Vendor: Rambus, Inc. Category: Symmetric Crypto

In-line Multi-Protocol Cipher Engine

The EIP-96 is an Inline Cryptographic Accelerator designed to accelerate and offload the very CPU intensive IPsec, MACsec, SRTP, …

Contact Provider Request Datasheet

Overview

The EIP-96 is an Inline Cryptographic Accelerator designed to accelerate and offload the very CPU intensive IPsec, MACsec, SRTP, SSL, TLS and DTLS protocol operations. The In-line Multi-Protocol Engine is suited for communications processors and other general-purpose processors that require maximum data plane offload to dedicated security hardware. The Multi-Protocol Engine accommodates designs that already include Packet Classifiers (such as NPUs) as well as designs that require bulk crypto processing without any flow processing. In addition, the Multi-Protocol Engine can be used in various SoC architectures, even 'look-a-side' architectures.

Key features

  • IPSec (IPv4 and IPv6):
    • Full IPSec packet ESP/AH transforms according to latest RFCs (2403, 2404, 2405, 2410, 3566, 3602, 3686, 4106, 4301, 4303, 4308, 4309, 4543, 4868, 4869, 6054
  • and 6379),
    • IPSec ESP and AH tunnel & transport mode,
    • Complete IPSec (IPv4/IPv6) Header/Trailer processing,
    • Insert ESP/AH header for outbound packets, strip and verify ESP/AH header for inbound packets,
    • Anti-replay check,
    • Calculate and insert Integrity Check Value for outbound packets, strip and verify for inbound packets,
    • Append (outbound) / strip and verify (inbound) padding up to 255 bytes.
  • MACsec
    • MACsec frame transforms according to IEEE
  • 802.1AE
    • SecTAG insertion and removal,
    • PN insertion, removal and verification
    • ICV generation, insertion, removal and verification
  • SSLv3.01 / TLSv1.0 / TLSv1.1 / TLSv1.2 / DTLS
    • Packet transforms according to latest RFCs (2246, 4346, 4347, 5246, 5288, 5289, 6101, 6347 and 6460)
    • Full header processing
    • All packets are processed autonomous, including length correction based on pad-length.
  • SRTP packet transforms according to RFC3711
  • Wireless algorithm support
    • Kasumi f8 and Kasumi f9
    • SNOW 3G integrity or authentication
    • ZUC integrity or authentication
  • SA (context) records
    • Optimized Security Association format (Context Record).
    • Supports unlimited number of Security Associations.
    • Support for 64-bit addressing.
    • Optional support for sequence number masks up to 384 bits wide.

Benefits

  • Complete HW/SW system.
  • High-speed Crypto Packet Engine
  • Silicon-proven implementation
  • Fast and easy to integrate into SoCs.
  • Flexible layered design.
  • Complete range of configurations.
  • World-class technical support.

Applications

  • SSL
  • TLS
  • DLTS
  • IPsec
  • Communication protocols

What’s Included?

  • Documentation
    • Hardware Reference and Programmer Manual
    • Integration Manual
    • Verification Specification
    • Operations Manual
  • Synthesizable Verilog RTL source code
  • Self-checking RTL test bench, including test vectors and expected result vectors
  • Simulation scripts
  • Synthesis scripts
  • Configurations:
  • Many different configurations available:
    • Gate counts range from : 300-609k gates, depending on number of supported algorithms
    • IPsec 5000Mbps using AES and SHA-1
    • MACsec 6000Mbps using AES-GCM
    • SSL/TLS/DTLS 5000Mbps using AES and SHA-1
  • For more information about this product or the all the different configurations, please contact Rambus: https://www.rambus.com/contact

Specifications

Identity

Part Number
PacketEngine-IP-96 (EIP-96)
Vendor
Rambus, Inc.
Type
Silicon IP

Files

Product Sheet Download

Note: some files may require an NDA depending on provider policy.

Provider

Rambus, Inc.
HQ: USA
Rambus delivers industry-leading chips and silicon IP for the data center and AI infrastructure. With over three decades of advanced semiconductor experience, our products and technologies address the critical bottlenecks between memory and processing to accelerate data-intensive workloads. By enabling greater bandwidth, efficiency and security across next-generation computing platforms, we make data faster and safer.
Contact Rambus, Inc.

Learn more about Symmetric Crypto IP core

Google, Quantum Attacks, and ECDSA: Why There’s No Need to Panic and Why Preparation Matters Now

Over the past several weeks, we’ve seen growing discussion across the industry about Google’s latest publications on quantum computing and cryptography. In some corners, those discussions have quickly escalated into claims that widely deployed elliptic curve cryptography (ECC), including ECDSA, is on the verge of collapse. Customers are understandably asking questions: Has ECDSA been broken? Are today’s systems suddenly at risk? Do migration timelines need to change?

RoT: The Foundation of Security

The goal of this white paper is to provide a primer introduction to RoT and how to choose a right RoT as the trust anchor for a novel hardware based security architecture

Frequently asked questions about Symmetric Cryptography IP cores

What is In-line Multi-Protocol Cipher Engine?

In-line Multi-Protocol Cipher Engine is a Symmetric Crypto IP core from Rambus, Inc. listed on Semi IP Hub.

How should engineers evaluate this Symmetric Crypto?

Engineers should review the overview, key features, supported foundries and nodes, maturity, deliverables, and provider information before shortlisting this Symmetric Crypto IP.

Can this semiconductor IP be compared with similar products?

Yes. Buyers can compare this product with similar semiconductor IP cores or IP families based on category, provider, process options, and structured technical specifications.

×
Semiconductor IP