Chip firm Nvidia will this week announce a motherboard chipset with dedicated hardware to support a client-side firewall. The nForce4 chipset offloads from the processor the task of inspecting data traffic, so it can secure a PC without slowing performance.
The Nvidia nForce4 chipset is shipping now to motherboard makers and system builders, and is expected to appear in PCs before the end of the year. However, the system only supports 64bit AMD chips, while most companies still only buy desktops running Intel processors.
Unsecured networks are a major threat to business, according to Nvidia. “Newly deployed Windows PCs can get infected in seconds, just by being connected to the network,” said Drew Henry, general manager of Nvidia’s platform business. But he added that software-based firewalls cause the lion’s share of processor time to be devoted to filtering IP traffic, especially when using high-speed network technologies such as Gigabit Ethernet.
The Secure Networking Engine (SNE) inside nForce4 serves as dedicated hardware for the Nvidia Firewall app that ships with it. The SNE performs stateful inspection on all data coming in from nForce4’s integrated Gigabit Ethernet adapter and blocks any bad packets. “And the advantage is, we can do this at full Gigabit Ethernet speed without slowing down the CPU,” Henry said.
Nvidia said that the SNE also monitors outbound traffic, and can alert the user if an unknown program tries to open an internet connection. This capability is already supported by firewalls such as ZoneAlarm from Zone Labs, but not by the Windows Firewall that ships as part of Microsoft’s SP2 update for Windows XP.
The Nvidia Firewall ships with predefined security profiles to make it easier to use, but administrators can create customised profiles for their firms’ security policies and deploy them using standard management tools, according to Henry.
Nvidia said its system is compliant with Microsoft’s TCP Chimney Architecture, a forthcoming Windows API that will support the offloading of portions of the TCP protocol stack to hardware, typically a LAN adapter.
The nForce4 is the first chipset for AMD’s Athlon 64 and Opteron chips to support the new PCI Express I/O standard, according to Nvidia. As well as integrated Gigabit Ethernet, it supports a faster 3Gbit/s interface for Serial ATA (Sata) hard disks, and the 1GB/s version of AMD’s HyperTransport technology that links the chipset to the processor.
Three versions of the nForce4 chipset are shipping. The baseline nForce4 lacks SNE, while the nForce4 SLI supports multiple Nvidia graphics cards. Business desktops will likely use the mid-range nForce4 Ultra. An nForce4 Pro chipset to support dual processors on workstations is planned.
On-chip firewall guards PCs @ IT Week
» New NVIDIA nForce Professional 3000 Series MCPs
» ABIT FATAL1TY AN8 nForce4 Ultra Motherboard Review
» Intel PCs to Get NVIDIA Features
» Foxconn Winfast NF4UK8AA-8EKRS (NVIDIA nForce4 Ultra) Motherboard Review
» MSI K8N Neo2 Platinum Motherboard Review
» NVIDIA Already Shipping nForce4 A02 & A03 Versions
» NVIDIA Aims To Take Lead In K8 Chipset Market With nForce 4 MCP
» AMD Athlon64: 64-bit vs. 32-bit
» EPOX - EPoX 8RDA6+Pro nForce2 Ultra 400Gb Motherboard Review
» NVIDIA Intros nForce3 for AMD Socket 939
» NVIDIA nForce2 Ultra 400Gb Preview
» nForce2 400Gb - NVIDIA Confirms New AMD Athlon XP Chip Set
» NVIDIA To Update nForce2 MCP
» NVIDIA nForce3 Ready For AMD Athlon64 Processor 3400+
» Nvidia nForce 3 Pro Preview
Published in: nForce4 on 2004-10-18
Loading ...
del.icio.us
Digg
Furl
Netscape
Yahoo! My Web
StumbleUpon
Google Bookmarks
Technorati
BlinkList
Newsvine
ma.gnolia
reddit
Windows Live
Tailrank
