Light Reading

ADVA Touts Encryption for 100G Metro Optical Networks

Dan O'Shea
6/30/2014
50%
50%

Will the battle among vendors for 100G metro optical deployments turn on who has the best transport layer encryption technology? Maybe not, but ADVA thinks the time is right to raise security as a topic of discussion in the sector. The vendor last month rolled out its Optical Secure in-flight Layer 1 encryption technology, and quickly secured its first carrier customer to use the encryption offering aboard ADVA'a FSP 3000 platform. (See ADVA Claims Metro 100G Security First and Vtesse Uses ADVA's Optical Encryption.)

Jim Theodoras, senior director of technical marketing at ADVA Optical Networking (Frankfurt: ADV) lower layer network encryption has not gotten much attention over the years, though major financial firms always wanted some high-level encryption at the lower network layers for their mission critical data transmissions. The Edward Snowden revelations helped increase the profile of network encryption, and the demand for it, but the evolution of cloud networking has been just as big a factor.

"We're seeing a shift from local to hosted resources, everything coming and going from data centers," he says. "Now, we're load-balancing across the planet. Transport security is becoming a bigger part of the deployment decision."

Offering in-flight Layer 1 encryption might also be a matter of common sense at this point. Why wouldn't you use every security tool at your disposal to ensure secure transmissions? "Every part of the network gets tapped eventually," he says. "You need to encrypt everywhere -- at the VPN level, the transport level, the application level. You should use every arrow in your quiver."

Making sure that encryption is up to par with bandwidth trends is another consideration. ADVA already offered Layer 1 encryption based on the 256-bit version of the Advanced Encryption Standard at 10G and 40G, and with the migration to 100G is now instituting it as a standard 100G product. Theodoras says the vendor also builds on the viability of the AES keys by having them update 60 times every hour.

Using advanced encryption can increase bandwidth overhead. However, Theodoras says ADVA was able to get Optical Secure to the point where it adds less than 150 nanoseconds of latency. The 100G metro optical battle is just beginning, and with big players like Ciena, and even bigger ones like Huawei throwing their hats into the ring, ADVA may look to exploit Optical Secure as an edge to get carrier attention. However, it's also a good bet that other optical vendors are ready to bump up their own encryption capabilities. (See Huawei Ups the Metro Ante and Ciena Stirs Up the Metro Market.)

— Dan O'Shea, Managing Editor, Light Reading

(9)  | 
Comment  | 
Print  | 
Newest First  |  Oldest First  |  Threaded View        ADD A COMMENT
Stephan Rettenberger
50%
50%
Stephan Rettenberger,
User Rank: Light Beer
7/17/2014 | 10:31:49 AM
Re: Drawbacks
Thank you for the interest, good questions. The increase in power consumption is barely noticeable. The 100G Metro card typically operates at around 85Watts, i.e. less than 1Watt per 1Gbit/s capacity. The encryption uses the OTN overhead, so no change in BER performance or OSNR requirements.

For further details regarding operational processes, please reach out and I can put you in direct contact with one of our product experts. 


Thank you
Atlantis-dude
50%
50%
Atlantis-dude,
User Rank: Light Sabre
7/3/2014 | 5:21:50 PM
Drawbacks
Besides increased latency, any other drawbacks .. what about increase in power consumption ? BER ? Key rollover management complexity.
Ray@LR
50%
50%
Ray@LR,
User Rank: Blogger
7/2/2014 | 2:02:58 PM
Re: Security -- UPDATED TO NANOSECONDS
The article has bene updated to reflect the actual latency of less than 150 ns (nanoseconds) -- thanks for pointing out the slip-up.

Ray
Stephan Rettenberger
50%
50%
Stephan Rettenberger,
User Rank: Light Beer
7/2/2014 | 12:11:49 PM
Re: Security
Phil,

Good comment. The solution has several regional certifications including CC and it actually exceeds FIPS requirements. FIPS certification, however, is currently a double-edged sword: When it comes to data security  and protection, a certification sponsored by a NSA-friendly agency is of limited value or even counterproductive in many regions. "Made in Germany" is the better label in that case. 
Stephan Rettenberger
50%
50%
Stephan Rettenberger,
User Rank: Light Beer
7/2/2014 | 12:09:46 PM
Re: Security
Good catch. The "microseconds" are incorrect. The latency of the solution is less than 150 nanoseconds – a factor of a million better than microseconds. Thank you for pointing that out.
jpechmezac
50%
50%
jpechmezac,
User Rank: Light Beer
7/2/2014 | 7:22:36 AM
Re: Security
150ms added latency seems a lot, isn't it 150 microsecond ? it would already be around 30km equivalent added length : this can be quite a bit in a metro environment for latency sensitive applications (banks and co.) ... 150ms would be enormous ...
Phil Morrison
50%
50%
Phil Morrison,
User Rank: Light Beer
7/1/2014 | 3:11:02 AM
Re: Security
We've supported encryption on the 1830 PSS for sometime now. Wondering if ADVAs implementation is FIPS or CC certified, as there's no mention of it anywhere. Cheers, Phil
Susan Fourtané
50%
50%
Susan Fourtané,
User Rank: Blogger
6/30/2014 | 8:53:53 PM
Re: Security
Mitch,

Yes. And when you see other optical vendors jumping into encryption capabilities you may think security is finally taking the right steps.

