Monday, January 15, 2007

Mistletoe Chip Integrates VPN, Firewall and DoS Capabilities

Mistletoe Technologies, a start-up based in Cupertino, California, introduced a security system-on-a-chip (SoC) solution that puts VPN, firewall and denial of service prevention applications in silicon.

The Mistletoe chip enables system manufacturers to add hardware-based, value-add capabilities such as anti-virus and intrusion detection and prevention (IDP) services without sacrificing system performance or security. Specifically, the new VF2110 chip provides enterprise-class security performance and protection for the SMB market.

Mistletoe said its patented RDX (Re-loadable Direct Execution) technology enables systems to offer high-performance anti-virus processing and deep packet inspection for application-level protection. The RDX technology intelligently processes Layer 4-7 network data using a purpose-built application specific integrated circuit (ASIC).

Mistletoe Technologies' VF2110 is a dedicated security ASIC that reduces latency and consistently provides 200 Mbps firewall and virtual private network throughput for all packet sizes. It supports two Gigabit Ethernet ports, which can be extended to support a variety of Gigabit and Fast Ethernet port configurations with an inexpensive external Ethernet switch chip. Targeting the performance requirements of the SMB, the VF2110 supports 65,000 sessions, 300 policies and 250 tunnels. The VF2110 also supports a variety of mechanisms to detect and prevent intrusions and attacks including:

  • Stateful signatures

  • Protocol anomaly detection

  • Traffic anomaly detection

  • Reconnaissance deterrence

  • Layer 2 detection (Address Resolution Protocols (ARP) attacks)

  • DoS and DDoS detection

  • Spoofing detection

Systems based on the Mistletoe RDX technology are already shipping and are in active deployments.http;//

See also