The Linley Group: Security Processor and Accelerator Report

A Guide to Security Processors and Accelerators, Seventh Edition

PUBLISHED JUNE 2008

Authors:  Bob Wheeler and Linley Gwennap
Price:      $2,995  (single copy)
Pages:     142

What's New in this Edition
Table of Contents
List of Figures
List of Tables

Ordering Information

PDF (337 KB) This downloadable PDF contains the complete table of contents, list of figures, list of tables, preface, and executive summary.

An In-Depth Look at Chips for Network-Security Applications

The network-security market remains as dynamic as the threats that are driving its growth. Security-equipment vendors must scale the performance of their VPN/firewall products while adding application-level features. To satisfy enterprise customers, security-software vendors are turning to hardware-accelerated appliances for intrusion prevention (IDS/IPS), antivirus, antispam, and content filtering. The convergence of these hardware and software products is creating Unified Threat Management (UTM) platforms, which have the most demanding processing requirements.

For anything above SOHO-class equipment, standard processors alone can no longer deliver the required performance in a cost-effective and power-efficient manner. As a result, security-equipment and -software vendors turned first to accelerators (coprocessors) for encryption and later for content inspection. Today, a new breed of processors is taking integration to the next level by integrating one or more CPUs, memory and I/O controllers, and special-purpose engines for security functions. These integrated security processors are replacing the combination of a standard processor plus accelerator for many new designs.

Get Up to Speed Quickly

This report covers processors that integrate high-throughput encryption, such as Cavium's Octeon, RMI's XLR/XLS, Freescale’s MPC8572, and Intel's Tolapai. We also cover unique processors from Netronome and Tilera, which integrate 40 or more cores and target network-security applications. In addition, the report examines vendors developing content-inspection accelerators: LSI (Tarari), NetLogic, and cPacket. Finally, we cover IPSec and SSL accelerators from Broadcom, Cavium, Hifn, and SafeNet. With one report, you can quickly compare the key vendors and their products and accelerate your selection process.

This report analyzes each vendor and each product, probing their strengths and weaknesses and presenting key details in a consistent, easy to compare fashion. For example, we have sorted through various performance claims to put all the security processors on a level playing field, showing who can deliver real system throughput. We also tell you who can really do packet processing and who is just pretending.

Make Informed Decisions

As the leading vendor of technology analysis for networking silicon, The Linley Group has the expertise to deliver a comprehensive look at these technologies. Authors Bob Wheeler and Linley Gwennap use their broad experience to deliver the technical and strategic information you need to make informed business decisions. And in case you are not familiar with all of the concepts involved in this combination of encryption and networking, the report includes several introductory chapters that define and describe terms such as Diffie-Hellman, SHA-2, and FIPS 140-2.

This report is written for:

• Engineers who are designing networking equipment and need to select a security processor or accelerator.
• Marketing and engineering staff at companies that sell networking chips that connect to security processors or accelerators.
• Technology professionals who wish an introduction to security processors or content inspection.
• Financial analysts who desire a detailed analysis and comparison of security-processor companies and their chances of success.
• Carriers and service providers who need to get up to speed on this technology.