http://www.elliptictech.com/ New products from Elliptic en-ca Copyright Elliptic Technologies Mon, 09 Nov 2009 23:23:41 -0500 http://elliptictech.com/products-clp-100.php Tue, 04 Aug 2009 09:00:00 EDT The CLP-100 Flow-Through Hash Core offers designers the ability to stream a message into the core directly from a MAC or other streaming interface and compute the cryptographic hash or digest which is then presented on the output FIFO. The core can be configured with one or more hash algorithms depending on the target application. http://www.elliptictech.com/middleware_SRTP.php Fri, 12 Jun 2009 09:00:00 EDT The ESS-05 Ellipsys-SRTP Toolkit offers a software toolkit which facilitates the implementation of SRTP systems ranging from low bit rate voice over IP (VoIP) applications to high-definition video streaming. The ESS-05 offers the option to implement either an all software solution using the ESS-01 Ellipsys software library or when hardware cores are available in the target system, offload can be supported through a Board Support Package (BSP). The toolkit was developed on a Linux/PC environment, has been ported to a Freescale PowerQUICC III processor and is licensed as C source code. http://www.elliptictech.com/products-clp-46.php Wed, 14 Jan 2009 09:00:00 EST The third generation SPAcc (Security Protocol Accelerator) offers designers unprecedented configurability to address multiple security requirements that are commonplace in today's multi-function, high-performance SoC designs. Increasingly, these designs include security at the MAC layer (i.e. WiMAX, Wi-Fi or 3GPP/LTE), VPN security with IPsec and/or SSL and applications layer security such as SRTP. Compounding the challenge is the need to support high throughput requirements with mixed packet size traffic characteristics combined with low latency requirements to preserve Quality of Service requirements in voice applications. http://www.elliptictech.com/middleware.php Wed, 17 Dec 2008 09:00:00 EST Security IP provider Elliptic today announced the launch of its Ellipsys Security Architecture (ESA). As a leading supplier of security IP for the last six years, Elliptic has developed and licensed a portfolio of robust embedded security products that encompass symmetric and asymmetric cryptography, IPsec, secure boot and content protection through DTCP. ESA combines these solutions into an overall framework that provides an efficient and portable software solution for embedded security designs. It offers the flexibility to add hardware offload engines either from Elliptic or through cryptographic cores available in popular processors from Intel, Freescale, AMCC and Raza Microelectronics among others Customers can pick and choose among the components available in the Elliptic Security Architecture. The ESS-01 for example offers symmetric algorithms that are used in most modern cryptographic solutions including: AES, DES/3DES,SNOW 3G, KASUMI, SHA-1 through SHA-512 and MD5 The asymmetric library - the ESS-02, offers a complete set of RSA and ECC algorithms. The RSA functionality is compliant to the PKCS #1 reference implementation with support for both the v1.5 (IETF RFC2437) and v2.1 (IETF RFC3447) algorithms including: RSA Encryption and Decryption, RSA Key Generation, RSA Signing and Verificatio,ASN.1 Encoding and Decoding, ECC Encryption and Decryption, ECC Key Generation and ECC Signing and Verification. ESA offers significant performance enhancements for the 160-bit prime field ECC algorithm along with the five NIST (National Institute of Standards and Technology) recommended prime field curves (192-, 224-, 256-, 384- and 521-bit curves). The 160-bit algorithm achieves higher performance through the addition of fast 160-bit multipliers. The NIST prime field algorithms are enhanced through reduction code for 32-bit platforms which offers a 29% speed improvement to embedded developers implementing design on ARM, MIPS and PowerPC platforms. Elliptic offers a complete Digital Transmission Content Protection (DTCP) stack as part of the ESA which is fully compliant to the standard published by the DTLA. It supports DTCP-IP natively and can be adapted to multiple operating systems and any of the physical interfaces specified by the DTLA. It is licensed in C source code to facilitate porting to the target embedded system. Elliptic plans to extend the solution to support WirelessHD and will be offering a derivative product to support HDCP Version 2 early in 2009. Platform security is supported through the ESS-04 Secure Boot tool kit which offers a reference implementation of secure boot and secure update to cryptographically verify and optionally decrypt code before booting the processor. This ensures that the code being executed has not been accidentally or maliciously changed by a hacker. The tool kit supports an all-software solution or hardware key storage and acceleration when required. Lastly, the ESS-03 Linux IPsec middleware solution offers a drop-in solution to accelerate IPsec performance with Elliptic or third party hardware offload engines. Customers are increasingly pressing the limits of software capabilities in IPsec and integrating hardware offload is becoming common place. The ESS-03 provides a ready-made solution which supports multiple Elliptic hardware offload engines and it can be enhanced to adapt to cryptographic accelerators that are now available in many commercial processors. All ESA components are available for immediate licensing. Existing customers of the previous release of Ellipsys are encouraged to upgrade and special incentive pricing to encourage the upgrade is available during the 90-day introductory period. http://www.elliptictech.com/pdf/CLP-41_80708f.pdf Tue, 08 Jul 2008 09:00:00 EDT The CLP-41f core implements the SNOW 3G stream cipher that forms the heart of the 3GPP confidentiality algorithm UEA2 and the 3GPP integrity algorithm