High-Speed Cross-Cloud Encryption Overview
High-Speed Cross-Cloud Encryption delivers secure, high-performance connectivity for enterprises and organizations that require uncompromised speed and protection across multicloud networks.
Enabling Media Access Control security (MACsecMedia Access Control security (MACsec) is a security protocol that encrypts data traffic between Ethernet-connected devices. The MACsec protocol is defined by IEEE standard 802.1ae. When MACsec is enabled, a bi-directional secure link is established after an exchange and verification of security keys between the two connected devices. A combination of data integrity checks and encryption is used to safeguard the transmitted data.
) for High-Speed Cross-Cloud Encryption ensures that your data remains private and secure while traveling at speeds up to 100 Gbps, and even higher in the future, between critical locations.
Designed for mission-critical workloads, this service combines line-rate encryption with the reliability and scalability needed to support modern cloud, data centers, and enterprise applications without compromising performance.
The primary benefit is that data is secured without sacrificing network speed. You can configure High-Speed Cross-Cloud Encryption by enabling hardware-based encryption of MACsec. It provides Layer 2Layer 2 of the OSI model is the data link layer. This provides node-to-node data transfer (a link between two directly connected nodes). Most Megaport Virtual Cross Connects (VXCs) operate at this layer. Layer 2 is divided into Media Access Control (MAC) layer (controls how devices in a network gain access to medium and permission to transmit), and Logical Link Control (LLC) layer (responsible for identifying network layer protocols and then encapsulating them and controls error checking and frame synchronization).
(Data Link Layer) encryption to authenticate Ethernet frames across a direct link. For more information, see Using MACsec with Megaport.
About line-rate encryption
Line-rate encryption is a form of data encryption that operates at the maximum physical speed of the communication link, often referred to as wire speed or full line rate.
This means that the encryption and decryption process is performed without introducing any noticeable delay or reducing the overall data throughput of the link.
In high-speed networks, achieving line-rate encryption is critical because traditional software-based encryption methods often cannot process data fast enough and might create bottlenecks.
Enabling High-Speed Cross-Cloud Encryption
The following steps outline how to configure and enable High-Speed Cross-Cloud Encryption via Megaport’s services.
-
Order CSP ports – Order dedicated Cloud Service Provider (CSPA Cloud Service Provider (CSP) is an organization that offers one or more components of cloud computing to businesses or individuals. Typical cloud services are Infrastructure as a Service (IaaS), Software as a Service (SaaS), or Platform as a Service (PaaS).
) ports and obtain Letters of Authorization (LOAA Letter of Authorization (LOA) is a document that customers need to present to their data center provider to establish the physical cross-connect from their data center services to their Port. The LOA is provided via the Megaport Portal when a customer provisions a new Port.
) from CSPs. -
Order Megaport Ports – Order Ports in the Megaport Portal and upload the CSP LOAs for Cross Connect completion with Megaport’s assistance. For more information, see Uploading a Letter of Authorization (LOA).
-
Configure MACsec – After the Cross Connects to the dedicated CSP ports are completed, provision the encrypted link and enable MACsec on all endpoints. For more information about establishing a MACsec connection between CSPs using Megaport services, see Creating a cloud-to-cloud encrypted connection.
-
Activate the encrypted paths – Activate encrypted connections between endpoints at line rate, up to 100 Gbps across the Megaport network.