High-speed network virtualisation is increasingly used to deliver cost-effective scalability, flexibility and network management. Consequently, network services require trusted virtualised encryption for maximum data security.
Senetas has developed the CV Series virtual encryptor for large-scale, extended and virtual data networks; providing the same cost-effectiveness, scalability and flexibility as the networks it protects.
Like the trusted Senetas CN Series hardware encryption platform the CV Series is based on, the CV1000 is a high-performance solution, designed to provide strong encryption security and crypto-agility.
As a Virtualised Network Function (VNF) that will run on any x86 hardware, the CV Series virtual encryptor is 100% interoperable with Senetas CN Series hardware encryptors and is built on FIPS compliant technology.
In this guide, we provide a detailed description of the features and benefits of the Senetas CV1000 virtual encryptor.
CV1000 Virtualised Encryption for >1Gbps performance
The CV1000 is the first crypto-agile Network Function Virtualisation (NFV) encryption solution, designed for large-scale, virtualised WAN/MAN encryption.
Today’s multi-Layer network environments are supported through transport independent mode, delivering concurrent, multi-Layer encryption security (Layers 2, 3 and 4).
The CV1000 consistently delivers >1Gbps performance, with up to 5Gbps achievable through x86 hypervisor host using DPDK acceleration libraries.
CV1000 at a glance
Performance: >1Gbps. Up to 5Gbps subject to host and DPDK (acceleration) configuration.
Protocols: VNF virtualised encryption for virtual networks.
Transport Layer Independence: Topology-based concurrent multi-Layer encryption (Layers 2, 3 and 4), end-to-end encryption security.
Topologies: Point-to-point, Multi-Point, Hub and spoke, Fully meshed.
Certification: FIPS 140-2 (in progress)
Like any VM, the performance of the Senetas CV1000 virtual encryptor is dependent upon host and hypervisor configuration. Performance is also customer target specific and dependent upon operating environment and platform.
Recommended minimum requirements (with DPDK):
- Multi-Core Processor (3 cores)
- 2GB RAM
- 1GB Virtual Disk Storage (subject to image storage requirements)
Senetas CV Series virtual encryptors are 100% interoperable with Senetas CN Series hardware encryptors.
Transport Independent Mode encryption – 360-degree network security
Senetas has designed-in concurrent multi-Layer encryption to ensure the CV1000 meets the demands of multi-Layer (Layer 2, 3 and 4) network architectures.
Senetas provides organisation-wide data protection, with 360-degree network security via network-agnostic, end-to-end data encryption.
The Senetas CV Series virtual encryptor is the optimal security solution for customers seeking to protect their extended WAN, all the way to the virtual edge. It is designed for use in NFV environments as a fully operational, virtualised equivalent of the Senetas CN Series of hardware encryptors.
CN Series hardware encryptor customers benefit from the 100% interoperable CV Series virtual encryptor to provide a cost-effective, hardened encryption security solution for their large-scale extended high-speed networks.
Senetas CV Series encryptors are distributed and supported internationally (outside Australia and New Zealand) by Gemalto under its SafeNet Identity and Data Protection Solutions brand.