Cavium Speeds XML Security

MOUNTAIN VIEW, Calif. -- Cavium Networks, a worldwide leader in security, network services and embedded processor solutions, today announced the addition of Java Cryptographic Extensions (JCE) software support to its extensive software offering for the NITROX Security Processor Family. NITROX Processors and NITROX XL Accelerator Boards with JCE software will accelerate security processing for Java based Web applications by up to 5X. Such applications are being increasingly used in the Data Center in a variety of equipment including XML Appliances and security & application-aware gateways.

The rapid growth of Java-based web services is adding a processing burden to data center servers and appliances. The critical nature of the data being processed by this equipment requires the transactions to be secured further adding to the processing burden. Industry leading NITROX Security Processors are used in the data center equipment to off-load the critical security processing. The JCE software release for NITROX Security Processors provides this security off-load capability for Java developers.

JCE Software Development Kit Details The NITROX JCE SDK includes Java Cryptographic Extensions (JCE) complying with the industry standard Java Cryptographic Architecture (JCA). The SDK implements a set of packages that provide a subset of the cryptography aspects of the Java Security API as in J2SDK. The JCE is based on the same design principals as J2SDK, which uses the notion of a Cryptographic Service Provider, or "provider" for short.

The NITROX JCE SDK provider provides support for a variety of symmetric and asymmetric encryption algorithms including ARC4, DES, 3DES, AES. Asymmetric encryption acceleration is provided for RSA PKCS v1.5 and hash and HMAC generation for SHA-1 and MD5. Furthermore, it includes support for random number generation. Digital Signature generation and verification based upon PKC1 v1.5 and DSA standards and Diffie-Hellman Key Exchanges is also included.

Applications such as JSSE (Java Secure Socket Extensions) can choose NITROX JCE SDK as the provider and offload CPU extensive cryptographic operations to the NITROX security processor. JSSE package enables Java applications to do SSL/TLS handshake and bulk processing. JSSE complies with the JCA cryptographic architecture and is completely independent of the Cryptographic Service Provider. Hence it can interface seamlessly with the NITROX JCE SDK.

The NITROX Security Processor family is the fastest and most scalable product line in the industry with the richest functionality. The product family feature set includes support for a broad range of symmetric encryption including DES, 3DES, AES (all modes up to 256 bit), CCMP and ARC4, as well as asymmetric encryption including RSA and Diffie Hellman. NITROX processors offload complete packet and protocol processing for IPsec, SSL and WLAN security. This product family has been shipping in production for over 2 years and is being widely used in equipment from market leading communication and networking OEMs world-wide.

"The NITROX JCE SDK is enabling customers to achieve security performance goals for their XML and Web Services Appliances", said Rajneesh Gaur, Director of Product Marketing at Cavium Networks. "It offers a rich feature set and ease-of-use, and integrates easily into customer systems using the industry leading NITROX Security Processor Family."

Availability and pricing The NITROX JCE SDK is available today. For pricing please contact your Cavium Networks sales representative.

Cavium Networks Inc.