SafeNet, The Foundation of Information Security
 
 
 
sample image
Blank
   SafeXcel 1141 Security Co-Processor
Blank
Customized solutions from world-renowned designers.

SafeXcel 1141 - Security Co-Processor

The SafeXcel™-1141 is a highly integrated VPN security co-processor optimized for very cost-sensitive designs.

Overview

It is designed specifically to accelerate IPSec and incorporates security engines for the following operations:

  • IPSec ESP and AH transforms
  • Basic encrypt/decrypt and hash operations
  • Public Key operations
  • Random Number Generation operations

The SafeXcel-1141 implements security features in hardware unavailable with any other chip solution in its price range, including:

  • ESP and AH header insertion and validation, including SPI and replay counter processing
  • Full AH 'mutable bit' processing, including IPv4 option and IPv6 extension headers
  • HMAC ICV validation on inbound packets
  • Automatic IV generation and insertion

With the SafeXcel-1141, host processors can off-load not only VPN packet transforms, but also cryptographic computations needed for key management handshaking (i.e. IKE) - which can seriously affect system performance. The public key processor in the SafeXcel-1141 typically provides more than 10 times the performance of a 32-bit RISC processor.

Cost-Effective Acceleration
The SafeXcel-1141 provides the optimum price-performance point for low-to mid-range systems. By accelerating only the critical and processor-intensive security functions, it provides an excellent value proposition.

Efficient Security Processing
The SafeXcel-1141 truly offloads the host processor, freeing it to execute its networking functions and leaving room for future feature growth. The system integration features in the SafeXcel-1141 were carefully designed to remove performance bottlenecks. By performing virtually all of the security protocol steps on-chip, multiple bus movements are avoided and operations may be pipelined to minimize latency.

Security Software Toolkits

QuickSec Toolkit
TheSafeXcel-1141 also reduces development time when used with SafeNet's proven QuickSec Toolkit. Unique in the security market, the QuickSec seamlessly interfaces with any SafeXcel security processor and configures for any combination of host processor and operating system. Capable of taking full advantage of the features in the SafeXcel-1141, QuickSec also provides a rich suite of commands for IKE and key management features while also transparently providing a path for future upgrades of software and hardware.

The QuickSec Toolkit leverages SafeNet’s track record and experience in developing IPSec / IKE / X.509 solutions to the leading vendors in the industry. QuickSec provides application-specific, high-value network access features, allowing quick time to market with guaranteed and proven interoperability.

The QuickSec Toolkit implements the following for Access Networks:

  • IPSec security layer functionality:
    - IPSec packet layer
    - IKE authentication protocol
    - X.509 certificate based authentication
  • TCP/IP firewall
Related Links
Related Documents
     Company | Site Map | Privacy Statement | Contact Us | Send Feedback | Terms & Conditions of Sale
     © 2009 SafeNet Inc. All rights reserved. | Use of this website signifies your agreement to the Terms of Use.