Network security on multiple levels (was Re: NYT covers China cyberthreat)

An amazing percentage of "private" lines are pseudowires, and neither you nor
your telco salesdroid can know or tell; even the "real" circuits are routed
through DACS, ATM switches, and the like. This is what link encryptors are
all about; use them.

Agreed. I've generally skipped the line side and stuck with L3 side encryption for the same reason.


and... some (most?) line-side encryptors light the line up fullspeed
between the encryptors... if they are also attempting to suppress
traffic analysis... so that can be costly if you don't own the whole
pipe :slight_smile: