This case study examines the architectural improvements made to the Intel® Xeon® E5 v3 processor family in order to improve the performance of the Galois/Counter Mode of AES block encryption. It looks at the impact of these improvements on the nginx* web server when backed by the OpenSSL* SSL/TLS library. With this new generation of Xeon processors, web servers can obtain significant increases in maximum throughput by switching from AES in CBC mode with HMAC+SHA1 digests to AES-GCM.
The Intel Academic Program announces new software projects for security coursework, labs and experiments. These tools support the Intel Security Curriculum Series and can be used in general aspects of security instruction. Peruse our first projects on the Advanced Encryption Standard (AES), Trusted Boot, Identity Protection and Digital Random Number Generator (DRNG) here on the Security tab: http://software.intel.com/academic
AES-NI is a new security feature available on the latest Intel® Atom™ Z3000 processors (codename Bay Trail). AES-NI provides a set of hardware instructions onboard the processor that implement some of the intensive sub-steps of the AES algorithm. This yields additional performance when performing AES cryptographic operations. This blog discusses a method of adding encryption and decryption that utilizes AES-NI in a Windows 8 C# app.
- Page 1