSSL
www.memorysafety.org
ISRG has been investing heavily in the Rustls TLS library over the past few years. Our goal is to create a library that is both memory safe and a leader in performance. Back in January of this year we published a post about the start of our performance journey. We've come a long way since then and we're excited to share an update on Rustls performance today. What is Rustls? Rustls is a memory safe TLS implementation with a focus on performance.
  • KamikazeRusher@lemm.ee
    8·
    9 days ago

    Some of the notes highlight that performance differences in specific tests were due to AVX-512 support. I’d like to see a post going into detail about what challenges the libraries (or their dependencies) went through to get that integrated and how much of an increase came from it.

  • patrick@lemmy.bestiver.seEnglish
    61·
    9 days ago

    This article is so weird. “We outperformed our competitors because Intel improved the performance of the AWS owned cryptography library we use.”

    So like…what did you guys do? Don’t get me wrong, I’m not saying that you did nothing, but your career would go better if you put it in the article that is specifically for bragging about your accomplishment.

    • FizzyOrange@programming.dev
      161·
      9 days ago

      Unless the binary size difference is insane, who would say “oh well we were going to pick the library that wasn’t riddled with security issues but we decided to save 2MB instead, hope that makes you feel better about your $12m cybersecurity fine!”.

      • KamikazeRusher@lemm.ee
        4·
        9 days ago

        There are only going to be edge-cases where the binary size will really cause headache. Individual projects probably won’t worry too much about a size difference if it’s less than 10-20MB.

          • KamikazeRusher@lemm.ee
            6·
            9 days ago

            I don’t doubt that some places care about a 1MB size difference. After all, some embedded systems with limited storage need every megabyte they can spare.

      • JoYo@lemmy.mlEnglish
        43·
        9 days ago

        yes, i know people that will pay 12m to save 2mb.

    • Solemarc@lemmy.world
      38·
      9 days ago

      I can’t be bothered to build them but looking at the releases on GitHub openssl 3.4.0 is 17.5mb and rustls is 2.6mb. both of these releases are source files not binaries but I don’t see how rustls could possibly be larger than openssl.

      • Username@feddit.org
        16·
        9 days ago

        Comparing source code sizes is completely meaningless. Rust projects are usually smaller with far more granular dependencies.