[Openvpn-users] cipher speed vs. security

[Jon B. <jon...@la...>]

openssl and thus openvpn supports a wide number of ciphers to encrypt 
with. Some are faster
than others, significantly faster. Others are significant weaker than 
others.

Assuming that the implementation is correct, i can see 2 ciphers that i 
might consider using, namely
blowfish and aes, since i consider them just as secure.

blowfish cbc     85955.51k    91289.94k    93026.82k    93183.32k    
91864.71k
aes-128 cbc      30871.89k    31260.69k    31642.28k    31615.66k    
31645.70k

Blowfish scores about twice as much in the openssl speed benchmarks, 
but what does this
mean for actual throughput of the openvpn tunnel? Does the 
encryption/decryption take up
most of the cpu? or is it lower?



JonB