Network security on multiple levels (was Re: NYT covers China cyberthreat)

• Previous message (by thread): Network security on multiple levels (was Re: NYT covers China cyberthreat)
• Next message (by thread): NYT covers China cyberthreat
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Not to mention, the KG units are dot government only.. For obvious reasons.


From my Android phone on T-Mobile. The first nationwide 4G network.



-------- Original message --------
From: Christopher Morrow <morrowc.lists at gmail.com>
Date: 02/21/2013 8:37 AM (GMT-08:00)
To: Jack Bates <jbates at brightok.net>
Cc: nanog at nanog.org
Subject: Re: Network security on multiple levels (was Re: NYT covers China cyberthreat)


On Thu, Feb 21, 2013 at 11:23 AM, Jack Bates <jbates at brightok.net> wrote:
> On 2/21/2013 12:03 AM, Scott Weeks wrote:
>>
>> I would sure be interested in hearing about hands-on operational
>> experiences with encryptors.  Recent experiences have left me
>> with a sour taste in my mouth.  blech!
>>
>> scott
>>
>>
>
> Agreed. I've generally skipped the line side and stuck with L3 side
> encryption for the same reason.

and... some (most?) line-side encryptors light the line up fullspeed
between the encryptors... if they are also attempting to suppress
traffic analysis... so that can be costly if you don't own the whole
pipe :)

• Previous message (by thread): Network security on multiple levels (was Re: NYT covers China cyberthreat)
• Next message (by thread): NYT covers China cyberthreat
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]