Skip to main content

Is TLS Fast Yet?

Ilya Grigorik (Google)
Location: 212 Level: Advanced
Average rating: ****.
(4.79, 28 ratings)
Slides:   external link

TLS has exactly one performance problem: not enough sites are using it. Everything else can and will be optimized. In this session we will take a tour of the available optimizations and best practices:

- Leveraging CDNs and edge nodes to minimize latency.
- Reducing and eliminating RTTs with abbreviated handshakes.
- Reducing computational costs with session resumption.
- Reducing buffering latency for interactive traffic and maximizing throughput for bulk delivery.
- Optimizing certification validation, leveraging certificate pinning and HSTS.
- Configuration and deployment best practices: enabling False Start, Forward Secrecy, and more…

All that, plus a survey of popular servers and CDNs and where they stand with respect to all these features. TLS is not slow, it’s unoptimized. Let’s fix that.

Photo of Ilya Grigorik

Ilya Grigorik


Ilya Grigorik is a web performance engineer and developer advocate at Google, where his focus is on making the web fast and driving adoption of performance best practices.