The Ensigma Unified Security Processor (USecP) combines the IPSec, MACSec and DTLS engines into a single unified multi-protocol processing engine supporting eight 1Gbps ports or one 10Gbps port. It is part of the Ensigma security IP portfolio.

 

USecP supports IPSec specific functions

  • ESP protocol processing
  • IPV4 and V6 packet processing
  • AES-GCM for encryption and authentication
  • Anti –replay verification
  • Both transport and tunnel mode support
  • 1Gbps and 10Gbps support

See Security (IPSec) Protocol Processing Engine for further details.
UNISec-Integrated-System

 

USecP also supports MACsec specific functions

  • Compliance with IEEE 802.1AE standard
  • AES-GCM for Crypto and Authentication
  • Decryption and ICV verification on Ingress
  • Encryption and Authentication with ICV generation and insertion on Egress
  • Anti-replay verification on Ingress
  • MACsec header (SecTAG) insertion and removal
  • MIB Counter update as per the MACsec standard
  • 1Gbps and 10Gbps support

See Ensigma High-Performance (MACSec) Processing Engine for further details.

 

USecP also supports DTLS specific functions

  • 1Gbps DTLS protocol processing
  • No other protocol present in DTLS configuration
  • AES-128-CBC-HMAC-SHA1 for Encryption and Authentication