Manualshelf

White Papers

ManualsBrandsDell ManualsConverged InfrastructureServers Solution Resources
123
© 2018 Dell Inc. or its subsidiaries. All Rights Reserved. Dell, EMC and other trademarks are trademarks of Dell Inc. or its subsidiaries
Supported Operations (cont)
Algorithm chaining (one cipher and one hash in a single operation)
Authenticated encryption (AES-GCM, AES-CCM)
AES-XTS
Wireless
KASUMI, Snow 3G and ZUC in encryption and authentication modes
Asymmetric (Public Key) Cryptography
Modular exponentiation for Diffie-Hellman (DH)
RSA key generation, encryption/decryption and digital signature generation/verification
DSA parameter generation and digital signature generation/verification
Elliptic Curve Cryptography: ECDSA, ECDHE, Curve25519, SM2
Compression/Decompression DEFLATE (Lempel-Ziv77) & Huffman.
Introducing Optional Software Licenses for Intel
®
QAT in PowerEdge MX
Intel
®
QAT has a long history with the deliveries of the 8920 model and the subsequent 8955 on PCIe cards. In the
Intel
®
Xeon
®
Processor Scalable Family, Intel
®
is making the next generation of Intel
®
QAT available with significantly
improved performance in a chipset-integrated version. Dell EMC is offering hardware-enabling licenses for chipset
Intel
®
QAT on the MX series blade servers (MX740c and MX840c). These licenses can be installed without the need to
add hardware to the system and occupy slots. Depending on the license level installed and the performance level
desired, the chipset based Intel
®
QAT will be programmed to offer the bandwidth performance as defined below,
mimicking the performance of the latest model 8960 and model 8970 PCIe cards. The licenses are installed through the
iDRAC license manager.
Intel
®
QAT Optional License
Compression
Encryption
RSA
28 Gb/s
40 Gb/s
40K Ops/s
65 Gb/s
100 Gb/s
100K Ops/s
Software
Software is provided through the Intel open source site https://01.org/intel-quickassist-technology. The applicable
drivers are associated with the C62x chipset. Application and library examples are posted here along with the API
reference manuals, allowing users to build upon these open source libraries and examples or build their own
applications. Release notes identify operating system compatibility.
Openssl
Openssl is a software library that implements cryptographic functions that secure communications over computer
networks. It implements the aforementioned protocols SSL and TLS. OpenSSL versions 1.1.0 and beyond now have
asynchronous support for hardware accelerators, which helps achieve power, performance, cost, capacity and efficiency
benefits discussed above. Prior to this support, all cryptographic function calls were performed in a synchronous
manner, which meant that any given CPU thread was “blocked” awaiting the result of an operation. With asynchronous
operation, several operations can be queued for Intel
®
QAT engine, and the responses can be collected and consumed
as soon as they are completed in rapid succession. The following resources describe how to get Intel
®
QAT working
with openssl:
https://www.openssl.org/source/
https://github.com/01org/QAT_Engine
https://github.com/openssl/openssl
Instructions to use openssl to integrate with applications such as NGINX web server and HAProxy, a load balancer and
proxy, can be found on https://01.org/intel-quickassist-technology. NGINX has been demonstrated to handle more
connections per second with the benefit of Intel
®
QAT.