Chrysalis-ITS Set to Eliminate SSL Performance Bottlenecks at the Edge of the Network


(PDF, Link)

Chrysalis Semiconductor Division Outlines Plans

for High Performance Security Protocol Processing ICs and Software
that Enable High Speed SSL Processing Solutions.

Chrysalis Semiconductor, a division of Chrysalis-ITS, a leader in
network security processing, intends to eliminate performance
bottlenecks associated with cryptographic protocol processing.
Current security ICs perform only raw encryption acceleration and
fail to properly address the development issues faced by network
system architects. Chrysalis-ITS intends to eliminate the
pervasive problem of incomplete protocol processing and provide
comprehensive software and system integration as part of a total
systems solution.

Building on its systems security expertise and leveraging the
comprehensive software developed for its flagship Luna(R) 340
semiconductor, Chrysalis Semiconductor will further enhance its
software development and system integration environment to enable
OEMs to make use of its advanced performance network security ICs,
the Luna 500 series, which will be announced later this year.

Luna 500 series of cryptographic processors provide all the
symmetric and asymmetric processing for the acceleration of Secure
Socket Layer (SSL) session set up and Internet Key Exchange
Protocol (IKE) session set up processing. Product plans include
three ICs, setting new industry benchmarks, with single chip
performance as high as 40,000 SSL session set-ups per second.

“The Luna 500 series will not only deliver the highest performance
of any SSL session negotiation IC but Chrysalis Semiconductor will
provide the software development and systems integration
environment that will enable OEMs to take full advantage of the
IC’s performance. This means system architects will finally have
all the tools required to build high performance security into
their products.” said Stephen Davis, Chief Architect, Chrysalis

Chrysalis Semiconductor has succeeded in developing products that
remove asymmetric cryptography as a system bottleneck in high-end
web servers, switches, and other data center appliances. Secure
transactions will no longer consume a large portion of network
appliance resources. The first two ICs in the Luna 500 series,
the Luna 510 and Luna 520 will provide 10,000 and 20,000 SSL
session setups per second respectively and will sample to lead
customers, early in the fourth quarter of 2001.

The Luna 510 and 520 ICs will sample with an evaluation platform,
developed in conjunction with PMC-Sierra’s 64-bit RM7000A
microprocessor. The evaluation platform provides system designers
with a development and testing environment for the firmware
associated with the Luna 510 and Luna 520, a front end processor,
a test bed for measuring the performance of the Luna 510 in a high
end system running Linux and OpenSSL, and a reference design
detailing how the Luna 510 can be integrated with a general
purpose CPU.

The Luna 500 series ICs are designed for use in any product
implementing security mechanisms where high-speed digital
signatures are required. This includes products that implement
SSL, IPSec, Secure XML, Time Stamping and Public Key
Infrastructure (PKI). The chips will be used in network equipment
such as load balancers, web switches, IP Service Switches, SSL
Gateways, caching appliances, e-commerce servers.

“Processing security protocols is quite complex. Using its
security experience, Chrysalis-ITS has developed a set of chips
that deliver the security features, such as complete protocol
processing, that OEMs need, as well as awesome SSL performance.
The company’s emphasis on software as well as hardware will ease
the OEM’s design task,” says Linley Gwennap, Principal Analyst of
The Linley Group.

SSL can break switching and caching infrastructures if not
processed properly. Web switches claiming to support over 2
million web connections per second with over 100 Gigabit of
bandwidth, could find the function nullified by the use of SSL,
yet security is essential to enable trusted e-commerce. Chrysalis
Semiconductor addresses this problem and revolutionizes the
processing of SSL by offloading the entire record and session
set-up protocol. To achieve this Chrysalis Semiconductor focused
on the design and implementation of three crucial elements:
high-speed crypto engines, software that integrates these engines
into systems to efficiently process security protocols, and an
easy to use driver/API environment that is O/S independent. “It is
this total solution that appeals to our customers,” notes Mark
Taber, Vice President Sales and Marketing, Chrysalis

About Chrysalis Semiconductor, a Division of Chrysalis-ITS Inc.

The Semiconductor Division of Chrysalis-ITS provides network
infrastructure OEMs with IC-based solutions, which allow them to
offer security services to their end customers. These solutions
are designed to be trusted, easy to integrate, and to process
security protocols without impeding system throughput. The
solutions consist of ICs, software, and circuit boards. With a
“Security Engine” from Chrysalis-ITS, security becomes a routing
decision for the system OEM, eliminating the need for network
equipment vendors to keep up with the ever changing and complex
array of security protocols, algorithms, and standards.

Founded in 1994, Chrysalis-ITS is headquartered in Ottawa, Canada,
with offices in London, UK; Boston MA, and Mountain View, CA. The
company website is

Chrysalis-ITS, Chrysalis-ITS logo, Luna, and Ultimate Trust are
trademarks or registered trademarks of Chrysalis-ITS Inc. All
others mentioned herein are property of their respective owners.



Chrysalis-ITS Inc.

Published by danlargo

Entrepreneur, Triathlete, Yogi, Geek 🇨🇦 🏊🏼 🚴🏼 🏃🏼 OD : 2:01 🏃🏼 🏃🏼 🏃🏼 10k : 35:20 🏋🏼 🏃🏼 🏃🏼 Ultra Beast Finisher

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

%d bloggers like this: