Britestream Networks, Inc. ● 12401 Research Blvd, Bldg. 2, Suite 275, Austin, Texas 78759 ● www.britestream.com Britestream 2006 BN1200 SSL Security NIC Page 1

D A T A S H E E T

BN1200 SSL Security NIC The award-winning Britestream technology provides a secure, scalable and simple solution to processing SSL-encrypted network traffic. Britestream Networks provides a breakthrough solution for the growing challenge of data privacy and regulary compliance.

For web, email and application servers the Britesream BN1200 offers hardened security, very low latency and 100% SSL offload. The Britestream solution removes all barriers and penalties to deploying—and ensuring—secure transmissions.

For data network applicances such as SSL VPNs, load balancers and application accelerators, the BN1200 offers rapid integration, high transaction performance and cross-platform operating system compatibility. Britestream delivers a comprehensive product offering to address the growing need for secure end-to-end data transmissions across the network.

Fortified Security

The Britestream solution is based upon SSL, the industry standard for data encryption, plus it offers additional security than software-based SSL solutions. The Britestream NIC allows private keys and certificates to be stored within the tamper-resistent hardware. It is not dependent upon any potentially vulnerable operating system. It also does not require regular patching or updates. The BN1200 supports advanced cryptographic functions by allowing the usage of 1K, 2K or 4K RSA key sizes, as well as supporting a variety of encryption algorithms, including AES, ARC4, 3DES and DES.

Scalable Performance

By providing 100% SSL offload the host CPU can avoid suffering “the security penalty” that oftentimes comes with SSL processing. Performance is further enhanced with the BN1200 by delivering up to 50 times greater throughput than software-based SSL solutions. Latency is also drastically decreased as TCP connection grooming reassembles and delivers “clean” data streams to the server, offloading this function from the host CPU and memory. For high availability requirements, the BN1200 also supports load balancing and automatic failover.

Key Benefits • Tamper resistant, hardware-based

solution protects encryption keys and certificates ensuring fortified security.

• Supports industry security standards SSL and TLS.

• Frees valuable CPU resources by offloading 100% of SSL processing.

• Enables end-to-end data privacy from the browser or client application to the application server.

• Allows both internal and external data transmissions to be secure by default.

• Lowers total cost of operations by eliminating the need for additional servers and licensing fees.

• Support for common operating systems provides flexible deployment options.

Britestream Networks, Inc. ● 12401 Research Blvd, Bldg. 2, Suite 275, Austin, Texas 78759 ● www.britestream.com Britestream 2006 BN1200 SSL Security NIC Page 2

D A T A S H E E T

Specifications

OPERATING SYSTEMS1 Microsoft® Windows™ 2000 Server Microsoft® Windows™ Server 2003 RedHat® Enterprise Linux 4 (kernel 2.6) Debian GNU/Linux 3.x (kernel 2.4 , 2.6) SUSE™ Linux 9.x (kernel 2.6) Sun Solaris 9® (on a SPARC® platform) Sun Solaris 10® (on an x86 based system) Apple Mac OS X Server 10.4 (Tiger)

PROTOCOL VERSIONS SSL 3.0, TLS 1.0, SSL 2.0 (Client Hellos) Supports SSL Initial and Resume handshakes, client authentication handshakes, and rehandshakes2 Fully offloads TCP resequencing, resegmentation, and retransmission processing Full TCP Proxy support

CRYPTOGRAPHY 1024/2048/4096-bit RSA exponentiation ARC43, DES4, 3DES4, and AES4 bulk cipher encryption MD5, SHA14 and HMAC4 hash algorithms Stores up to 256 certificates and associated private keys X.509 Digital Certificate support Hardware Random Number Generator

DIMENSIONS 4.2 inches x 6.6 inches (PCI “short” card form factor)

PERFORMANCE 800 Mbps throughput (full duplex) (encrypted and pass-through) 350 Mbps throughput (full-duplex) (encrypted only) Up to 10,000 SSL transactions per second (TPS) (1024-bit RSA keys) Up to 100,000 simultaneous connections

HIGH AVAILABILITY 802.3ad Fault Tolerance (failover)5 Windows Network Load Balancing

PCI/PCI-X HOST INTERFACE 3.3V PCI v2.1 32/64-bit, 33/66MHz PCI v2.2/v2.3, 32/64-bit, 33/66 MHz PCI-X 1.0a, 64-bit, 133 MHz

NETWORK INTERFACE IEEE 802.3 10/100/1000 Base-T Ethernet Connector Type: RJ-45

MANAGEMENT AND ADMIN Graphical configuration wizard Command line interface Alert logging to syslog & Windows Event Logger

EXPORT APPROVED Retail Classification under ECCN 5A002

SAFETY AND EMISSIONS FCC CFR 47, Part 15, Subpart B, Class B CE: EN55022, Class B & EN55024 AS/NZS CISPR 22:2001, Class B VCCI, Class B, CISPR 22:1993 with Amendments 1 and 2 CB Scheme: IEC/EN 60950 CAN/CSA-C22.2 No 60950 (includes UL 60950)

OPERATING TEMPERATURE 10 to 55 degrees Celsius (250 LFM airflow required)

POWER Operating Voltage: 3.3V/5V DC Power Consumption: 17 Watts typical

1 Contact Britestream Support for compatibility with other OS types and versions

2 Validation of client certification requires integration with a Britestream provided utility

3 ARC4 is an algorithm completely compatible with RSA’s RC4™

4 NIST Certified Algorithms 5 Supports Linux, Windows®, Solaris®

operating system schemas

888.926.8857 or 512.250.2129 sales@britestream.com

Secure Web Applications

Microsoft™ Exchange

E-Commerce

ISA Server

WAN / Internet

OMA

Outlook Remote Users

OWAActiveSync

Secure Web ApplicationsSecure Web Applications

Microsoft™ Exchange

E-CommerceE-Commerce

ISA Server

WAN / InternetWAN /

InternetOMA

Outlook Remote Users

OWAActiveSync