Firm readies Layer 2 encryption for metro-area Ethernet, seeking to reduce the latency of traditional IPSec-based VPNs

Mike Fratto, Former Network Computing Editor

May 9, 2006

2 Min Read

CipherOptics last week unveiled new gateways that encrypt Ethernet frames at 100 Mbit/s and 1 Gbit/s speeds -- without the latency of a traditional IPSec-based virtual private network.

The new capability could go a long way in helping providers secure metropolitan-area Ethernet services, which are skyrocketing in popularity. Ethernet services revenues more than doubled to $5.9 billion worldwide between 2004 and 2005, and the market could see a 280 percent increase by 2009, according to Infonetics Research, a market research firm.

In IPSec-based VPNs, non-IP protocols that use Ethernet as a transport usually must be encapsulated. Integrating IPSec into the network usually requires changes to IP addressing and limits users' ability to use fundamental network architecture strategies such as virtual LANs. And not all IPSec gateways support legacy protocols such as Novell IPX. By using encryption, users can extend the reach of their secure Ethernet environments across an entire metro area without the headaches of IPSec.

"CipherOptics is looking at encryption in terms of network service and business needs rather than packets and protocols," says Jon Oltsik, senior analyst at the Enterprise Strategy Group, an IT consultancy. "This is a subtle but important point. For example, IPSec would be overkill -- and a performance killer -- in a private metro-Ethernet ring, but encryption may still be necessary for compliance reasons."

CipherOptics is partnering with Extreme Networks to combine Extreme's policy-based networking for security and quality-of-service enforcement with CipherOptics' high-speed, Layer 2 encryption. The idea is to create encrypted traffic flows without forcing the user to add costly gateways or make infrastructure changes.

— Mike Fratto, Editor at Large, Dark Reading

Organizations mentioned in this story

About the Author(s)

Mike Fratto

Former Network Computing Editor

Mike Fratto is a principal analyst at Current Analysis, covering the Enterprise Networking and Data Center Technology markets. Prior to that, Mike was with UBM Tech for 15 years, and served as editor of Network Computing. He was also lead analyst for InformationWeek Analytics and executive editor for Secure Enterprise. He has spoken at several conferences including Interop, MISTI, the Internet Security Conference, as well as to local groups. He served as the chair for Interop's datacenter and storage tracks. He also teaches a network security graduate course at Syracuse University. Prior to Network Computing, Mike was an independent consultant.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights