Monday, April 24, 2023

Cadence tapes out UCIe chaplet die-to-die on TSMC 3nm

Cadence Design Systems confirmed the tapeout of its 16G UCIe 2.5D advanced package IP on TSMC’s 3nm (N3E) process technology. 

Cadence UCIe IP provides an open standard for chiplet die-to-die communication, which is becoming more critical for artificial intelligence/machine learning (AI/ML), mobile, automotive, storage and networking applications.

Cadence said it is currently engaged with a pipeline of Tier 1 customers, and UCIe advanced package IP collateral from the N3E test chip tapeout is shipping and available. The pre-verified solution can save customers time and effort through rapid integration.

The heterogeneous integration of Cadence’s UCIe PHY and controller eases chiplet solutions with die reusability. The complete solution includes the following, which can be delivered with a complement of Cadence Verification IP (VIP) and TLM models:

  • UCIe Advanced Package PHY: Designed for a bump pitch that enables greater than 5Tbps/mm of die edge bandwidth density, the UCIe advanced package PHY offers options that allow greater throughput performance while significantly improving power efficiency. It is flexible for integration on multiple types of 2.5D advanced packages, such as silicon interposer, silicon bridge, RDL and fanout-based packaging.
  • UCIe Standard-Package PHY: Options allow customers to reduce costs while maintaining high bandwidth and power efficiency. Cadence’s circuit design allows customers to design down to the lower limits of the standard’s bump pitch range to allow maximum BW/mm while also enabling longer reach.
  • UCIe Controller: A soft IP that can be synthesized for multiple technology nodes, the UCIe controller is offered in a variety of options for different target applications and enables streaming, PCI Express® (PCIe), and CXL protocols.

“The UCIe Consortium supports companies designing chiplets for use in standard and advanced packaging. We are thrilled to extend our congratulations to Cadence on reaching the tape out milestone for the advanced package test chip which uses the die-to-die interconnect based on the UCIe 1.0 specification,” said Dr. Debendra Das Sharma, chairman at the UCIe Consortium. “Member company advancements in IP (scaling) and VIP (testing) are important components in the ecosystem. When paired with participation in UCIe work groups the industry will continue to see new chiplet based designs entering the market that are based on open industry standards that foster interoperability, compatibility, and innovation.”

Cadence speeds up SoC design with 112G SerDes IP on TSMC's N4P process

Cadence Design Systems introduced its 112G Extended Long-Reach (112G-ELR) SerDes IP on TSMC’s N4P process for hyperscale ASICs, artificial intelligence/machine learning (AI/ML) accelerators, switch fabric system-on-chips (SoCs) and 5G wireless infrastructure. 

The extended long-reach SerDes PHY supports insertion loss (IL) of 43db with BER of 10e-7—thereby providing additional performance margin beyond the standard long-reach specifications—and enables exceptional system robustness for lossy and reflective channels observed in open box platforms as well as lengthy direct attach copper (DAC) cables.

The Cadence 112G-ELR SerDes PHY IP on TSMC’s N4P process, a performance-focused enhancement of the TSMC 5nm technology platform, incorporates DSP-based SerDes architecture with maximum likelihood sequence detection (MLSD) and reflection cancellation technology. The SerDes PHY IP is compliant with IEEE and OIF Long-Reach (LR) standards while providing extra performance margin for ELR applications. The optimized power, performance and area are ideal for different user scenarios, including high port-density applications. In addition to ELR and LR channels, the IP also supports Medium Reach (MR) and Very Short Reach (VSR) applications with a flexible power-saving capability over different channels. The supported data rates range from 1G to 112G with NRZ and PAM4 signaling, enabling reliable high-speed data transfer over backplane, direct-attached cable (DAC), chip-to-chip and chip-to-module channels.

“Cadence’s latest 112G-ELR IP on TSMC’s N4P process will benefit our mutual customers with significant performance improvement in silicon, helping them address design challenges with the continuous technology advancement from Cadence’s leading IP solutions and TSMC’s advanced process technologies,” said Dan Kochpatcharin, head of the Design Infrastructure Management Division at TSMC. “Our latest collaboration with Cadence promotes the development of new technologies for hyperscale, AI/ML, 5G infrastructure and other applications.”