-Susan
Mitch Wagner
50%
50%
Mitch Wagner,
User Rank: Lightning
6/30/2014 | 6:35:07 PM
Security
Deep encryption seems like a good bet in these security conscious times.
Flash Poll
From The Founder
Network architects aiming to upgrade their networks to support agile, open, virtualized services in the 21st century need to consider new criteria when choosing between technology suppliers.
Live Streaming Video
BTE 2015 Sponsor Keynote: HP
Dr. Prodip Sen, CTO, Network Functions Virtualization, HP
LRTV Custom TV
Red Hat Demo

7|2|15   |   10:53   |   (0) comments


Red Hat's Nicolas Lemieux demonstrates how Red Hat is driving innovation through open source communities.
LRTV Custom TV
Red Hat's Approach to OpenStack Adoption

7|2|15   |   5:17   |   (0) comments


Red Hat's Radhesh Balakrishnan outlines his company's open source strategy for both enterprises and telcos.
LRTV Custom TV
The New IP Goes Mobile With vEPC

7|2|15   |   1:12   |   (0) comments


Heavy Reading's Gabriel Brown discusses results of a Light Reading survey sponsored by Brocade that shows a clear commitment by mobile operators to move quickly to virtual EPC deployment.
LRTV Custom TV
Making Business Sense of SDN

7|2|15   |   1:42   |   (0) comments


Results of a Brocade-sponsored survey show that CSPs have a clear sense of SDN use cases but are wrestling with the business case. Sterling Perrin of Heavy Reading looks behind the numbers.
LRTV Custom TV
NFV Will Be Here Sooner Than You Think

7|2|15   |   2:22   |   (0) comments


Forget the usual ten-year cycle for new technologies – NFV will be a core part of CSP networks in five years, based on results of a Brocade-sponsored survey, says Heavy Reading's Caroline Chappell.
LRTV Custom TV
The New IP Gains Traction With CSPs

7|2|15   |   1:42   |   (0) comments


Roz Roseboro of Heavy Reading analyzes results of a Light Reading survey sponsored by Brocade showing that CSPs are getting serious about making the transition to the New IP era.
LRTV Custom TV
It's (Real) Time for Analytics

7|2|15   |   1:42   |   (0) comments


Heavy Reading's Jim Hodges looks at how CSPs say they plan to use analytics to deploy new services in real time as part of The New IP, based on results of a survey sponsored by Brocade.
LRTV Documentaries
IoT in Action

6|30|15   |   1:39   |   (8) comments


Two co-workers discuss the benefits of IoT technology.
LRTV Interviews
Ericsson Opens Up on OPNFV

6|30|15   |   14:16   |   (1) comment


Martin Bäckström, VP and head of industry area Datacom at Ericsson, talks to Light Reading founder and CEO Steve Saunders about the emergence of OPNFV, the importance of standards and Ericsson's OPNFV plans.
LRTV Custom TV
NetNumber Founder Discusses NFV/SDN Impact on SP Networks

6|26|15   |   4:15   |   (0) comments


NetNumber Founder Doug Ranalli examines why SPs need a new network infrastructure for service agility. While NFV and SDN are the tools, the old ways of thinking about signaling control are inhibitors. Doug provides his recommendations.
LRTV Custom TV
Orchestrating NFV vCPE Services Across Multivendor Networks

6|26|15   |   5:46   |   (0) comments


Nirav Modi provides an overview of vCPE, the fastest-growing NFV use case, showing how Cyan's Blue Planet orchestrates vCPE services across a multivendor infrastructure to rapidly deliver new managed services for business customers.
LRTV Custom TV
ZTE at LTE Summit Amsterdam 2015

6|26|15   |     |   (0) comments


As one of the leading global telecommunications providers, ZTE presented its cutting-edge technology at LTE World Summit 2015 in Amsterdam. On display at ZTE's booth were the latest R&D achievements in wireless, 5G development, HetNet, deep convergence of FDD and TDD, and RCS/IMD/iSDN/vCN.
Upcoming Live Events
September 16-17, 2015, The Westin Galleria Dallas, Dallas, TX
September 29-30, 2015, The Westin Grand Müchen, Munich, Germany
October 6, 2015, The Westin Peachtree Plaza, Atlanta, GA
October 6, 2015, Westin Peachtree Plaza, Atlanta, GA
October 14-15, 2015, New Orleans Ernest N. Morial Convention Center, New Orleans, LA
November 5, 2015, Hilton Santa Clara, Santa Clara, CA
All Upcoming Live Events
Infographics
Hot Topics
Who's Feeding Fiber to LinkNYC Hotspots?
Mari Silbey, Senior Editor, Cable/Video, 6/29/2015
What's a Gigabit Good For?
Carol Wilson, Editor-at-large, 7/1/2015
Colt to Jettison Ailing IT Business
Iain Morris, News Editor, 6/30/2015
Eurobites: Activist Investor Takes Stake in AlcaLu
Paul Rainford, Assistant Editor, Europe, 6/30/2015
Like Us on Facebook
Twitter Feed
Webinar Archive
BETWEEN THE CEOs - Executive Interviews
Casa Systems has been going from strength to strength over the last couple of years. In 2013, it became the first vendor to ship an integrated CCAP device -- the ...
Cedrik Neike, SVP of Global Service Provider, Service Delivery, at Cisco, talks to Light Reading founder and CEO Steve Saunders about solving service provider customer problems in a virtualized, DevOps world, including multivendor support and the future of network procurement.
Cats with Phones