Home > Network Encryption > Layer 4 Encryption
Print PagePrint this Page

Layer 4 Encryption

Many organizations run multiple services on their network, such as Class of Service, Network Address Translation (NAT), Policy-Based Routing and Netflow to ensure their network operates as efficiently and as effectively as possible. Most of these network services depend on information from the Layer 4 header to operate. Unfortunately, traditional Layer 2 and Layer 3 encryption solutions are incompatible with Layer 4 services because they encrypt the Layer 4 header along with the payload. This forces network administrators to choose between improved traffic management and data security.

CipherOptics has made it possible to maintain traffic shaping, NAT and Class of Service based prioritization while securing data with our Layer 4 encryption solution. This unique and innovative functionality provides AES 256-bit encryption of the data payload while leaving the Layer 4 header in the clear. With Layer 4 encryption, network administrators no longer have to choose between performance and security.

How Layer 4 Encryption Works

By preserving the original header information and encrypting the payload, you can encrypt data over load-balanced, redundant and resilient networks. With the CipherOptics Layer 4 encryption solution, the Layer 4 header information remains in the clear and only the payload is encrypted, as shown in the illustration below.

Layer 4 Encryption

Benefits of Layer 4 Encryption

CipherOptics Layer 4 encryption solutions can be deployed quickly and easily in any network environment. With this solution, companies and service providers can maintain traffic shaping, prioritization, net flow capabilities and other services while ensuring that the data is safe from unauthorized use or inspection.

An added benefit to our Layer 4 encryption is that it makes troubleshooting an encrypted network easier. With traditional IPsec, all packets in the WAN are ESP packets, which hide the Layer 4 headers. The Layer 4 header is often used to help identify applications, so not being able to see that information complicates troubleshooting encrypted networks. With Layer 4 encryption, the headers are in the clear, and there is no need to modify your troubleshooting methodology. There is no additional training for NOC personal when troubleshooting encrypted networks.

Layer 4 Encryption benefits include:
  • Ability to pass encrypted data through NAT devices
  • Support for policy based routing/load balancing
  • Lower packet overhead (5-10% faster than L3)
  • Easy troubleshooting for encrypted networks
  • Netflow/Jflow support
    • In fact, one of the largest service providers in the U.S. tested our Layer 4 encryption solution in their labs to gauge the impact on network services. You can download the test results below.

    With encryption speeds ranging from 10Mbps to 10Gbps, our Layer 4 encryption solutions ensure your data is protected and the network services can run- all without impacting application or network performance.

    To see just how easy it can be to take advantage of our Layer 4 encryption capabilities, contact us at 1-877-878-6655 or feel free to ask us a question.

    Learn More About:
    IP Encryptors
    CipherEngine Policy and Key Mangement

    Downloads:
    CipherEngine Whitepaper
    Group Encryption Whitepaper
    Layer 4 Encryption Test Results