Light Reading

ADVA Touts Encryption for 100G Metro Optical Networks

Dan O'Shea
6/30/2014
50%
50%

Will the battle among vendors for 100G metro optical deployments turn on who has the best transport layer encryption technology? Maybe not, but ADVA thinks the time is right to raise security as a topic of discussion in the sector. The vendor last month rolled out its Optical Secure in-flight Layer 1 encryption technology, and quickly secured its first carrier customer to use the encryption offering aboard ADVA'a FSP 3000 platform. (See ADVA Claims Metro 100G Security First and Vtesse Uses ADVA's Optical Encryption.)

Jim Theodoras, senior director of technical marketing at ADVA Optical Networking (Frankfurt: ADV) lower layer network encryption has not gotten much attention over the years, though major financial firms always wanted some high-level encryption at the lower network layers for their mission critical data transmissions. The Edward Snowden revelations helped increase the profile of network encryption, and the demand for it, but the evolution of cloud networking has been just as big a factor.

"We're seeing a shift from local to hosted resources, everything coming and going from data centers," he says. "Now, we're load-balancing across the planet. Transport security is becoming a bigger part of the deployment decision."

Offering in-flight Layer 1 encryption might also be a matter of common sense at this point. Why wouldn't you use every security tool at your disposal to ensure secure transmissions? "Every part of the network gets tapped eventually," he says. "You need to encrypt everywhere -- at the VPN level, the transport level, the application level. You should use every arrow in your quiver."

Making sure that encryption is up to par with bandwidth trends is another consideration. ADVA already offered Layer 1 encryption based on the 256-bit version of the Advanced Encryption Standard at 10G and 40G, and with the migration to 100G is now instituting it as a standard 100G product. Theodoras says the vendor also builds on the viability of the AES keys by having them update 60 times every hour.

Using advanced encryption can increase bandwidth overhead. However, Theodoras says ADVA was able to get Optical Secure to the point where it adds less than 150 nanoseconds of latency. The 100G metro optical battle is just beginning, and with big players like Ciena, and even bigger ones like Huawei throwing their hats into the ring, ADVA may look to exploit Optical Secure as an edge to get carrier attention. However, it's also a good bet that other optical vendors are ready to bump up their own encryption capabilities. (See Huawei Ups the Metro Ante and Ciena Stirs Up the Metro Market.)

— Dan O'Shea, Managing Editor, Light Reading

(9)  | 
Comment  | 
Print  | 
Newest First  |  Oldest First  |  Threaded View        ADD A COMMENT
Stephan Rettenberger
50%
50%
Stephan Rettenberger,
User Rank: Light Beer
7/17/2014 | 10:31:49 AM
Re: Drawbacks
Thank you for the interest, good questions. The increase in power consumption is barely noticeable. The 100G Metro card typically operates at around 85Watts, i.e. less than 1Watt per 1Gbit/s capacity. The encryption uses the OTN overhead, so no change in BER performance or OSNR requirements.

For further details regarding operational processes, please reach out and I can put you in direct contact with one of our product experts. 


Thank you
Atlantis-dude
50%
50%
Atlantis-dude,
User Rank: Light Sabre
7/3/2014 | 5:21:50 PM
Drawbacks
Besides increased latency, any other drawbacks .. what about increase in power consumption ? BER ? Key rollover management complexity.
Ray@LR
50%
50%
Ray@LR,
User Rank: Blogger
7/2/2014 | 2:02:58 PM
Re: Security -- UPDATED TO NANOSECONDS
The article has bene updated to reflect the actual latency of less than 150 ns (nanoseconds) -- thanks for pointing out the slip-up.

