Whether you have a 10Gbps or 100Gbps connection, you’ll maintain total control over your security parameters and keys. And since Optical Encryption can easily be added to our portfolio of infrastructure solutions, you won’t need to purchase, deploy or manage costly new equipment.
Download our Optical Encryption product sheet for more detailed information.
Key benefits.
- Security: Maximum security with industry-leading technology that encrypts in-flight data from end-point to end-point at Layer 1.
- Flexibility: A protocol agnostic solution, which allows you to avoid cumbersome configurations for multiple protocols. Optical Encryption ordered as a new service or as an upgrade to existing wavelengths, both without standalone encryption boxes—keeping both capital and operating expenses low.
- Efficiency: Encryption management that runs out-of-band so no overhead is added. Full line rate performance at all frame sizes and protocols with minimal latency impact.
- Control: Ability to upgrade at will to keep up with technology or align with changing requirements. Maintenance of your own security protocols and keys, and a dedicated management tool for complete control over all your security parameters.
Product details.
- NIST-Compliant AES-256 encryption
- Elliptic Curve Cryptography (ECC) algorithms
- Diffie-Hellman secured key negotiation (including Elliptic Curve)
- X.509 certificate support for authentication
- Easily integrates into enterprise Public Key Infrastructure (PKI) using x.509 certificate-based authentication
- Support for Certificate Revocation List (CRL)
- Hitless AES-256 key rotation every second
- TLS-secured and mutually authenticated interface for encryption management
- Elliptical Curve certificates
Bandwidth options & handoff protocols
- Encryption over Wavelength
- 10Gbps: 10 GigE, FC800, FC1200, OC-192, OC-192c
Encryption over Managed Private Optical Network
- 10Gbps: 10 GigE, FC800, FC1200, OC-192, OC-192c
- 40Gbps: 40 GigE, OC-768
- 100Gbps: 100 GigE
Protocols protected
- Optical Encryption is protocol agnostic, encrypting all payload data, at all packet and frame sizes, at full line rate. The service protects all major transport protocols, including Ethernet, IP, SONET, Fiber Channel, Video Transport and OTN.
Availability
- Availability specs are based on the design of the network delivering the encryption service. Options are available for route diversity with failover to ensure the highest availability possible.
Encryption Service over Wavelength (10Gbps)
- FIPS 140-2 Level 3
- FIPS 197 – AES-256
- IBM GDPS
- EMCW
- Brocade
Encryption Service over Managed Private Optical Network (10Gbps, 40Gbps, 100Gbps)
- FIPS 140-2 Level 2·FIPS 197 – AES-256
- IBM GDPS
- EMCW
- Brocade
Ideal for.
- Businesses looking to maximize network security by adding in-flight data encryption from end-point to end-point.
- High security networks that can’t afford to sacrifice speed, requiring full line rate performance at all frame sizes and protocols with minimal latency impact.
- Finance companies that must maintain total control over their security parameters and keys, no matter their connection.
- Healthcare organizations that need maximum protection and optimized latency, through encryption of all their in-flight data as it is transferred across their networks.
Let’s talk about your connectivity needs.
Your business is unique—and so are your connectivity needs. With an individualized approach, we’ll show you how our infrastructure solutions will serve you today and prepare you for tomorrow.