SSL/TLS Offload Engine

Secure protocol communication by hardware

Our SSL/TLS engine accelerates and offloads processing for encryption / decryption and authentication in SSL / TLS by combining our TCP offload and crypt engine.

Since the record layer processing is completely hardware offloaded, the user application can overwhelmingly reduce the CPU load which only needs preparing the data to transfer securely.

In addition, by creating the SSL/TLS tunnel between the terminal and the host, the high performance and low latency VPN is possible.

Two types of IP are available, one for embedded devices and the other for servers.

HW takes over high-performance, low-latency secure communication and contributes to power consumption reduction

With PTU (TLS extension) integrated with the crypto engine, the data transmission process in SSL / TLS is completed with full hardware.
Even if a dedicated HW is used for encryption, memory transfer occurs before and after encryption in a normal system. This is because the TCP / IP protocol stack is separated (left figure).
However, with Intellectual Highway’s TLS-enhanced PTU, there is no extra memory transfer of encrypted data or data required for the TLS protocol (right figure). Therefore, high-performance, low-latency secure communication is achievable.

• Our SSL/TLS accelerators are software-integrated and can be applied to any applications to speed up processing and reduce CPU load.
• For example, if your service uses OpenSSL, simply adding on an FPGA card written with our SSL/TLS accelerator to the server machine will improve performance of the service and the CPU power can be dedicated to the application without changing user applications.