|
Optical Network Security Tools
A few vendors are developing tools that protect optical networks, offering intrusion detection and prevention at the physical layer. They identify and alert operators to optical events, including malicious intrusions, cable breaks, receiver overloads, weak optical signals, data-signal loss, transients and loss of power.
Opterna sells the FiberSen-tinel System, a rack-mounted fiber IDS that offers passive real-time, protocol-agnostic monitoring for optical networks. Intrusions are automatically detected and shut down while traffic is simultaneously rerouted to an alternative path using artificial intelligence technology.
Another fiber IDS solution, Fiber SenSys from CompuDyne, has become popular in government and military installations, airports, oil refineries, electrical substations, nuclear power plants, water purification and storage facilities, corporate headquarters and manufacturing centers—even palaces—throughout the world.
Oyster Optics has been developing bleeding-edge technologies for optical network security and monitoring since 2001. Oyster Opt...
To continue reading for free, register below or login
To read more you must become a member of SearchSecurity.com
ics' vendor-neutral, protocol-independent solution reduces the risk of threats such as eavesdropping, corporate and government espionage, network disruption and terrorism.
At this point, these detection solutions notwithstanding, the only measure to prevent information from being pilfered off of optical networks is the encryption of transmitted data.
"I think we've seen large increases in the use of encryption over all network paths, including fiber- optics—and encryption defeats eavesdropping," says Gartner's Pescatore.
"In general, I think security has moved up a notch, and tapping into fiber for eavesdropping is still a more difficult way to get at information than many other paths," he says. "But, our advice to enterprises is to use encryption over all network connections where the physical security of access to the network, whether copper or fiber or wireless, cannot be secured."
Many organizations make the mistake of encrypting the data and the transmission, which is redundant. If the data is encrypted, there is no need to spend extra money to send it through a secured tunnel. The trend is leaning toward encryption at the data layer, which reduces the latency and overhead associated with transport.
|
 |
|
