Network Encryption from CipherOptics
 
 
 Company Overview
 Executive Team
 Board of Directors
 Executive Advisory Board
 Newsroom
 In the News
 Tradeshows & Events
 Industry News
 Trophy Room
 Press Releases
 Careers
 Solutions Overview
 Network Encryption
 MPLS Network Security
 Metro Ethernet Security
 International Data Protection
 Network Security & Data Protection
 Disaster Recovery
 Ethernet Encryption
 Point-to-Point Encryption
 Real-time & High-volume Applications
 Secure Information Sharing
 Products Overview
 CipherEngine™
 Security Gateways
 Service Offerings
 Resource Center
 Compliance Overview
 HIPAA Compliance
 Sarbanes-Oxley Compliance
 GLBA Compliance
 CA SB 1386 Compliance
 PCI DSS Compliance
 Basel II Compliance
 FERPA Compliance
 FFIEC Compliance
 ISO 17799 Compliance
 NERC Cyber Security
 Government Overview
 Government Regulations
 FISMA Compliance
 DoD 8100.2 Compliance
 NISPOM Compliance
 DCID 6/3 Compliance
 Government Security News
 10Gig Network Encryption
 Partner Overview
 Strategic Partners
 Resellers
 Technology Partners
 Become a Partner
 Partner Portal Login
 Contact Information
 Web Contact Form
 Support
 
   

Security Solutions
Contact Us
1-877-878-6655
info@cipheroptics.com
Ask a Quick Question

Network Vulnerability Assessment Tool
Network Vulnerability
Assessment Tool
Home > Security Solutions > Network Encryption

Network Encryption

With breaches rising and network boundaries disappearing, it is apparent that relying exclusively on perimeter defense is no longer sufficient. Instead, companies need to develop a defense-in-depth strategy that includes infrastructure defense, access control and data protection. In working with customers and security experts, CipherOptics has identified the following vulnerabilities found in most organizations' infrastructure:
  1. VLANs can leak or be hopped. They provide separation of data streams, but not data security.
  2. Leased lines can be tapped and the data they transmit stolen. They are also susceptible to accidental misconfiguration.
  3. Carrier circuits are vulnerable to data theft and susceptible to accidental misconfiguration.
  4. Wireless links are vulnerable to theft of data as it's decrypted at the access point. Where encryption is not used, they are entirely vulnerable to attack and data theft.
  5. MPLS VPNs provide logical separation only, but offer no other data protection. MPLS networks can be tapped and once they are, the intrusion is undetectable- giving a hacker access to critical information over long periods of time. They are also susceptible to accidental misconfiguration.
  6. Data replication can be compromised as storage traffic is most vulnerable when it travels over IP-based networks.
  7. Active directory replication can also be compromised; network services are the next area of attack.
  8. Enterprise networks are vulnerable to attacks by insiders, which account for 12 percent of all data loss.
So how do organizations build an architecture that will protect its valuable data on the ever-evolving network? Forward-looking organizations are recognizing that end-to-end encryption must be the foundation of protecting the company's valuable data. Indeed, at some point everything will be encrypted - the question is not if but when.

Taking a Fresh Look at Network-Wide Encryption

One of the down sides of traditional network encryption is that the negotiation and sharing of encryption keys forced static connections (tunnels) into networks which have been designed to be very dynamic. Worse, for those choosing security over performance, traditional link encryption explodes in complexity as network size increases, driving up operational expenses while decreasing performance.

Fortunately, with the CipherOptics CipherEngine™ solution and family of Security Gateway products there is no longer a need to choose between performance and security. CipherOptics' solutions ensure data security over any network without affecting user experience or operational requirements.

CipherEngine separates the management of policies and encryption keys from the distribution and enforcement of those policies and keys. By dividing policy and key management into separate components, a management layer and a control layer, CipherEngine changes the fundamental connection-oriented nature of traditional network encryption. With CipherEngine network-wide encryption can be accomplished without the use of static tunnels.

CipherEngine's Benefits:
Policy and Key Management
  • CipherEngine creates, manages and distributes security policies and encryption keys on "a separate and transparent plane"
  • The system is centrally controlled and GUI operated
    • Leaving the Network Alone
  • CipherEngine allows the network and applications to operate as if there was no encryption
  • CipherEngine keeps all that is good about encryption and eliminates what was bad


    • The CipherOptics Network-wide Encryption Solutions easily integrate into your network. For more information or to speak directly with a CipherOptics representative about your security concerns, call us at 1-877-878-6655 or feel free to ask us a quick question.
     
    Copyright 2002-2008 CipherOptics, Inc. | All rights reserved | 1-877-878-6655
    Trademark and Legal Notices | Privacy Policy | Site Map