Enhanced encrypted DWDM transponder
PacketLight has enhanced the latest PL-1000TE Crypto multi-rate, multi-service Dense Wavelength Division Multiplexing transponder (DWDM) by adding cryptographic capability in compliance with NIST FIPS 140-2 standards and NSA Suite B requirements for 10GbE and GbE services. With this capability, the PL-1000TE now provides added security benefit to any DWDM link by encrypting the data passing between the sites.
PacketLight’s cryptography performs AES Encryption on layer-1 level without any degradation to the full rate bandwidth of the 1/10G services. The encrypted service provides full end-to-end transparency of service data and clock with a low latency of less than 12usec for 10GbE.
PacketLight’s comprehensive encryption solution ensures three major concerns of optical link security:
• Confidentiality - preventing disclosure of information to unauthorized parties
• Data integrity - ensuring that the message has not been altered
• Authentication – validating that both parties involved are indeed who they claim to be
The PL-1000TE encryption solution is applicable for services of GbE, 10GbE and 4x10G PCS lanes of 40GbE. The user can flexibly activate the encryption/decryption functionality for specific transponders. The solution is also upgradable to support 4G Fibre Channel (FC) and 8G Fibre Channel services.
Additionally, up to 10 encrypted signals can be multiplexed into a single 100G OTN uplink by PacketLight’s muxponder devices - PL-1000GM or PL-1000GT.
"We have embedded L1 Encryption capabilities within the PL-1000TE compact 1U DWDM Transponder product to form secured links between or within the data centers. Keeping in mind all the latest standards and requirements, we also maximized its cost effectiveness in order that enterprises could meet the new security requirements at minimal expanse. PacketLight’s solution is transparent to the traffic without any degradation to the DWDM link performance or QoS of the data transported" stated Koby Reshef, PacketLight’s CEO.