15 Creating Distributed Key Policies

From the Policy view, you can add, modify, and delete policies for Layer 3/Layer 4 IP networks and Layer 2 Ethernet networks.

This section includes the following topics:

Policy Concepts

Adding Layer 2 Ethernet Policies

Adding Layer 3 IP Policies

Adding Layer 4 Policies

Policy Deployment

Editing a Policy

Deleting Policies

Policy Concepts

A policy specifies what traffic to act on and what action to take. Each PEP can store a large number of policies. As network traffic arrives, each packet or frame is examined by the PEP, and processed based on selection criteria such as IP addresses, ports, protocols, or VLAN tags. When the PEP receives a packet or frame that meets the criteria used in one of its policies, it takes one of three actions: it encrypts the packet or frame, bypasses it (passes in the clear), or drops it.

In addition to selection criteria and actions, each policy specifies:

What priority a policy has in relation to other policies

How often keys are renewed and policy lifetimes are refreshed

What encryption and authentication methods to use

Whether key generation is handled by a single ETKMS or the default ETKMSs in each network set

Which addressing mode the PEPs in the policy should use

Whether to reduce the policy size for an IP policy

Related topics:

“Policy Priority” on page 182

“Schedule for Renewing Keys and Refreshing Policy Lifetime” on page 182

“Policy Types and Encryption Methods” on page 183

EncrypTight User Guide

181

Page 179 Page 181
Page 180
Image 180
Black Box ET1000A, ET0010A, EncrypTight, ET0100A manual Creating Distributed Key Policies, Policy Concepts
Page 179 Page 181

EncrypTight, ET0100A, ET0010A, ET1000A specifications

The Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are advanced solutions designed for secure data transmission and network management, catering to modern enterprise needs. These tools integrate cutting-edge technologies to enhance connectivity, security, and efficiency within various environments.

The Black Box ET1000A is primarily a high-performance Ethernet over Twisted Pair (EoTP) solution. It enables users to extend Ethernet signals over long distances using existing twisted-pair cabling without sacrificing speed or reliability. With support for speeds up to 100 Mbps, this device is ideal for organizations looking to upgrade their existing infrastructure without extensive rewiring. Key features include plug-and-play installation, which simplifies deployment, and versatile compatibility with both legacy and modern ethernet networks.

The ET0010A model takes connectivity a step further by providing seamless integration with fiber optics. This device supports transmission distances that far exceed traditional copper solutions, making it a perfect fit for larger facilities or multi-building campuses. Its built-in Ethernet switch enhances network efficiency by providing multiple ports for device connectivity, thus facilitating greater data flow.

EncrypTight technology is a notable feature across these Black Box models, offering advanced encryption capabilities to safeguard sensitive data during transmission. With military-grade encryption protocols, EncrypTight ensures that corporate information remains secure from potential eavesdroppers. This technology is essential for businesses operating in regulated industries or that handle confidential customer information.

The ET0100A model combines intelligence with monitoring features to provide users with comprehensive network insights. It boasts built-in diagnostic tools that enable IT professionals to troubleshoot issues quickly and efficiently. Additionally, it features real-time performance monitoring, allowing users to analyze bandwidth usage and optimize network performance accordingly.

In conclusion, the Black Box ET1000A, ET0010A, EncrypTight, and ET0100A are powerful tools that embody the latest in data transmission and network management technologies. With their unique features—including extended connectivity capabilities, robust encryption technologies, and real-time monitoring solutions—these devices cater to the growing demands of businesses seeking to enhance their network infrastructure while ensuring robust security and efficiency. Integrating these tools into any organization’s operations can fundamentally improve both performance and data protection, making them indispensable in today’s digital landscape.
Top Page Image Contents