Tectia applies third-generation Secure Shell protocol implementation, SSH G3, which has been optimized for higher performance in demanding file transfer and application tunneling environments. The SSH G3 architecture provides unparalleled Secure Shell encryption throughput and scalability for large organizations.
SSH G3 implements an n x m
server process architecture for optimized
server-side memory consumption and performance. While each server process (total amount
n) can handle multiple (m) connections, the memory consumption per connection is
considerably lower than in the second-generation Secure Shell implementations, making
Tectia an ideal solution especially for large-scale application tunneling.
The Connection Broker is a key component in the SSH G3 architecture, handling all protocol and cryptographic operations. Client-side memory consumption is reduced since there needs to be only a single Connection Broker instance running per user. Security is also further improved by isolating all security-critical operations including authentication data handling in a single component.
The SSH G3 architecture has been designed to minimize internal data handling such as data copy operations to minimize the throughput time in large file transfers.
SSH G3 utilizes multi-threaded programming to fully leverage multi-processor servers for improved performance.
Tectia Server for Linux on IBM System z automatically uses hardware acceleration of encryption operations with the IBM-provided cryptographic hardware CPACF, if it is available. Hardware acceleration optimizes encryption performance and CPU usage, and it is used with the 3DES, SHA-1, SHA-2, and AES algorithms.