Versions Compared

Version Old Version 3 New Version 4
Changes made by

Stefan Paetow

Stefan Paetow

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Some Because the ABFAB infrastructure requires each party in the transaction to have been authenticated to the infrastructure, a certain performance penalty is incurred the first time the parties engage in the infrastructure. 

The below performance statistics for use by NREN and Trust Router operators illustrate these penalties to allow them to set expectations for Moonshot authentication requests for the operators of services on their trust router infrastructures.

Test Network

There are four trust routers in the test infrastructure in a tree configuration:

  • L1 - The main (top level) trust router to which the APC is connected, as well as one IDP (L1-IDP) and one RP (L1-RP).
  • L2 - The first level down-stream trust router, to which one IDP (L2-IDP) and one RP (L2-RP) are connected.
  • L2A - Another first level down-stream trust router, to which one IDP (L2A-IDP) is connected.
  • L3 - The second level down-stream trust router, to which one IDP (L3-IDP) and one RP (L3-RP) are connected.

...

  •  

The trust router connections are as follows:

  • L1 has both L2 and L2A as down-stream trust routers
  • L2 has L3 as a down-stream trust router

Methodology

Each of these timings was obtained by restarting all TID and RADIUS servers for all services to ensure that new keys are obtained for all parties in the chain. This way a maximum time in an ideal configuration was obtained.

...