First HTTPS connection is very slow in Internet Explorer 11, what can it be?

performance internet-explorer ssl https internet-explorer-11
20,013

Solution 1

I've had the same problem as well. It happens only when the HTTPS site is being accessed on a machine without internet access and only using IE.

A workaround that i've applied on LAN would be to update IE settings as described below:

Go to IE Options, advanced tab then locate security category and uncheck “Check for publisher’s certificate revocation” and “Check for server certificate revocation”. IE Settings

I've only found that workaround after seeing this post, so thanks for sharing :)

Solution 2

Since the problem happens only with HTTPS (right?) I guess that IE tries to check the revocation status of the site on the first visit. It probably caches the result, but only for the current browser session. There might be problems to reach the server responsible for the revocation (see OCSP/CRL settings inside the certificate) and thus the connection might time out. Chrome does not check revocation in most cases and Firefox might use a shorter timeout and ignore failures. You should see the attempts to get OCSP/CRL if you do a packet capture.

Share:
20,013
Naypa
Author by

Naypa

A Brazilian software developer trying to become a gray beard unix guru hacker. Beard. Check. Gray. Check. Unix. Check. Hacker. Check. Guru. Ops, not yet. 80% done!

Updated on August 01, 2020

Comments

  • Naypa
    Naypa almost 4 years

    When using Internet Explorer 11 to connect to a HTTPS site of my company, the first connection is very, very slow. Usually more than 30 seconds. After this first connection, I can browse the site with no problem. The problem just happens in Internet Explorer, it works fine in Chrome and Firefox.

    If after the first visit, I clear the cache and cookies, the next page load is quick. I have to close the browser and reopen it to reproduce the problem. Even if I let the browser idle for a couple of hours, the next visit is still quick. The problem is just in the first visit of a browser to this site.

    Below you can see the network view of the developer toolbar: Network view

    The first connection is a HTTP connection that redirects to a HTTPS connection. This connection is very slow. The two following connections are quick. If I close my browser and visit directly the third URL via HTTPS, it will also load slowly.

    Here is the Timing in the Detail view (sorry, I can't change my company browser language to English): Detail timing view of problematic request

    What can it be? How do I debug it? With this problem, it is very hard to execute automated web tests.

  • Luca Ziegler
    Luca Ziegler over 7 years
    Thank you very much this was the problem!
  • albertski
    albertski about 5 years
    I'm having the same issue. One thing that we did is move the same exact site to a different server / URL. Both use Lets Encrypt. One server has the issue that on the first load but the other does not. If one server does not have the issue shouldn't there be a way to fix this without having to have every user update their IE settings?
  • albertski
    albertski about 5 years
    Once I removed my site from Cloudflare the problem went away (Although I don't think the issue is Cloudflare but older versions of IE which were used by my clients).
  • EIIPII
    EIIPII almost 5 years
    The windows update page that is verified is described in this page: support.microsoft.com/en-ca/help/2677070/… In the case that the policy can not be updated, it is enough to make the calls to "ctldl.windowsupdate.com" fail fast.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

@Font-Face won't load via https in IE
Apache TLS (SSL) Performance
Prevent Internet Explorer from caching SSL client certificates
What makes the address bar in IE turn green?
Why is my site so slow after installing SSL?
How to test https rest webservice in postman
Need to disable "open , save , save as prompt" while opening pdf in IE11
Comodo SSL: ERR_CERT_AUTHORITY_INVALID on Chrome mobile and Opera mobile (Android)
iOS HTTPS requests 101
OS X 10.11.6 El Capitan SSLRead() return error -9841