Check AES Intrinsics Settings

While most modern hardware systems enable AES Intrinsics by default, you can check these settings yourself to confirm their use.

An Oracle NoSQL Database installation using the SSL/TLS encryption gets better performance if it can take advantage of hardware acceleration available on the host machine.

Most SSL cipher suites use the AES encryption algorithm, and most modern processors support hardware acceleration for AES. To confirm that a Java installation is taking advantage of AES hardware acceleration, check to see if AES intrinsics are enabled. You can get that information by printing flag values for the Java virtual machine from your terminal using the -XXPrintFlagsFinal flag, as follows. Then, search for the two boolean flags UseAES, and UseAESIntrinsics. In this example, results show that AES intrinsics are enabled.

java -XX:+PrintFlagsFinal -version | grep 'AES\|Intrinsics' 
bool UseAES = true {product} {default} 
bool UseSSE42Intrinsics = true {ARCH product} {default} 
java version "10.0.2" 2018-07-17 
Java(TM) SE Runtime Environment 18.3 (build 10.0.2+13) 
Java HotSpot(TM) 64-Bit Server VM 18.3 (build 10.0.2+13, mixed mode)

Setting AES Intrinsics

For best performance, enable AES intrinsics on all machines that support them. If not enabled when you run the check just described, you must specify -XX:+UseAES and -XX:+UseAESIntrinsics for every JVM command line that uses SSL, using these flags:

java -XX:+UseAES -XX:+UseAESIntrinsics [...]

You can add these two flags to the JVM options for RNs by setting the configProperties parameter. See Replication Node Parameters .

Client applications that make calls to the NoSQL API, should specify these system properties on the Java command line for the application.