mongodb SSL encryption with application makes slow.

mongodb SSL encryption with application makes slow.
Can somebody help on this
LVL 12
Prabhin MPDevOps EngineerAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

David FavorLinux/LXD/WordPress/Hosting SavantCommented:
Correctly configured SSL has very little performance effect on well tooled sites.

1) Describe your App code calling Mongo.

2) If there's a public URL which can be tested post the URL.

3) If there's a public IP + port to test your Mongo instance, post this also.

Note: Well tooled, means good caching layer on top of Mongo, similar to how WordPress caching plugins work or normal Apache caching works.
Prabhin MPDevOps EngineerAuthor Commented:
I cannot provide the access since the application is used internally.
It's is an java application which is configured with self signed certificate using openssl.
Application is too slow when we use this.
My question is Is this happening  due to self signed certificate?? Or should I use valid certificate from any provider?,
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
If App is used internally, then just remove SSL from Mongo + ACL your Mongo instance with iptables.

Note: ACL, meaning... only certain IPs can connect to your Mongo instance, so no SSL is required.

Java tends to be slow itself. If the Java SSL binding being used is written in Java (shudder) rather than being a thin calling layer to the OpenSSL libraries, the SSL binding in use may actually be the problem.

Certificate signing should have no speed effect... well... number of bits for key will make a slight difference, although I use 4096 bit keys on all sites I manage, so more likely the binding you're using is pure Java, rather than calling OpenSSL libraries.
Active Protection takes the fight to cryptojacking

While there were several headline-grabbing ransomware attacks during in 2017, another big threat started appearing at the same time that didn’t get the same coverage – illicit cryptomining.

Prabhin MPDevOps EngineerAuthor Commented:
I understood what you are saying, as per the security team comments we have to  setup ssl between app and mongodb.  It would be great If somebody  suggest to increase speed of applications to 50% using  SSL.
David FavorLinux/LXD/WordPress/Hosting SavantCommented:
You'll likely have to hire someone to debug this, as debugging will require access to your internal infrastructure to do problem determination + fixing.
Prabhin MPDevOps EngineerAuthor Commented:
there is no infrastructure issue.  without ssl it works fast
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.