Chrysalis-ITS Launches Network Security Processing Development Platform.

ATLANTA--(BUSINESS WIRE)--Sept. 13, 1999--

NetWorld+Interop (Booth 3052) - Chrysalis-ITS a leading supplier of high performance security processing products for the networking industry today introduced its Network Security Processing (NSP (1) (Network Service Provider) An organization that provides a high-speed Internet backbone to ISPs and other service providers. Sprint, MCI and UUNET are examples of NSPs. See Internet backbones. ) Development Platform for high speed security processing solutions.

Aimed at reducing the time to design in security processing, the Chrysalis-ITS NSP Development Platform enables a new level of flexibility for network equipment vendors building next generation networking Next Generation Networking (NGN) is a broad term to describe some key architectural evolutions in telecommunication core and access networks that will be deployed over the next 5-10 years. equipment. The company will provide its NSP Development Platform to lead customers and plans to introduce its new line of Network Security Processors in early 2000.

The NSP Development Platform provides unprecedented flexibility by allowing developers to create software at the applications layer. The NSP Development Platform gives vendors confidence that their software will not have to be redesigned as their bandwidth expands for OC3, OC12 and gigabit rates.

Network Security Processing is an integral part of packet processing and network policy processing. Security processing is the most CPU CPU
in full central processing unit

Principal component of a digital computer, composed of a control unit, an instruction-decoding unit, and an arithmetic-logic unit. intensive operation in network processing, and a new generation of Network Security Processors is required to meet increasing performance demands.

To meet the challenge of processing multiple security protocols at ever faster speeds Chrysalis-ITS has developed a unique architecture to power a new generation of Network Security Processors that can handle today's edge speeds and grow to support tomorrow's requirements. Cryptographic algorithms and protocols are constantly changing and the Chrysalis-ITS NSP Development Platform provides the flexibility to accommodate future changes.

"Current design approaches cannot fully accommodate both the performance and flexibility needs of next-generation networking equipment. As a result, system architects using traditional approaches must weigh trade-offs in performance, flexibility, cost, power and/or time-to-market, and hope that the end-system will offer sufficient value to withstand the competitive pressure for that generation," explains Steve Baker, President and CEO (1) (Chief Executive Officer) The highest individual in command of an organization. Typically the president of the company, the CEO reports to the Chairman of the Board. , Chrysalis-ITS. "It is precisely this dilemma that has given rise to the Chrysalis-ITS NSP Development Platform."

First-generation network security processor solutions offer good performance at low speed and more recently at half duplex OC3. However, the growing demand for design flexibility, to cope with the volatile nature of cryptographic standards and system requirements inherent in this market, has system architects looking for more flexibility and performance.

"Programmable chips are the key enablers for the coming generation of communication systems, since standards continue to evolve" said Will Strauss, founder and president of Forward Concepts, a market research firm based in Tempe, Arizona. Mr. Strauss added, "The next generation of network security processors must incorporate programmable high-performance cryptographic protocol processing to enable implementation of VPN-enabled multi-service network solutions."

The primary components of the Chrysalis-ITS NSP Development Platform are:

- An integrated Network Security Processor

- An embedded Development Environment (firmware and support hardware)

- Driver/API software - low level (driver and kernel) software residing on a host processor

- Application Level software - Host independent higher level software

The strength of the NSP Development Platform lies in the fact that the software developer need not be concerned about anything other than application level software. Low level software is provided by Chrysalis-ITS. System designers benefit from the flexibility to support a host of layer 2 and 3 network security protocols as well as a host of asymmetric and symmetric algorithms without having to deal directly with any of the underlying code.

At the heart of the NSP Development platform is a family of next generation fully programmable NSPs now in development. The Chrysalis-ITS NSP family delivers high performance with the flexibility of programmable processors and the ease of use that comes with an extensive software development environment. The device architecture is scalable allowing Chrysalis-ITS to introduce a range of devices to meet various performance needs while maintaining the same development platform and protecting software investment.

"Working with partners in key areas, such as next generation remote access servers, mid and high speed routers and other networking equipment is central to Chrysalis-ITS' goal of enabling network vendors to deliver wire-speed solutions to their customers more quickly and cost-effectively than ever," said Mel Roberts Director, IC Business Development.

