| |
| Posedge Security Solutions |
| |
| Posedge offers Security solutions ranging from the basic building blocks (Symmetric/Asymmetric Ciphers, Authentication Engines) to High performance Protocol Processing Engines (IPSec, MACSec, and SSL/DTLS offload). The IP cores are designed with keeping the Area, Performance, and Power in perspective. Our solutions are used at the heart of the network to protect the data against the attacks and enable secure communication. |
|
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| |
| Posedge IP Security (IPSEC) Engine |
| |
| Posedge’s IPSec is a complete IPSec protocol processor for IPV4 and IPV6. The IP is highly flexible with a programmable controller for ESP/AH encapsulation and the crypto engines are implemented in hardware. The high performance
engine can process one gigabit of short IP packets per second (40 byte) at the packet level. Posedge’s IPSec provides DMA type of interface for programming pointers to the security association data, packet pointers. The DMA performs
scatter/gather data fetching and security keys along with the keys. The soft processing engine in the IPSecprocessor performs the header (ESP/AH) insertion, padding on the fly, and presents the appropriate packet segments to the hardware engines. The hardware engines perform the encryption and authentication in sequence or in parallel depending on in-bound or out-bound traffic. |
|
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| |
| Posedge-L2SEC – High-Performance IEEE 802.1AE (MACSec) Processing Engine |
MACSec provides data confidentiality, data integrity, and data origin authentication at the link layer (Layer-2 of the OSI model) using AES-GCM (Galois Counter Mode) self-authenticating cipher.
Posedge-L2SEC implements the complete MACSec data plane functionality. It performs functions such as AES-GCM, Classification & Filtering, SecTAG processing, Anti-Replay check, ICV verification, and MIB Statistics. The engine can process the MAC frames up to 10Gbps full-duplex throughput for all packet sizes. It is highly configurable and easy to integrate. |
|
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| |
| Posedge CRDMA Engine (Crypto DMA) |
| |
| PE-CRDMA is a DMA (AHB/AXI) engine with crypto blocks to off-load crypto engine processing. The engine is used in conjunction with a protocol processor to realize CRDMA, MACSEC protocols. The IP is flexible to route data between the crypto and authentication blocks for efficient data throughput |
|
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| |
| Posedge Unified Security Engine (UNISec) |
| |
| Posedge Unified Security Engine (UNISec) is a multiple protocol processing engine. The IP core can support eight 1Gbps ports or one 10Gbps port. The architecture handles different security protocols like MACSec, IPSec and DTLS. It addresses the universal issue of IT Security by providing information security and integrity against the rise of security breaches with increased data traffic. |
|
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| |
| Posedge-SSL-1.2 - Posedge-SSL SSL IPSEC VPN protocol processor |
| |
| Posedge-SSL is a complete SSL VPN protocol processor. The IP has posedge-TOE engine for complete TCP processing and session termination. posedge-SSL IP is highly flexible with a programmable controller for encapsulation and the crypto engines are implemented in hardware. |
|
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| |
| |
| Posedge-IPSEC-1.0 - IP Security Protocol Processing Engine |
| |
| Posedge-IPSEC-1.0 is a complete IPSEC protocol processor for IPV4 and IPV6. The IP is highly flexible with a programmable controller for ESP/AH encapsulation and the crypto engines are implemented in hardware. The engine is very powerful and can process a Gigabit of short IP data. |
|
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| |
| Posedge AES Crypto Engine |
| |
Posedge AES Crypto Engine IP is a Silicon-proven high performance crypto core. The core is flexible and can be configured for various data rates and sizes depending on the application. The design supports EBC, CBC, and CTR modes of operation and is used in variety of applications including high end security devices implementing IPSEC. |
|
----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| |
| Posedge DTLS Engine |
| |
| Posedge Datagram Transport Layer Security (DTLS) is defined RFC4347 of the Network Working Group of the IETF. It primarily provides communications privacy for datagram protocols and allows client/server applications to communicate in a way that prevents eavesdropping, tampering, or message forgery. The DTLS protocol is based on the Transport Layer Security (TLS) protocol and provides equivalent security guarantees. DTLS preserves the datagram semantics of the underlying transport layer data and unlike TLS that needs to run over a connection oriented protocol, DTLS is suited for connectionless protocols such as UDP. |
|
| |
