The rapid growth of network traffic has brought about a large number of real-time encryption and packet inspection, leading to high hardware cost and rapidly increasing computational resource requirements. Moreover, in the actual usage scenarios in China, both international algorithms and national encryption algorithms will be used simultaneously for a long time. In high-performance environments, the ability to switch algorithms flexibly has become a new challenge. TLS/SSL is currently the most widely used security protocol, aiming to provide security and data integrity for internet communication.

The widespread adoption of TLS/SSL, particularly the promotion of full-site HTTPS, has brought a series of challenges for data centers.

1.High CPU usage

There are a large number of cryptographic tasks in TLS/SSL, which often occupy at least 30% of the CPU time. In cloud computing scenarios, CPU computing power, as commodity, should be allocated more to actual application scenarios to create more economic benefits.

2. Greater network latency

While TLS/SSL ensures network communication security, it also brings greater network latency, which will lead to a reduced user experience of the application.

3. Lack of dual-mode acceleration solutions

Domestic security applications are currently in the transition period from the international cryptography system to the national cryptography system. Both systems will be used together for a long time. However,mature hardware acceleration solutions are mostly provided by foreign manufacturers and lack support for the national cryptography system. Dual-mode hardware acceleration solution is a gap in the current market. In TLS/SSL practice, the industry mainly uses the open-source secure cryptographic library OpenSSL to complete the main encryption and decryption algorithms, key certificate management and SSL protocol processing.