Important: This page is also available in German. Click here.

Wichtig: Hier ist diese Seite auch auf Deutsch verfügbar.

The Centauris layer 2 encryptor allows to secure Ethernet networks, both in point-to-point and multipoint topologies. It exists in two versions:

• Ethernet encryption from 10Mbps to 1Gbps
• Ethernet encryption at 10Gbps

The encryptors are certified according to Common Criteria (EAL4+).

features & benefits

Network

• Unicast, Multicast or Broadcast traffic encryption
• Support of Encrypt, Discard or Bypass modes
  
• Support of Jumbo frames
• Support of VLANs (802.1Q)
• License model for speed upgrade from 10Mbps to 1Gbps
• Automatic discovery of multi-cast encryption groups
• Automatic aging/deletion of inactive groupsdiscovery of multicast encryption groups
  
• Fault tolerance to network outages and topology changes

Encryption & Key Management

• AES Encryption in Cipher Feedback (CFB) and Counter (CTR) modes
• Key length of 256 bits
• Intelligent Group Key Management allows for segmentation of the network using group keys (VLAN or MAC-based)
  
• Automated key management & seamless key change without traffic interuption
• Compatible with Quantum Key Distribution (Cerberis)

Advanced Management & Monitoring Tools

• Management and monitoring tools allow easy implementation and monitoring of best-practice security policies (such as Separation of Duties, etc)
• Easy policy configuration and efficient daily management through centralized intuitive GUI, with minimal maintenance requirements
• Ability to monitor security policies through real-time pro-active alerts and configurable regular reports
• Local CLI management option & secure remote management through SNMPv3
  

DOWNLOADS

• Centauris Datasheet
  

• CypherManager & CypherMonitor Datasheet
  
  
  

• Notenstein Bank 10G Ethernet Encryption for DRC
• Swissquote Low-Latency Link Encryption
  
• Hyposwiss Bank Gigabit DataCenter Link
  
• Wide Area Network Encryption in Banking Sector
  

• Gigabit Ethernet Government Network
  
• 10G Ethernet Encryption for Disaster Recovery Center
• Colt QKD as a Service
  
  

CERTIFICATION

Common Criteria EAL4+

Resource center

• Centauris Resource Center
  
• Cerberis Resource Center
  

White Papers

• Optical Fiber Vulnerability
  
• Dedicated Encryption Appliances
  
• Understanding QKD
  

RELATED LINKS

• Centauris Layer 2 Encryption
  
• Arcis Layer 3 & 4  Encryption
  
• Ethernet Verschlüsselung
  

• Quantum Key Distribution
  

Performance

The Centauris Layer 2 Encryptor is fully transparent to the network:

• Bandwith availability: 100%
• Low latency: ~10 microseconds
  

Applications

Point-to-Point Ethernet Encryption

The Centauris Ethernet Encryptor can be used to secure point-to-point networks (eg. link encryption over a dark fiber).

Multipoint Ethernet Encryption

The Centauris Ethernet Encryptor can also be used to secure multipoint networks across a transparent LAN service (carrier Ethernet service). Both hub & spoke and fully meshed topologies are supported. Encryptors operating at different speeds can be used simultaneously in a network.