公开(公告)号：US11831663B2

公开(公告)日：2023-11-28

申请号：US16599051

申请日：2019-10-10

Applicant: Intel Corporation

Inventor： Mesut Ergin ,  Ping Yu ,  Declan Doherty ,  Yuwei Zhang

IPC: H04L29/06 ,  H04L9/40 ,  H04L49/90 ,  H04L47/2483 ,  H04L49/20 ,  H04L47/2441

CPC classification number: H04L63/1425 ,  H04L47/2441 ,  H04L47/2483 ,  H04L49/20 ,  H04L49/9068 ,  H04L49/9089 ,  H04L63/1441 ,  H04L63/20

Abstract: Methods and apparatus for secure networking protocol optimization via NIC hardware offloading. Under a method, security offload entries are cached in a flow table or a security database offload table on a network interface coupled to a host that implements a host security database mapping flows to Security Association (SA) contexts. Each security offload entry includes information identify a flow and information, such as an offset value, to locate a corresponding entry for the flow in the host security database. Hardware descriptors for received packets that belong to flows with matching security offload entries are generated and marked with the information used to locate the corresponding entries in the host security database. The hardware descriptors are processed by software on the host and the location information is used to de-reference the location of applicable entries in the host security database.

公开(公告)号：US20240338238A1

公开(公告)日：2024-10-10

申请号：US18574849

申请日：2022-01-26

Applicant: Intel Corporation

Inventor： Wei Wang ,  Kun Tian ,  Guang Zeng ,  Gilbert Neiger ,  Rajesh Sankaran ,  Asit Mallick ,  Jr-Shian Tsai ,  Jacob Jun Pan ,  Mesut Ergin

IPC: G06F9/455 ,  G06F9/30

CPC classification number: G06F9/45558 ,  G06F9/3016 ,  G06F9/45545 ,  G06F2009/45579

Abstract: A method and system of host to guest (H2G) notification are disclosed. H2G is provided via an instruction. The instruction is a send user inter-processor interrupt instruction. An exemplary processor includes decoder circuitry to decode a single instruction and execute the decoded single instruction according to the at least the opcode to cause a host to guest notification from a virtual device running in a host machine on the first physical processor to a virtual device driver running on a virtual processor in a guest machine on a second physical processor.