A10 Networks adds next-gen Web Application Firewall powered by Fastly

A10 Networks introduced a combined solution of its Thunder Application Delivery Controller (ADC) and a new A10 Next-Generation Web Application Firewall (WAF), powered by Fastly, to enable automated, multi-layered security, and resilience.

A10 said its integrated A10 Next-Gen WAF provides deep web application security services. As the solution sits at the primary application ingress point, a single deployment can efficiently front-end one, hundreds, or thousands of applications without the need for individual server end-point deployments. 

"A10 Networks provides high-performance application delivery and security, and its solution is a natural fit for our next-gen WAF to help provide mutual customers with deep web application security for hybrid cloud environments. This is the first software and hardware application delivery controller implementation for Fastly, which expands our addressable market and provides A10 with the most advanced WAF technology for its customers,” said Emily Friedberg, group vice president, global partnerships at Fastly.

Key capabilities:

  • Layered Defense – Counters modern web threats, and includes OWASP Top 10 mitigation, DDoS protection, authentication, and TLS/SSL decryption.
  • Simplification via Consolidation – Converges under Thunder ADC as a fully integrated single appliance solution that is optimized with advanced load balancing, ADC caching, and the Fastly cloud service; customers have a single point of support with A10.
  • Ease of Use – No learning period for IT teams with near-zero false positives; almost 90 percent of Fastly users run in blocking mode, ensuring only bad traffic is stopped.
  • Lower Costs – Provides superior protection with little or no tuning; uses a combination of thresholding, along with Fastly’s proprietary Network Learning Exchange (NLX) and SmartParse technology, to reduce false positives, for highly effective automated detection and blocking.
  • Reduced Risk – Protects against modern attack vectors like account takeover (ATO), enumeration, and DDoS; integrates with popular DevOps and SIEM tools, making it a great fit for enterprise DevSecOps teams.

“When selecting a partner to deliver superior web application firewall security for our hybrid cloud solutions, Fastly was an obvious choice. It has been a Gartner Peer Insights Customers’ Choice for Cloud Web Application and API Protection (WAAP) for the last five years. Our combined solution will help customers ensure security and resiliency while reducing the operational overhead for security teams,” said Mikko Disini, VP of product line management at A10 Networks.

RSA 2023 Video: What's keeping CISOs up at night?

The worries include compliance, brand reputation, and liability. Depending on the industry, there are different concerns. In this video from the 2023 RSA Conference in San Francisco, A10 Networks discusses top concerns of Chief Information Security Officers.

For example, in the gaming industry, DDOS attacks are prevalent, and CISOs need to ensure that they have the latest DDOS technology to keep the game running and prevent the loss of users. In contrast, if a company deals with credit card data or personal identifiable information, they need to worry about web application attacks. The concerns of CISOs depend on the organization and business goals.

Accenture Security links with Google Cloud for AI-powered cyber response

Accenture Security will power its new Managed Extended Detection and Response (MxDR) service with security-specific generative artificial intelligence (AI) from Google Cloud.

Accenture's service provides enterprise customers with crisis management, incident response, and threat intelligence.

“Enterprises are rapidly transforming, and they need cyber resilience at the core of their digital journeys to protect their businesses and grow with trust and confidence,” said Paolo Dal Cin, who leads Accenture Security globally. “We’re bringing the best expertise and capabilities from Accenture Security, Google Cloud and Mandiant together to help our clients achieve the cyber resilience level their businesses need in today’s cyber threat landscape. When powered by generative AI, our integrated cybersecurity services should enable a new level of cyber resilience, with greater scale, speed and effectiveness.”

Sunil Potti, GM and VP of cloud security, Google Cloud, said, “Accenture and Google Cloud share a vision for helping enterprises modernize their security positions by combining the most advanced security technology with the world’s leading security experts. Accenture’s new MxDR service is now powered by Chronicle’s world-class security operations, Mandiant’s leading threat intelligence, and new security-specific generative AI capabilities, which will help businesses defend against the most sophisticated cyber threat actors.”


