Fast And Secure Web – Alexander Krizhanovsky – PSW #669

Tempesta FW is an open source hybrid of an HTTPS accelerator and a firewall aiming to accelerate web resources and protect them against DDoS and web attacks. The project is built into the Linux TCP/IP stack to provide performance comparable with the kernel bypass approaches (e.g. using DPDK), but still be well-integrated with the native Linux networking tools. We’ll talk about Tempesta FW integration with IPtables/nftables to filter network traffic on all the layers and other tools to protect agains layer 7 DDoS and web attacks. Visit https://www.securityweekly.com/psw for all the latest episodes!

Full Episode Show Notes

Fast And Secure Web

https://github.com/tempesta-tech/tempesta – the project source code.

https://netdevconf.info/2.1/session.html?krizhanovsky – Netdev conference paper and the talk video about motivation for the project and its description

https://netdevconf.info/0×14/session.html?talk-performance-study-of-kernel-TLS-handshakes – the latest our Netdev paper (the video will be uploaded later) about our research in the performance of TLS handshakes, including analyzing of performance and security of other TLS implementations, such as mbed TLS, OpenSSL, WolfSSL (during the work we reported an SCA vulnerability for WolfSSL).

Hosts

Doug White
Doug White – Professor
Lee Neely
Lee Neely – Senior Cyber Analyst
Paul Asadoorian
Paul Asadoorian – Founder & CTO
Tyler Robinson
Tyler Robinson – Managing Director of Network Operations

Guests

Alexander Krizhanovsky
Alexander Krizhanovsky – CEO

Announcements

  • It’s official! Security Weekly, in partnership with CyberRisk Alliance, is excited to present Security Weekly Unlocked on December 10, 2020. The inaugural edition of Security Weekly Unlocked also celebrates Security Weekly’s 15th Anniversary. Registration and call for speakers is now open. Visit securityweekly.com/unlocked to submit your speaking session and register for free!