Embrace Security That Protects Without Compromising Data Center Performance

These are exciting times in the data center business. It’s thrilling to watch technology transform companies with seamless connection of services and platforms for their employees and customers. Hyper-innovation creates unprecedented opportunity, but the “anytime, anywhere, any device” data center also brings unprecedented risk.

For my customers, pervasive security and control are foundational to fully embrace new opportunities, accelerate growth and remain competitive. These challenge our ever-changing enterprise environment. Cyber criminals get more sophisticated and the impact of an attack can be huge – with businesses offline or significant data loss.  High profile organizations impacted include Yahoo, Target, U.S. Office of Personnel Management, eBay and many others; the list grows daily.

And yet, many organizations still leave gaps in their infrastructure and data defenses. Complexity in deployment and performance impacts tend to slow the adoption of security best practices and technologies.

Cyber security attacks continue to become more sophisticated and in today’s high risk, high reward environment what data centers need is platform-level security that protects without compromising performance.  After all, if you can’t trust the platform, how can you trust the information delivered through the platform?

The new Intel® Xeon® Scalable platform, launched earlier this year, delivered just that – a silicon-based trusted infrastructure. Our biggest platform advancement in a decade, Intel Xeon Scalable processors help protect against software attacks by securing the platform with hardware root-of-trust technologies. Protection extends up from the silicon, through the platform hardware and firmware, ensuring an effective IT security platform to build upon.  For example, Intel® Trusted Execution Technology (Intel® TXT) with One-Touch Activation addresses the platform firmware and virtual machine launch process, permitting a secure installation, launch, and use of a hypervisor or operating system.

The Intel Xeon Scalable platform includes features focused on trust and encryption acceleration. We have virtually eliminated the performance overhead for encryption of data, achieving a 2x performance improvement1 generation over generation. The result is a less than 1% impact to performance with encryption enabled.2 This allows IT administrators to get ever closer to implementing encryption across all their data without impacting the user experience or their service level agreements. For example, with full AES encryption for data at rest, Intel customer Compuverde experiences near-zero overhead maintaining high throughput. Christian Melander, a Senior Software Engineer for Compuverde, explains, “The performance in the encryption routines is very good; we don’t notice any performance degradation when it is activated.”

The Taiwan Stock Exchange (TWSE) implemented Intel platform security features to verify and report on platform trust as a foundation for trusted pools, and provide an infrastructure that supports separation of sensitive, high-value workloads from commodity applications and data.  “For IT services that demand high levels of speed and data integrity, implementing security filters using Intel processors is more efficient than relying on software filters”, says Lin Huodeng, Deputy GM of TWSE.

Cybercrime is projected to cost business $2.1 trillion by 2019. This reality means that enterprise customers must protect the overall security of their infrastructure if they want to remain competitive. Intel invested in multiple generations of security technology in the platform and continues to make advancements in this platform and data protection. With Intel Xeon Scalable processors, we deliver a critical foundation for secure IT. Learn more about how you can deploy a comprehensive security foundation with the Intel Xeon Scalable platform.

 

1 2X gains in Reed Solomon Erasure Code: Intel Xeon® Processor Scalable Family: Platinum 8180 Processor, 28C, 2.5 GHz, H0, Neon City CRB, 12x16 GB DDR4 2666 MT/s ECC RDIMM, BIOS PLYCRB1.86B.0128.R08.1703242666. Intel® Xeon® E5-2600v4 Series Processor, E5-2650 v4, 12C, 2.2 GHz, Aztec City CRB, 4x8 GB DDR4 2400 MT/s ECC RDIMM, BIOS GRRFCRB1.86B.0276.R02.1606020546.  Operating System: Redhat Enterprise Linux 7.3, Kernel 4.2.3, ISA-L 2.18, BIOS Configuration, P-States: Disabled, Turbo: Disabled, Speed Step: Disabled, C-States: Disabled, ENERGY_PERF_BIAS_CFG: PERF.

2 BigBench query Runtime/second. Testing done by Intel.  BASELINE: Platform 8168, NODES 1 Mgmt + 6 Workers, Make Intel Corporation, Model S2600WFD, Form Factor 2U, Processor Intel(R) Xeon(R) Platinum 8168 processor, Base Clock 2.70 GHz, Cores per socket 24, Hyper-Threading Enabled, NUMA mode Enabled, RAM 384GB DDR4, RAM Type 12x 32GB DDR4, OS Drive Intel® SSD DC S3710 Series (800GB, 2.5in SATA 6Gb/s, 20nm, MLC), Data Drives 8x - Seagate Enterprise  2.5 HDD ST2000NX0403 2TB, Intel® SSD DC P3520 Series (2.0TB), Temp Drive DC 3520 2TB, NIC Intel  X722 10GBE - Dual Port, Hadoop Cloudera 5.11, Benchmark BigBench, Operating System CentOS Linux release 7.3.1611 (Core); HDFS encryption turned OFF.  vs. NEW: Platform 8168, NODES 1 Mgmt + 6 Workers, Make Intel Corporation, Model S2600WFD, Form Factor 2U, Processor Intel(R) Xeon(R) Platinum 8168 processor, Base Clock 2.70 GHz, Cores per socket 24, Hyper-Threading Enabled, NUMA mode Enabled, RAM 384GB DDR4, RAM Type 12x 32GB DDR4, OS Drive Intel® SSD DC S3710 Series (800GB, 2.5in SATA 6Gb/s, 20nm, MLC), Data Drives 8x - Seagate Enterprise  2.5 HDD ST2000NX0403 2TB, Intel® SSD DC P3520 Series (2.0TB), Temp Drive DC 3520 2TB, NIC Intel  X722 10GBE - Dual Port, Hadoop Cloudera 5.11, Benchmark BigBench, Operating System CentOS Linux release 7.3.1611 (Core); HDFS encryption turned ON