
SMART NIC / VIN
Guarantee data integrity and prevent network attacks with WebSensing’s Smart Network Interface Card (Smart NIC).
The Web Sensing Smart Network Interface Card (Smart NIC) acts as an intelligent bridge to the Internet from a corporate LAN. It allows corporations to verify that only legitimate and allowed data – i.e. documents and network traffic – flow through the device; all other data is dropped, thereby guaranteeing data integrity and ensuring the absence of network attacks.
The Smart NIC features a customizable data parsing engine that allows formats specified using industry standard Bison/Yacc grammars, state-of-the-art Hammer combinators (for arbitrary binary data), or manually crafted parsing code.
Options are available that allow the Smart NIC to perform IPSec ESP protocol encapsulation and CAVP certified AES encryption on-the-fly.
Connections to the Smart NIC can be made via industry standard PCIe and Ethernet interfaces, or optionally, via MIL-STD-1553 and or J1939 interfaces.
When used in matched sets of two or more devices, the Smart NIC provides a network overlay within the Internet called a Virtual Isolated Network (VIN). Each VIN connects any group of devices -- computers, laptops, servers and IoT devices -- allowing them to inter-operate while being completely isolated from the rest of the Internet. This effectively creates a “virtual air-gap” around the VIN, precluding malicious intrusions.
Computers or devices can be anywhere in the world, connected to any network, so long as there is a wired Ethernet connection into the Internet.
Since no communication from the VIN to other hosts on the Internet is possible, a VIN is an appropriate location to house valuable data that must be shared within it: intellectual property, industrial manufacturing data, or private personal information.
Web Sensing Smart NIC’s are all-hardware devices, containing no vulnerable operating systems or other software. This renders them impervious to software attacks embedded in network traffic.
Form Factor
Card, Desktop or 1U Rack-mount
WAN / LAN
Ethernet (10/100/1000)
Protocol
PCIe, Ethernet, MIL-STD-1553, J1939, TCP/IP protocol suite
Encapsulation Protocol
IPSec ESP*
Encryption Algorithm
AES**
Custom Filtering & Validation
Available
Max Throughput / Latency
1Gbps Ethernet / 50 micro-seconds
Max Concurrent Sessions
Limited by throughput
Logic
Web Sensing Packet Inspection and AES engines***
SNMP**** Monitoring
Available
Power Supply
12vdc/3A
Configuration
Dedicated back-channel
*Encapsulating Security Payload
**Advanced Encryption Standard
***US. Patents: 10,148,761 (Dec 4 2018) and 10,616,344 (Apr 7 2020).
****Simple Network Management Protocol