UIA2. The standard is governed by a European Telecommunications Standards Institute (ETSI) document - SNOW 3G Algorithm Specification Version 1.1. The CLP-41f implements a flow-through or in-line version of the core although the core can also be provided as a look-aside engine. The base cipher can be supplemented by wrapper to offer both the confidentiality and authentication algorithms. http://www.elliptictech.com/products-llp-04.php Mon, 16 Jun 2008 09:00:00 EDT The IEEE has ratified the 802.1AE Media Access Control Security (MACsec) standard which offers connectionless user data confidentiality, frame data integrity, and data origin authenticity for LANs, metropolitan optical networks and other applications. The MACsec security design consists of two elements - a key agreement protocol specified in 802.1af/802.1X-REV, and a data plane protocol which protects frames traversing the network. The data plane protocol defines the frame format for data encapsulation, encryption, and authenticity using the high performance authenticating cipher GCM-AES. Elliptic's LLP-04 is based on its silicon proven GCM-AES core with support for 802.1af/802.1X-REV offered through Elliptic's Ellipsys Middleware. http://www.elliptictech.com/products-clp-43.php Mon, 26 May 2008 09:00:00 EDT The CLP-43 MULTI2 Flow-Through core implements the MULTI2 encryption and decryption algorithms for all key sizes via a FIFO based data interface. The algorithm is based on the ISO 9979/0009 Algorithm Register Entry and supports ECB, CBC, OFB and CFB block cipher modes of operation as specified by NIST Special Publication 800-38A. http://www.elliptictech.com/middleware_Secure_boot.php Fri, 07 Mar 2008 09:00:00 EST Secure boot can greatly enhance the security of an embedded system by cryptographically verifying that the code being loaded and executed is authentic and has not been unknowingly or maliciously modified. Once the domain of high security applications, the techniques are now being adopted by a broad range of products such as mobile phones, set-top boxes and networking systems such as base stations. The ESS-04 offers a software toolkit which facilitates the implementation of secure boot. It allows developers to implement secure boot systems using software only constructs or to use hardware offload engines to simplify and accelerate the required verification or decryption operations in the target system. The toolkit is licensed as C source code to allow it to be ported to the target system. http://www.elliptictech.com/products-clp-42.php Mon, 03 Mar 2008 09:00:00 EST The CLP-42 core is designed for DVB receiver applications, and implements a flow-through decryption core supporting the ETSI specified Common Scrambling Algorithm (CSA). The CSA cipher is used to protect MPEG-2 content in the European Pay-TV service used in Digital Video Broadcast applications. The cipher is also used in the European Broadcasting Union (EBU) for Digital Satellite News Gathering (DSNG) applications, where it provides the confidentiality algorithm within the Basic Interoperable Scrambling System (BISS) Mode 1 and Mode E specifications. http://www.elliptictech.com/produchttp://www.elliptictech.com/products-clp-41.phpts-clp-41.php Mon, 12 Nov 2007 09:00:00 EST The CLP-41 core implements the SNOW 3G stream cipher that forms the heart of the 3GPP confidentiality algorithm UEA2 and the 3GPP integrity algorithm UIA2. The standard is governed by ETSI document - SNOW 3G Algorithm Specification Version 1.1. The CLP-41 implements a flow-through or in-line version of the core although the core can also be provided as a look-aside engine. The base cipher can be supplemented by wrapper to offer both the confidentiality and authentication algorithms. http://www.elliptictech.com/middleware_IPsec.php Thu, 30 Aug 2007 09:00:00 EDT The ESS-03 offers a reference design for integrating either the CLP-25 or CLP-36 ESP/AH Offload Engines into Linux IPsec. Linux IPsec is a robust, open platform that has been widely adopted by embedded software developers. The challenge in integrating hardware offload has been finding the optimum method of substituting hardware offload function for software processes. The ESS-03 offers an offload solution for both IPv4 and IPv6 implementations of IPsec and is available in C source code to speed time to market and through a complete reference solution from Elliptic. http://www.elliptictech.com/products-clp-38.php Tue, 21 Aug 2007 09:00:00 EDT The CLP-38 core implements the KASUMI cipher. The KASUMI cipher is specified in the SAGE/ETSI document â€oeSpecification of the 3GPP TS 35.202 V7.0.0 (2007-06)”. The algorithm implements a block cipher that produces a 64-bit output from a 64-bit input using a 128-bit key. The standard requires both a confidentiality algorithm known as f8 and an integrity algorithm known as f9 - both can be implemented in the CLP-38. http://www.elliptictech.com/products-clp-37.php Mon, 25 Jun 2007 09:00:00 EDT The CLP-37 core implements the Camellia cipher. Camellia has a block size of 128 bits, and can use 128-bit, 192-bit or 256-bit keys with either 18 rounds (if the key is 128 bits) or 24 rounds (if the key is 192 or 256 bits). Camellia is in broad use in applications such as IPsec and SSL and has been accepted for use in the European Union's NESSIE and the Japanese CRYPTREC projects. http://www.elliptictech.com/products-esm-05.php Fri, 08 Jun 2007 09:00:00 EDT Elliptic pioneered the concept of an ESM as a self-contained semiconductor IP module which when integrated onto a target chip and combined with Ellipsys software creates a robust security system. The ESM-05 cryptographically signs the device in a way that is extremely difficult and expensive for a counterfeiter to copy. Recommended for all new ASICs in networking and storage solutions or as an high value added feature in any new SoC, the ESM-05 is available for immediate licensing.