With the global importance of data privacy at an all-time high, Brocade announced a port-based encryption functionality for modular routers.
The firm said this offering delivers encryption embedded in-line with the I/O ports, enabling customers to avoid the significant performance loss, operational complexity, and prohibitive cost associated with services blades or external appliances used for encryption. The new capability better enables comprehensive privacy for all data across campus, data center, and wide area networks belonging to enterprises, service providers, and the public sector.
To protect data-in-flight between data centers, branch offices, and campus buildings, Brocade added encryption, IPsec Suite B algorithms with support for AES 256-bit keys, to the family of Brocade MLXe routers via a purpose-built line module and operating system enhancements. The updates eliminate the need for expensive specialized switch/router encryption services blades or third-party security appliances, while also eradicating performance-inhibiting latency and complex operations that are inherent with these types of add-on devices.
The new security functionality added to the Brocade MLXe routers includes both 256-bit IPsec encryption and 128-bit MACsec encryption, the gold-standard protocols used by organizations to help ensure end-to-end data protection. Both of these security protocols can be enabled at wire speed for up to 44 Gbps (IPsec) or 200 Gbps (MACsec) throughput per module, meeting the highest levels of network performance requirements.
The new IPsec and MACsec functionality for the Brocade MLXe routers is interoperable with third-party IPsec Suite B-capable platforms, and it complements MACsec functionality available in the Brocade ICX family of switches. IPsec interoperability with the Brocade Vyatta vRouter is targeted for a future release.