  • Chronicle Security Operations: Accenture’s new MxDR service utilizes the Chronicle platform to enable its security teams to better detect, investigate, and respond to cyber threats. It does so by helping enterprises ingest and search the massive amounts of network and security telemetry they generate, with near real-time analysis and context on security risks and vulnerabilities.
  • Mandiant Threat Intelligence: Accenture’s new MxDR service, which includes its Cyber Threat Intelligence capability, will also embed the actionable, leading threat intelligence of Mandiant. Mandiant provides near real-time access to context and threat intelligence from the frontlines, with a global team of analysts who operate around-the-clock investigating and responding to the most sophisticated cyberattacks.
  • Security-specific generative AI from Google Cloud: Accenture will be the first company to utilize the Google Cloud Security AI Workbench, an industry-first extensible platform powered by a specialized, security large language model (LLM), Sec-PaLM, that leverages Google’s visibility into the threat landscape and Mandiant’s frontline intelligence on vulnerabilities, malware, threat indicators, and more. By integrating generative AI within the service Accenture aims to significantly accelerate incident detection, analysis, and response, mitigating the impact of security incidents.
  • Location- and industry-specific customization: Accenture and Google Cloud can build and manage customized security programs for organizations with complex environments that require more than turnkey solutions. This approach is well-suited for global organizations that need to protect large attack surface areas and high volumes of assets, or for companies needing to comply with local regulations related to data residency and sovereignty.
  • Managed crisis and incident response: Accenture’s security professionals will partner closely with Mandiant threat experts to help organizations embed resilient cybersecurity protections across their business assets and hybrid workforces.
  • Accenture-owned technology accelerators: Accenture security services include unique technology and an intuitive user experience, which increase threat detection and response capabilities and reduce the time and effort needed to contain vulnerabilities.

Arista brings AI/ML enterprise network identity management

Arista Networks introduced an enterprise network identity management capability that leverages AI/ML to  simplify the secure onboarding and troubleshooting for users and devices and the management of ever-expanding security policies.

Arista Guardian for Network Identity (CV AGNI) is based on Arista’s foundational NetDL architecture and leverages AVA (Autonomous Virtual Assist) for a conversational interface that removes the complexity inherent in managing network identity from a traditional legacy NAC solution. AVA codifies real-world network and security operations expertise and leverages supervised and unsupervised ML models into an ‘Ask AVA’ service, a chat-like interface for configuring, troubleshooting and analyzing enterprise security policies and device onboarding. CV AGNI also adds user context into Arista’s network data lake (NetDL), greatly simplifying the integration of device and user information across Arista’s products and third-party systems.

CloudVision AGNI’s key features include the following:

  • User self-service onboarding for wireless with per-user unique pre-shared keys (UPSK) and 802.1X digital certificates.
  • Certificate management with a cloud-native PKI infrastructure.
  • Enterprise-wide visibility of all connected devices. Devices are discovered, profiled and classified into groups for single-pane-of-glass control.
  • Security policy enforcement that goes beyond the traditional inter-group macro-segmentation and includes intra-group micro-segmentation capabilities when combined with Arista networking platforms through VLANs, ACLs, Unique-PSK and Arista MSS-Group techniques.
  • AI-driven network policy enforcement based on AVA for behavioral anomalies. When a threat is detected by Arista NDR, it will work with CV AGNI to quarantine the device or reduce its level of access.

Keysight makes UK’s First 100Gbps 6G Sub-THz connection

Keysight Technologies,  in collaboration with National Physical Laboratory (NPL) and the University of Surrey, has made the first 6G connection at speeds greater than 100 Gbps over sub-terahertz (THz) frequencies in the U.K.

Keysight, NPL, and the University of Surrey established the first sub-THz high throughput 6G testbed in the U.K. to address these challenges. 

Located at NPL, this new 6G testbed achieved the U.K.’s first high-speed sub-THz data link. The demonstration was made at a frequency of 300 GHz using both 32 and 64 quadrature amplitude modulation (QAM). Built on Keysight’s 6G Sub-Terahertz R&D Testbed, the testbed uses the M8194A Arbitrary Waveform Generator (AWG) combined with Virginia Diode Inc. (VDI) upconverters / downconverters to generate the signal and Keysight’s UXR0704A Infiniium multichannel high-performance 70 GHz oscilloscope to analyze the signal.

Irshaad Fatadin, Principal Scientist, National Physical Laboratory, said: “6G is a key focus for NPL and we are using our scientific and measurement capabilities to tackle the challenges of this new technology. Our partnership with Keysight will be a critical success factor in our 6G research work.”

Mosaab Abughalib, Senior Research Director and General Manager for Keysight’s Network Emulation Group, said: “Through this partnership we are bringing Keysight solutions and experts together with scientists from NPL and the University of Surrey to unlock the true potential of 6G.”