A
Guide to Security Processors and Accelerators
Eighth Edition
PDF
(267 KB) This downloadable PDF contains
the complete table of contents, list of figures, list of tables,
preface,
and
executive
summary.
An
In-Depth Look at Chips for Network-Security Applications
The network-security market remains as dynamic as the threats
that are driving its growth. Security-equipment vendors must
scale the performance of their VPN/firewall products while adding
application-level features. To satisfy enterprise customers,
security-software vendors are turning to hardware-accelerated
appliances for intrusion prevention (IDS/IPS), antivirus, antispam,
and content filtering. The convergence of these hardware and
software products is creating Unified Threat Management (UTM)
platforms, which have the most demanding processing requirements.
For anything above SOHO-class equipment, standard processors
alone can no longer deliver the required performance in a cost-effective
and power-efficient manner. As a result, security-equipment
and -software vendors turned first to accelerators (coprocessors)
for encryption and later for content inspection. Today, a new
breed of processors is taking integration to the next level
by
integrating one or more CPUs, memory and I/O controllers, and
special-purpose engines for security functions. These integrated
security processors are replacing the combination of a standard
processor plus accelerator for many new designs.
Get
Up to Speed Quickly
This report covers
processors that integrate high-throughput encryption, such
as Cavium's Octeon families, RMI's XLR/XLS/XLP, and Freescale’s
MPC8572 and P4080. We also cover unique processors from Netronome and Tilera, which integrate 40 or more cores and target network-security applications. In addition, the report
examines vendors developing content-inspection accelerators:
Cavium's new Nitrox DPI, LSI Tarari, NetLogic NETL7, Lionic, and cPacket. Finally, we cover IPSec and SSL accelerators from Cavium, Exar (Hifn), SafeNet, and Broadcom. With one report, you
can quickly compare the key vendors and their products and accelerate
your selection process.
This report analyzes each vendor and each product, probing
their strengths and weaknesses and presenting key details
in a consistent,
easy to compare fashion. For example, we have sorted through
various performance claims to put all the security processors
on a level playing field, showing who can deliver real system
throughput. We also tell you who can really do packet processing
and who is just pretending.
Make
Informed Decisions
As the leading vendor of technology analysis for
networking silicon, The Linley Group has the expertise to deliver
a comprehensive
look at these technologies. Authors Bob
Wheeler and Linley Gwennap use
their broad experience to deliver the technical and strategic
information
you need to make informed business decisions. And in case you
are not familiar with all of the concepts involved in this
combination
of encryption and networking, the report includes several introductory
chapters that define and describe terms such as Diffie-Hellman,
SHA-2, and FIPS 140-2.
This
report is written for:
Engineers who are designing network-security equipment
and need to select a processor or security accelerator
Marketing and engineering staff at companies that sell networking
chips that connect to security processors or accelerators
Technology professionals who wish an introduction to network-security
processors
Financial analysts who desire a detailed analysis and comparison
of security-processor
companies and their chances of success
Government researchers who need up to date information on commercial
network-security technology
©
2002-2009 The Linley Group