NITROX HSM Adapters

FIPS 140-2 level 2 and 3 certified hardware security module (HSM) solution for your public cloud infrastructure

NITROX Hardware Security Module Adapters

The Marvell® NITROX® XL FIPS Adapter family is the world's most flexible, highest performing and secure FIPS 140-2 level 2 and 3 certified Hardware Security Module (HSM) solution. The family consists of half height / half length Gen 2.0 x8 PCIe adapters deliver a scalable solution from few hundred RSA ops/sec to 45,000 RSA ops/sec for 2048b key. Additionally, some members of this family support multiple partitioned HSMs in a single physical HSM Adapter thereby providing the most flexible solution for multi-tenant/multi-domain cloud infrastructure.

With support for KVM, Xen, Linux, FreeBSD and other operating systems, the NITROX XL FIPS adapter is a perfect embedded HSM solution for servers and appliances such as web servers, L4+ Switches, load balancers, networking/server appliances, unified threat management appliances, remote access servers, public key infrastructure and database servers. NITROX XL FIPS adapter family supports crypto APIs such as OpenSSL, PKCS#11, JCA and Microsoft CNG thus enabling multiple applications such as PKI Key generation, DNSSEC, database and file encryption and SSL & TLS.

Key Features

  • SSL/TLS performance
  • Enhanced on card storage
  • USB port for two-factor authentication
  • Support for FIPS 140-2 Level 3 EAP FAST TLS extensions
  • Accelerates SSL cryptographic functions and bulk encryption including IPSec
  • 256-bit AES based key encrypt for key archive and transport
  • SP800-90 based deterministic random bit generator
  • Random number generator support for FIPS 140-3
  • Supports 32-bit and 64-bit Linux and FreeBSD SDK
  • Supports Java Cryptographic Environment (JCE)

Product Comparison Table

Device System Interface Isolated Partition Support Performance Dimensions
Max RSA Ops / sec SSL Record Throughput
CNN3560-NFBE-G PCIe Gen2.0 x8 Yes 35K (2048b) 10 Gb/s 2.1" x 6.6"
CNN3530-NFBE-G PCIe Gen2.0 x8 Yes 18K (2048b) 7 Gb/s 2.1" x 6.6"
CNN3510-NFBE-G PCIe Gen2.0 x8 Yes 13K (2048b) 4 Gb/s 2.1" x 6.6"
CN1620-NFBE3-3.0-FW2.2-G PCIe Gen2.0 x4 No 9K (2048b) 5 Gb/s 2.1" x 6.6"
CN1620-NFBE1-3.0-FW2.2-G PCIe Gen2.0 x4 No 3K (2048b) 1.5 Gb/s 2.1" x 6.6"
CN1610-NFBE1-3.0-FW2.2-G PCIe Gen2.0 x4 No 1.5K (2048b) 750 Mb/s 2.1" x 6.6"

Applications

  • L4+ switches
  • Load balancers
  • Networking/Server appliances
  • Database servers
  • Web servers
  • Remote access servers
  • Unified Threat Management appliances
  • Public key infrastructure