Algorithms and Protocols Supported

The NSP family architecture performs a wide range of cryptographic algorithms including: DES, 3DES, RC2, RC4, RC5, RC6(1), MARS(1), Rijndael(1), Serpent(1), Twofish(1), Blowfish, CAST, IDEA, MD2, MD5, SHA-1, RIPE-MD(128 and 160), RSA (1) (Rural Service Area) See MSA.

(2) (Rivest-Shamir-Adleman) A highly secure cryptography method by RSA Security, Inc., Bedford, MA (www.rsa.com), a division of EMC Corporation since 2006. It uses a two-part key. , DSA (1) (Directory Server Agent) An X.500 program that looks up the address of a recipient in a Directory Information Base (DIB), also known as white pages. It accepts requests from the Directory User Agent (DUA) counterpart in the workstation. , Diffie-Hellman, ECDSA ECDSA Elliptic Curve Digital Signature Algorithm
ECDSA Extended Cics Dynamic Storage Area (over GF(p) and GF(2n)), ECC (1) (Error-Correcting Code) A type of memory that corrects errors on the fly. See ECC memory.

(2) (Elliptic Curve Cryptography) A public key cryptography method that provides fast decryption and digital signature processing. (over GF(p) and GF(2n)), Esign, ElGamal, GSM A3, A5 & A8. (1)Note: potential AES standard

Protocols supported in the NSP Development Platform include IPSec (AH & ESP (1) (Enhanced Service Provider) An organization that adds value to basic telephone service by offering such features as call-forwarding, call-detailing and protocol conversion. ), IKE, MPPE (Microsoft Point-to-Point Encryption) An encryption method from Microsoft that is used to secure virtual private network (VPN) transmissions. See PPTP and MPPC.

MPPE - Microsoft Point to Point Encryption , L2TP (Layer 2 Tunneling Protocol) A protocol from the IETF that allows a PPP session to travel over multiple links and networks. L2TP is used to allow remote users access to the corporate network. , SSL (Secure Sockets Layer) The leading security protocol on the Internet. Developed by Netscape, SSL is widely used to do two things: to validate the identity of a Web site and to create an encrypted connection for sending credit card and other personal data. v2 and v3, TLS (1) (Transport Layer Security) A security protocol from the IETF that is based on the Secure Sockets Layer (SSL) 3.0 protocol developed by Netscape. TLS uses digital certificates to authenticate the user as well as authenticate the network (in a wireless , SKIP, SMIME SMIME Secure Multipurpose Internet Mail Extension
SMIME Security Multipurpose Internet Mail Extension , SET, PPP (Point-to-Point Protocol) The most popular method for transporting IP packets over a serial link between the user and the ISP. Developed in 1994 by the IETF and superseding the SLIP protocol, PPP establishes the session between the user's computer and the ISP using DES and 3DES, PPP CHAP, Microsoft CHAP v1 and v2, SPKM SPKM Simple Public Key Mechanism , SSH, RADIUS, ATM Security Specification 1.0.

About Chrysalis-ITS

Chrysalis-ITS, Inc. is a leader in programmable, high performance Network Security Processing for the networking industry. Its Luna(tm) Products, Toolkits and APIs are widely deployed in PKI, VPN and E-commerce infrastructures. Chrysalis' Network Security Processing Development Platform provides an extensive library of software and design tools to optimize performance and minimize design time. Chrysalis' advanced NSP family of system on a chip products offers networking equipment manufacturers a winning mix of flexibility, performance and scalability for next generation network security applications.

The company's Web site is located at www.chrysalis-its.com.

Chrysalis-ITS and Chrysalis-ITS logo and Luna are a trademarks or registered trademarks of Chrysalis-ITS, Inc. All other product and company names mentioned herein may be the trademarks of their respective companies.

COPYRIGHT 1999 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Publication:	Business Wire
Date:	Sep 13, 1999
Words:	898
Previous Article:	Prime Response Adds Executive Talent to Expand Global Partnerships and Strategic Marketing.
Next Article:	KeySpan Energy Acquires Rhode Island Company.
Topics:	Computer network equipment industry Network hardware industry Security services industry

Related Articles
AN EXPERIMENT IN LEARNING : CHARTER SCHOOL IN REDDING HOPES TO ENCOURAGE FUTURE SCIENTISTS.
PUNCTURING ADDICTION.
Saying Goodbye to a Friend.