Multiplies Performance by a Factor of 10; Includes Onboard Pattern Matching
Engine
SAN FRANCISCO, Feb. 15 /PRNewswire/ -- RSA Conference Booth #201 -- Seaway
Networks today at the RSA Conference introduced the Trident NCA2000-L7P
Intrusion Prevention Accelerator Card, a complete IDS/IPS system-on-a-card for
use in intrusion detection/prevention and content filtering appliances. The
Trident card enables application developers and security equipment
manufacturers to transform standard rack-mount 1U/2U servers into high
performance appliances that eliminate the need for network administrators to
purchase multiple boxes, while allowing vendors to avoid time-consuming
in-house hardware development.
The Trident Intrusion Prevention Accelerator integrates Seaway's patented
StreamWise(TM) content processing architecture with a new proprietary pattern
matching engine engineered to maximize detection accuracy without negatively
affecting performance. The 64-bit/133MHz PCI-X 1.0 board provides 2 Gbps
(full duplex) of data path processing including full layer 2-7 processing and
pattern matching, delivering a tenfold performance improvement over current
software-based solutions.
The card overcomes the limitations of single-purpose security appliances
built from off-the-shelf servers. The products now in the marketplace force
end users to stack multiple appliances to address different threats and
achieve sufficient throughput to support the whole enterprise. With the
Trident card, vendors can quickly assemble powerful multipurpose appliances
that reduce capital investment, administrative overhead and physical space
requirements for end users while also providing maximum protection against
network attacks.
"Seaway's Trident platform combines multigigabit TCP termination with
content inspection, including memory-efficient regex acceleration and support
for software-based algorithms, to defend against multi-layer attacks," said
Sanjay Iyer, Senior Analyst of the Linley Group and co-author of A Guide to
Security and Content Processors. "This is a unique combination of features
that enables equipment vendors to develop multifunction security appliances
that can actually deliver multigigabit throughput while providing protection
against blended threats."
The Trident card is the latest addition to Seaway's NCA-2000 family of
network content acceleration cards for application firewalls, network
surveillance/forensics, content switches, firewall/VPN systems, and other
systems requiring high performance layer 2-7 processing. The card
functionality, including the new pattern matching engine, will be incorporated
into Seaway chip solutions now under development.
Patented Processing Power
Seaway's patented silicon technology delivers 10 times the performance of
software-based solutions in part by offloading processing from software to
hardware, enabling security appliance manufacturers to support multi-gigabit
data rates and multiple simultaneous security applications including pattern
recognition, protocol analysis, traffic anomaly detection and protocol anomaly
detection in a single system. The company's StreamWise(TM) architecture is
the only multi-gigabit solution that combines full layer 2-7 processing with
TCP reassembly and on card switching technology that controls up to 2 million
simultaneous sessions.
Trident Stateful Pattern Matching Engine
Trident's 2 Gbps onboard pattern matching engine dramatically improves
detection accuracy by detecting stateful relationships between regular
expression (regex) patterns across an entire data session. The engine
supports up to 16,000 patterns without impacting performance, allows new
patterns to be added instantaneously rather than waiting hours for a
recompilation, and reduces memory requirements by a factor of 10 through a
unique design that eliminates pattern explosion. The engine also offers
built-in case insensitivity, repetition, nested rules, and predefined/user-
defined character classes.
Software
The Trident card comes with the Seaway Regular Expression API for creation
and updating of the pattern database; reference application software; and a
suite of system software that includes a full network stack for packet
processing, host processor drivers, and API libraries for packet processing,
content processing and pattern searching. New features and applications can
be added with familiar tools such as the C programming language, reducing
coding effort and minimizing development time.
Availability
The Trident Intrusion Prevention Accelerator Card is sampling now.
Product demonstrations can be seen at the RSA Conference booth # 201. Each
card comes with two GBE copper or SFP fiber interfaces, with software and
documentation included.
About Seaway Networks
Seaway Networks is a provider of high performance, silicon-based, content
processing solutions for advanced networking equipment. Seaway's
StreamWise(TM) family of semiconductor and board level products with
associated software dramatically accelerates system performance while enabling
a range of advanced content and security processing features in security
systems and other applications that require high performance layer 4-7
processing. For more information, visit http://www.seawaynetworks.com , email
info@seawaynetworks.com , or call 613-723-9161.
SOURCE Seaway Networks
 back to top
Related links:
http://www.seawaynetworks.com
http://2005.rsaconference.com/us
CONTACT:
Tony Keller for Seaway Networks,
+1-719-634-8279, or tony@sspr.com
|
