Communications networks are under continual attack from increasingly sophisticated actors making it difficult for service providers and enterprises alike to ensure the safety and security of their data. This is especially true as more data and applications move to the cloud.
In fact, most industry surveys show that data security issues rank first among barriers to adoption of cloud-based services. for the database group the primary concern is server security, protecting the integrity of the data and preventing unauthorized access to their company’s information stored inside the data center. The network group has to protect the same data but with the added risk and complexity of doing it while the data is in-flight between locations. This risk is also shared by any network operator that is providing the connectivity service between those locations.
Transferring data and applications between physical locations means proprietary information is continually on the move and therefore more susceptible to intrusion than when it is behind the firewall. EKINOPS PM CRYPTO uses the strongest, industry proven AES-256 based encryption to provide the highest level of security from end-to-end.
EKINOPS PM CRYPTO protects data in-flight across high speed optical networks with a hardware based algorithm that operates at wire speed to fully encrypt the payload and guarantee the security of even the most critical data and applications. Because it is hardware-based, the Diffie-Hellman key exchange rotates the keys multiple times per minute to prevent in-flight interception while sub-microsecond added latency for encryption process provides hitless performance for all service types — capabilities not possible with software-based solutions.
Based on Ekinops’ patented T-Chip technology, PM CRYPTO is also safe from obsolescence as new features can be updated directly on the existing module with a simple firmware download.
The PM CRYPTO module can be managed through SNMP or via the EKINOPS standard element level management interfaces, which includes a CLI (Command Line Interface) and an EKINOPS java-based GUI (Graphical User Interface). The CLI is accessible via SSH and Telnet remotely or via a local serial port locally on the management board.
Complete performance monitoring and management is provided, including laser shut off and local and remote loopback which is useful for maintenance and fault isolation.
Digital Diagnostics Management (DDM) is supported for both QSFP28 and SFP+ interfaces. This includes link status, transmit (TX) and receive (RX) signal power monitoring and operational temperature, as well as manufacturer and transceiver model. EKINOPS PM CRYPTO requires the use of Celestis NMS for specific end-to-end encrypted service setup and management.
- AES 256 based encryption for highest level of data security
- Hardware based solution for wire-speed processing
- Ultra-low latency
- Multiprotocol client support
- Evergreen solution based on EKINOPS T-Chip — supports technology evolution with no hardware replacement required
- High frequency Elliptic Curve Diffie Hellman key exchange and authentication to ensure data security end-to-end
Whether you are replicating data at multiple sites in a disk mirroring operation or for BC/DR purposes, migrating data between virtual machines, or moving data, applications and services into the cloud, EKINOPS PM CRYPTO provides the secure, high speed optical transport mechanism necessary to prevent unauthorized access and interception.
It is designed to meet the demands of the strictest enterprise users including banks and other financials, healthcare operators, biotech and pharmaceutical companies as well as government institutions. EKINOPS PM CRYPTO provides the simplest, most cost effective solution for making your network compliant with the EU-mandated GDPR requirements. It can also be used by network operators, including cloud services providers and data center operators, to provide secure connectivity as a managed service to their end-user customers.
- Business Continuance & disaster recovery (BC/DR)
- Virtual machine (VM) migration
- Data/disk mirroring
- Cloud services
- Secure managed connectivity services
- General data protection regulation (GDPR) compliance