Ray
Stephan Rettenberger
50%
50%
Stephan Rettenberger,
User Rank: Light Beer
7/2/2014 | 12:11:49 PM
Re: Security
Phil,

Good comment. The solution has several regional certifications including CC and it actually exceeds FIPS requirements. FIPS certification, however, is currently a double-edged sword: When it comes to data security  and protection, a certification sponsored by a NSA-friendly agency is of limited value or even counterproductive in many regions. "Made in Germany" is the better label in that case. 
Stephan Rettenberger
50%
50%
Stephan Rettenberger,
User Rank: Light Beer
7/2/2014 | 12:09:46 PM
Re: Security
Good catch. The "microseconds" are incorrect. The latency of the solution is less than 150 nanoseconds – a factor of a million better than microseconds. Thank you for pointing that out.
jpechmezac
50%
50%
jpechmezac,
User Rank: Light Beer
7/2/2014 | 7:22:36 AM
Re: Security
150ms added latency seems a lot, isn't it 150 microsecond ? it would already be around 30km equivalent added length : this can be quite a bit in a metro environment for latency sensitive applications (banks and co.) ... 150ms would be enormous ...
Phil Morrison
50%
50%
Phil Morrison,
User Rank: Light Beer
7/1/2014 | 3:11:02 AM
Re: Security
We've supported encryption on the 1830 PSS for sometime now. Wondering if ADVAs implementation is FIPS or CC certified, as there's no mention of it anywhere. Cheers, Phil
Susan Fourtané
50%
50%
Susan Fourtané,
User Rank: Blogger
6/30/2014 | 8:53:53 PM
Re: Security
Mitch,

Yes. And when you see other optical vendors jumping into encryption capabilities you may think security is finally taking the right steps.

-Susan
Mitch Wagner
50%
50%
Mitch Wagner,
User Rank: Lightning
6/30/2014 | 6:35:07 PM
Security
Deep encryption seems like a good bet in these security conscious times.
Flash Poll
From The Founder
Last week I dropped in on "Hotlanta," Georgia to moderate Light Reading's inaugural DroneComm conference – a unique colloquium investigating the potential for drone communications to disrupt the world's telecom ecosystem. As you will see, it was a day of exploration and epiphany...
LRTV Documentaries
Verizon's Emmons: SDN Key to Cost-Effective Scaling

5|22|15   |   03:53   |   (0) comments


For Verizon and other network operators to ramp up available bandwidth cost effectively, they need to move to SDN and agree on how to do that.
LRTV Documentaries
Lack of Universal SDN a Challenge

5|21|15   |   04:51   |   (3) comments


Heavy Reading Analyst Sterling Perrin talks about how uncertainty about SDN standards and approaches may be slowing deployment.
LRTV Custom TV
Steve Vogelsang Interview: Carrier SDN

5|20|15   |   05:02   |   (0) comments


Sterling Perrin speaks to Steve Vogelsang, Alcatel-Lucent CTO for IP Routing & Transport business, about the new Carrier SDN-enabling Network Services Platform and the operator challenges it solves.
LRTV Custom TV
Carrier SDN: On-Demand Networks for an On-Demand World

5|20|15   |   20:52   |   (0) comments


Steve Vogelsang, Alcatel-Lucent CTO for IP Routing & Transport business, talks about requirements and benefits of Carrier SDN during the keynote address at the Light Reading Carrier SDN event May 2015.
LRTV Documentaries
The Security Challenge of SDN

5|19|15   |   02:52   |   (0) comments


CenturyLink VP James Feger discusses concerns that virtualization could create new vulnerabilities unless network operators build in safeguards.
LRTV Custom TV
NFV Elasticity – Highly Available VNF Scale-Out Architectures for the Mobile Edge

5|18|15   |   5:50   |   (0) comments


Peter Marek and Paul Stevens from Advantech Networks and Communications Group talk about their NFV Elasticity initiative and the company's latest platforms for deploying virtual network functions at the edge of the network. Packetarium XL and the new Versatile Server Module: 'designed to reach parts of the network that other servers cannot reach.'
LRTV Huawei Video Resource Center
Bay Area Spark Meetup 2015

5|14|15   |   3:54   |   (0) comments


Developed in 2009, Apache Spark is a powerful open source processing engine built around speed, ease of use and sophisticated analytics. This spring, Huawei hosted a meetup for Spark developers and data scientists in Santa Clara, California. Light Reading spoke with organizers and attendees about Huawei's code contributions and long-term commitment to Spark.
LRTV Custom TV
The Transport SDN Buzz

