Home
Search results “Cryptodev linux openssl version”
What is SSL ACCELERATION? What does SSL ACCELERATION mean? SSL ACCELERATION meaning & explanation
 
03:44
What is SSL ACCELERATION? What does SSL ACCELERATION mean? SSL ACCELERATION meaning - SSL ACCELERATION definition - SSL ACCELERATION explanation. Source: Wikipedia.org article, adapted under https://creativecommons.org/licenses/by-sa/3.0/ license. SUBSCRIBE to our Google Earth flights channel - https://www.youtube.com/channel/UC6UuCPh7GrXznZi0Hz2YQnQ SSL acceleration (TLS acceleration) is a method of offloading processor-intensive public-key encryption for Transport Layer Security (TLS) and its predecessor Secure Sockets Layer (SSL) to a hardware accelerator. Typically this means having a separate card that plugs into a PCI slot in a computer that contains one or more co-processors able to handle much of the SSL processing. SSL accelerators may use off the shelf CPUs, but most use custom ASICs and RISC chips to do most of the difficult computational work. The most computationally expensive part of an SSL session is the SSL handshake, where the SSL server (usually an SSL webserver) and the SSL client (usually a web browser) agree on a number of parameters that establish the security of the connection. Part of the role of the SSL handshake is to agree on session keys (symmetric keys, used for the duration of a given session), but the encryption and signature of the SSL handshake messages itself is done using asymmetric keys (contained in the certificates), which requires more computational power than the symmetric cryptography used for the encryption/decryption of the session data. Typically a hardware SSL accelerator will offload processing of the SSL handshake while leaving it to the server software to process the less intense symmetric cryptography of the actual SSL data exchange, but some accelerators handle all SSL operations and terminate the SSL connection, thus leaving the server seeing only unencrypted connections. Modern x86 CPUs support Advanced Encryption Standard (AES) encoding and decoding in hardware, using the AES instruction set proposed by Intel in March 2008. Allwinner Technology provides a hardware cryptographic accelerator in its A10, A20, A30 and A80 ARM system-on-chip series, and all ARM CPUs have acceleration in the later ARMv8 architecture. The accelerator provides the RSA public-key algorithm, several widely used symmetric-key algorithms, cryptographic hash functions, and a cryptographically secure pseudo-random number generator.[1] TLS 1 was first defined in RFC 2246 in January 1999 as an upgrade to SSL Version 3. Because TLS is essentially an updated form of SSL, TLS session acceleration is essentially the same thing as SSL acceleration. As stated in the RFC, "the differences between this protocol and SSL 3 are not dramatic, but they are significant enough that TLS 1 and SSL 3 do not interoperate." TLS 1 does include a means by which a TLS implementation can downgrade the connection to SSL 3. The current version of TLS (1.2) was defined in RFC 5246 in August 2008. It is based on the earlier TLS 1.1 specification.
Views: 198 The Audiopedia
DPDK: one of the most important enabling technologies for NFV
 
01:37
Originally Published on TelecomTV.com 25 Sep 2014 http://www.telecomtv.com/articles/news/dpdk-one-of-the-most-important-enabling-technologies-for-nfv-11755/ --- We know…  there are already more telecoms and networking acronyms in circulation than there are human brain cells to store them. But here’s one you should at least know about (so you can put it to work in meetings to impress your friends and confound your enemies).  DPDK stands for Data Plane Development Kit and it’s already risen to prominence at the electronics end of the market as it’s fundamental to the next phase in telecoms development. One of the reasons Network Functions Virtualisation has become a live issue now (rather than, say, five years ago) is that commodity hardware - in particular multi-core, high performance processors made in the main by Intel - are now deemed capable of handling all but the highest of the high packet loads that are a feature of data networks today. Most experts would still say that big iron routers. for instance, won’t in the immediate future be replaced by commodity servers, but just about everything else that currently stands between one end of a data session and the other in the form of some sort of custom hardware-driven box, can now be virtualised and run on commodity hardware. The DPDK is a set of libraries and drivers for fast packet processing on x86 platforms. Using these, developers can invoke all those basic tasks at high speed - such as sending and receiving packets, using algorithms to capture specific packets and so on. These are the fundamental building blocks that enable developers to go on to build things like packet forwarding, firewall apps and so on, on top. When ASICs (application-specific integrated circuits) arrived 20 to 30 years ago they created a revolution in packet processing, allowing low-cost end-user and core network devices to work on tasks that would have needed vast “disintegrated” computers to accomplish previously. Intel’s DPDK might be seen as enabler of the ‘virtual’ or software ASIC, thus completing the circle. Video above: Attendees at the DPDK Summit tell us why Intel’s DPDK has risen to prominance. It allows people to do in pure software on commodity hardware what you needed specific, custom-made ASICs to do before, and for that reason it is one of the enabling technologies for  Network Functions Virtualisation.
Views: 555 TelecomTV
Barracuda Networks solves the small packet problem with DPDK
 
03:52
Originally Published on TelecomTV.com 26 Oct 2014 http://www.telecomtv.com/articles/idf/barracuda-networks-solves-the-small-packet-problem-with-dpdk-11863/ --- Big packets weren't much of a problem with a conventional network stack, but the real issue is when you get a flood of small packets. DPDK allows developers to achieve fast throughput with small packets on commodity hardware and pure software, for which they previously needed custom made and expensive ASICs. Filmed at the DPDK Summit, San Francisco, 8 September, 2014.
Views: 46 TelecomTV