With the new release 3.2 of the Ethernet Encryption product line, all Ethernet access speeds from 10 mbps up to 100 gbps are being supported in point-to-point and multi-point operation.
The standard scenario is the secure linkage of two sites via a fibre link or a Managed Ethernet connection. Redundancy will be optimal if the scenario is duplicated and realized with two independent network providers.
In the case of multiple branch offices having to be connected to a central site, the point-to-multipoint scenario can be used. The offices can exchange data with the headquarters and optionally with each other. The access speed and the appropriate encryption device of each site can be freely chosen among 10M, 100M, 1G or 10G. The availability of a site can be easily improved by duplicating the relating branch connection.
If there many sites have to communicate with each other in a flat hierarchy, a real multi-point solution would make sense. From the view of a customer, this network scenario looks like a large distributed LAN where all Ethernet devices can see each other at layer 2. Like in the point-to-pint and in the point-to-multipoint scenarios, the encryption does not have any impact on the network functionality, allowing all services including multicast and broadcast applications to continue to work.
Beside the Ethernet encryption product line, atmedia devices also support the encryption of storage networks. The combination of the SDH encryptors with TDM multiplexors allow the encryption of FibreChannel, Ficon or Escon links between data centres.
Our encryption product line
The atmedia encryption devices are available in three different hardware variants. All encryptors support 19“ rack mount and are equipped with redundant, dual input power supplies, making them carrier grade equipment. All atmedia encryptors are certified by the "Bundesamt für Sicherheit in der Informationstechnik" (BSI) for the classification levels VS-NfD, EU Restrint und NATO restricted.
Due to the use of the AES Galois Counter encryption mode (AES-GCM), the atmedia encryptors provide full protection regarding data confidentiality, data manipulation (integrity) and data replay threats. This high class of protection has been available by IPSec devices only up to now.
Another unique product feature is the seamless support of Ethernet broadcast and multicast applications. This allows the efficient and secure implementation of Voice, Video, Terminal and storage service in a WAN environment.
The Ethernet multi-point encryption solution allows a simplification of the WAN infrastructure, resulting in significant lower costs. Network services with different requirements can be concentrated over a single secure Ethernet access. In addition, the support of MPLS and IPV6 offers a protection of investments.