5|12|15   |   06:01   |   (1) comment


Sterling Perrin, senior analyst at Heavy Reading, speaks with Peter Ashwood-Smith of Huawei and Guru Parulkar of ON.Lab about the evolution of transport SDN and the integration of technologies.
LRTV Custom TV
Next-Generation CCAP: Cisco cBR-8 Evolved CCAP

5|5|15   |   04:49   |   (0) comments


John Chapman, Cisco's CTO of Cable Access Business Unit and Cisco Fellow, explained the innovation design of Cisco's cBR-8, the industry's first Evolved CCAP, including DOCSIS 3.1 design from ground-up, distributed CCAP with Remote PHY and path to virtualization. Cisco's cBR-8 Evolved CCAP is the platform that will last through the transitions.
LRTV Custom TV
Meeting the Demands of Bandwidth & Service Group Growth

5|1|15   |   5:35   |   (0) comments


Jorge Salinger, Comcast's Vice President of Access Architecture, explains how DOCSIS 3.1 and multi-service CCAP can meet the demands of the bandwidth and service group growth.
LRTV Custom TV
DOCSIS 3.1: Transforming Cable From Hardware-Defined Network to Software-Defined Network

4|29|15   |   03:48   |   (0) comments


John Chapman, Cisco's CTO of Cable Access Business Unit and Cisco Fellow, explains how DOCSIS 3.1 can transform cable HFC network to a more agile software-defined network.
LRTV Huawei Video Resource Center
Predicting Traffic Patterns for Quality Mobile Broadband

4|29|15   |   6:45   |   (0) comments


Accessing information ubiquitously creates complexity and creates heavy traffic onto the network, especially at large-scale events like sporting events or festivals. In this video, Huawei's Mohammad Hussain speaks to experts about how to predict traffic and improve user experience during periods of heavy traffic.
Upcoming Live Events
June 8, 2015, Chicago, IL
June 9, 2015, Chicago, IL
June 9-10, 2015, Chicago, IL
June 10, 2015, Chicago, IL
September 29-30, 2015, The Westin Grand Müchen, Munich, Germany
October 6, 2015, The Westin Peachtree Plaza, Atlanta, GA
October 6, 2015, Westin Peachtree Plaza, Atlanta, GA
All Upcoming Live Events
Infographics
Network functions virtualization (NFV) is not the easiest of topics to take on board, so here's a Light Reading infographic, developed following conversations with the folks at HP, that helps make sense of where NFV is taking the industry.
Hot Topics
Verizon Saves 60% Swapping Copper for Fiber
Sarah Thomas, Editorial Operations Director, 5/19/2015
Choosing a Technology Supplier? Consider Changing Your Selection Criteria
Steve Saunders, CEO and founder, Light Reading, 5/18/2015
Chattanooga Charts Killer Gigabit Apps
Mari Silbey, Senior Editor, Cable/Video, 5/20/2015
10 Alternate Uses for Tablets
Eryn Leavens, Copy Desk Editor, 5/22/2015
Smarter 'Dumb' TVs Will Drive OTT Adoption
Mari Silbey, Senior Editor, Cable/Video, 5/18/2015
Like Us on Facebook
Twitter Feed
Webinar Archive
BETWEEN THE CEOs - Executive Interviews
With 200 customers in 60 countries, Stockholm-based Net Insight has carved out a solid leadership position in one of the hottest vertical markets going in comms right now: helping service providers and broadcasters deliver video and other multimedia traffic over IP networks. How has Net Insight managed to achieve this success in the face of immense competition from the industry giants?
My ongoing interview tour of the leading minds of the telecom industry recently took me to Richardson, Texas, where I met with Rod Naphan, CTO and SVP, Solutions, ...
I recently popped down to Texas to chat with CEO Eric L. Pratt about his company, Taqua.
Cats with Phones