Elliptic Curve Cryptography Fast Becoming Mandatory Requirement For US Government Applications

MISSISSAUGA, Ontario – (Nov. 1, 2007) – Certicom Corp. (TSX: CIC) today announced that Certicom’s Suite B Power Bundle will support the market-leading NITROX Security Processors and OCTEON Multi-core MIPS64 Processors from Cavium Networks (NASDAQ: CAVM), a provider of highly integrated semiconductor products that enable intelligent processing in networking, communications, storage and security applications. The joint solutions are targeted for high-security, US government applications as part of routers, switches, servers, appliances and gateways.

Suite B is the set of cryptographic algorithms recommended by the National Security Agency (NSA) to secure classified and unclassified communications. The private sector is also beginning to implement Suite B algorithms in a range of products and services.

Through this agreement, both Cavium and Certicom customers are able to quickly comply with the U.S. government’s Suite B specification by integrating Cavium Processors with Certicom’s software toolkits for Crypto, SSL, SSH and SRTP that are FIPS-validated and Suite B-enabled. The need for meeting stringent federal standards for security is driving the demand for Certicom’s NSA-approved ECC technology, which is recommended by the U.S. government and is also being adopted by industry to protect valuable information.

“Cavium’s line of scalable security and network services processors with advanced Suite B hardware acceleration, combined with Certicom’s Suite B Power Bundle software tools, allows our customers to be compliant with the latest government standards without compromising performance,” said Rajiv Khemani, vice president, marketing and sales of Cavium Networks. “The partnership with Certicom ensures that our customers will have the most efficient and secure implementation of ECC available.”

ECC is used in a growing number of sectors ranging from networking, consumer electronics, wireless devices and semiconductors to government and financial services. In 2005, the NSA recommended ECC as the public-key crypto-system to protect classified and unclassified government communications. Known as Suite B, these recommendations are part of an initiative to upgrade the security infrastructure of government communications to meet present and future security needs.

“ECC security technology meets the demanding requirements of many customers, including the U.S. government,” said Bernard W. Crotty, president and CEO of Certicom. “The Cavium partnership provides our network infrastructure customers the critical public key infrastructure needed to develop end-to-end ECC enabled network products with the highest performance implementations available.”


Cavium Networks is a provider of highly integrated semiconductor products that enable intelligent processing in networking, communications, storage and security applications. Cavium Networks offers a broad portfolio of integrated, software compatible processors ranging in performance from 10 Mbps to 10 Gbps that enable secure, intelligent functionality in enterprise, data-center, broadband & consumer and access & service provider equipment. Cavium Networks processors are supported by ecosystem partners that provide operating systems, tool support, reference designs and other services. Cavium Networks principal offices are in Mountain View, CA with design team locations in California, Massachusetts and India. For more information, please visit: http://www.caviumnetworks.com.


Certicom protects the value of content, applications and devices with government-approved security. Adopted by the National Security Agency (NSA) for government communications, Elliptic Curve Cryptography (ECC) provides the most security per bit of any known public-key scheme. As the global leader in ECC, Certicom security offerings are currently licensed to more than 300 customers including General Dynamics, Motorola, Oracle, Research In Motion and Unisys. Founded in 1985, Certicom’s corporate offices are in Mississauga, Ontario, Canada with worldwide sales and marketing headquarters in Reston, Virginia and offices in the U.S., Canada, Europe and China. Visit www.certicom.com.

For further information, please contact: 

For Certicom: 
John Conrad
Merritt Group Inc. 
For Cavium Networks:
Angel Atondo 
Certicom, Certicom Security Architecture, Certicom Trust Infrastructure, Certicom CodeSign, Certicom KeyInject, Security Builder, Security Builder API, Security Builder BSP, Security Builder Crypto, Security Builder ETS, Security Builder GSE, Security Builder IPSec, Security Builder NSE, Security Builder PKI and Security Builder SSL are trademarks or registered trademarks of Certicom Corp. All other companies and products listed herein are trademarks or registered trademarks of their respective holders. Information subject to change.
Except for historical information contained herein, this news release contains forward-looking statements that involve risks and uncertainties. Forward-looking information includes information concerning the Company's future financial performance, business strategy, plans, goals and objectives. When used in such documents, the words "plans", "expects", "budget", "scheduled", "estimates", "forecasts", "intends", "anticipates", "will", "believes" or variations of such words and phrases often, but not always, identify forward looking statements. Factors which could cause actual results or events to differ materially from current expectations include, among other things: the ability of the Company to successfully implement its strategic initiatives and whether such strategic initiatives will yield the expected benefits; the ability of the Company to develop, promote and protect its proprietary technology security breaches or defects in the Company's products; competitive conditions in the businesses in which the Company participates; changes in consumer spending; the outcome of legal proceedings as they arise; general economic conditions and normal business uncertainty; consolidation in the Company's industry and by its customers; customer preferences towards product offerings; the risk that customers may cancel their contracts with the Company; reliance on a limited number of customers; demand for ECC-based technology; performance of the Company's management team and the Company's ability to attract and retain skilled employees; operating the Company's business profitably; fluctuations in revenue and foreign currency exchange rates; interest rate fluctuations and other changes in borrowing costs; the ability to develop and maintain strategic relationships; and other factors identified under the heading "Risk Factors" in the Company's annual information form dated July 26, 2007 and filed on SEDAR at www.sedar.com.