Network Security Layer 2

When security is implemented to protect data that is sent across a public or other network, two options are mainly provided namely Layer 2 or Layer 3 security. These layers refer to the OSI model for data communications. Layer 2 refers to the Data Link Layer and is primarily used for high speed data throughput in point-to-point applications or new generation high-speed, multipath backbones. Various modes of encryption are supported but in essence the encryption mechanism simply encapsulates all the data on the layer and thus routing of IP packets are not affected at all and should be transparent to the network operation.

Nanoteq has on offer a number of data or link encryptors suitable for various network interface configurations. Our latest flagship product in this category is the Qnect 100. This product was developed using the existing new fast QCM-L crypto module that fully supports the crypto autonomy principle.

The Qnect 100 can handle full-duplex data rates of up to 1Gb/s with state-of-the-art symmetrical and asymmetrical cryptographic capabilities.
All the products in this family are based on the same host controller and crypto module architecture, with line interfaces (as per client requirement) and packaged in a 1U or 2U 19” rack enclosure. Depending on client requirements for redundant power supplies and line interface types, the product can be augmented.

The Key Management System (KMS) is used, amongst other important cryptographic related activities, to host multiple cryptographic algorithms and generate and allocate key sets for programming into the QCM in a dedicated stand-alone entity.

The Nanoteq centralised on-line manager, QCM Center, is used to handle all management related communication to the Qnect link encryptors on the network via the IP network infrastructure (out of band management) or through the encrypted layer 2 communication link (in-band management). 

For more information, please contact us for a detailed specification on our latest Layer 2 encryptors.