|
T6 is a highly integrated, hyper-virtualized 10/25/40/50/100GbE controller with full offload support of a complete Unified Wire solution comprising of TCP, UDP, iWARP, iSCSI, FCoE, SDN, TLS/SSL, DTLS, IPsec and SMB 3.X Crypto. T6 supports TLS/SSL with inline or co-processor mode cryptographic functions leveraging TCP/IP offload engine to encrypt/decrypt data at 10/25/40/50/100GbE rate. It also supports traditional co-processor mode to accelerate IPsec and SMB Direct AES. It enables encrypted authenticated media streaming (a single connection or multiple connections, each with different session keys) and provides data-at-rest encryption and fingerprint services for storage. It relies on host software or other means for IKE (key negotiation), RSA, Diffie-Hellman, Elliptic Curver Cryptography (ECC), etc. Supported Speeds and Use casesT6 supports all the most popular AES/SHA cipher suites in TLS/SSL in-line mode with 100Gbps bandwidth and less than 2ms end-to-end latency. The typical T6 adapter supports 32K simultaneous TLS sessions. The in-line mode achieves TCP/IP processing and TLS/SSL AES/SHA processing in cut-through fashion to achieve optimal bandwidth and latency. A co-processor mode of operation is supported for TLS/SSL, SMB 3.X, IPsec, data at rest encryption/decryption, authentication, and data de-dupe fingerprint generation.
The performance of the AES and SHA protocol suites is summarized in the following table:
The supported options with the AES and SHA protocols are summarized in the following tables: Cipher only modes (encryption/decryption only):
Combined cipher modes (authentication and encryption/decryption):
Authentication and generic hash modes:
|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||
