The IEEE has ratified the 802.1AE?2006 Media Access Control Security (MACsec) standard which offers connectionless user data confidentiality, frame data integrity, and data origin authenticity for LANs, metropolitan optical networks and other applications. The MACsecsecurity design consists of a data plane protocol which protects frames traversing the network. A companion key agreement protocol is specified in IEEE 802.1X?REV (previously defined in 802.1af).
The data plane protocol defines the frame format for data encapsulation, encryption, and authentication using the high performance authenticating cipher GCM?AES. Elliptic's LLP-05 is embedded in the data encapsulation ?decapsulation module within the MAC Client to perform the tasks associated with the MACsec standard.
Flow through architecture
Throughput - 4 Gbps to 20 Gbps per direction
Low latency design
Selectable latency minimum or constant over all frame sizes
GCM-AES fully compliant with NIST Special Publication 800-38D (the GCM standard) and FIPS PUB 197
Build option for full-duplex, Rx-only, or Tx-only operation
Configurable number of CAs (Connectivity Associations) from 1 to 16
Configurable number of SCs (Secure Channels)
Configurable number of SCs for ingress with a range from 1 to 256
Layer Management Interface (LMI) for management plane processor
Verilog HDL Source Code
Sample synthesis script and constraints
Sample simulation script
Communications, Data Processing, Industrial and Medical, Military/Civil Aerospace