Skip to main content

1830 Security Management Server (SMS)

How can you protect your layer 1 transport network from a quantum computer attack?

As more content and services move to the cloud, high-speed, low-latency, secure transport has become increasingly crucial. As part of a defense-in-depth security strategy, adding Layer 1 encryption with strong, symmetric pre-shared keys delivers network security today, protecting business-critical data against harvest and decrypt, and protecting against impending quantum computing threats.

The Nokia 1830 Security Management Server (SMS) supports centralized, symmetric key management for the entire cryptographic life cycle of each encrypted service. Using a powerful processor and security enhanced operating system, it generates quantum safe keys from physical spawned entropy to perform link encryption. It also provides highly scalable and unified key management in support of secure business-critical data communications.

As a key part of the Nokia Secure Optical Transport solution, the 1830 SMS helps you secure in-flight data, avoiding sensitive material from getting into the wrong hands, thus preventing business loss and interruption. The 1830 SMS generates quantum-safe keys for optical (1830 PSS, 1830 PSI) and microwave (Wavence) transport platforms, and other network elements, to secure a wide range of applications and services, including:
 

  • Data center interconnect
  • WAN/LAN interconnect
  • High-performance computing
  • Wavelength services
  • Carrier Ethernet services

Benefits and features

Centralized key management, providing highly scalable and unified key management

  • Single point of trust; one point to protect from attack
  • Synchronized key rotation and distribution
  • Enhanced security and simpler operations through unified key management and encryption policies
     

Trusted key management

  • Flexible access control, enabling network partitioning into security areas for multiple enterprise customers
  • Customizable key security parameters on assigned circuits, allowing enhanced end-user control
  • Holistic, network-wide view of security alarm and encryption services

Strong security features

  • Offload computationally intensive cryptographic processing, enabling more sophisticated security algorithms
  • Enable strong hardware-generated keys to guard against classical and quantum computer attacks

Operational simplicity

  • LDAP authentication, enabling administrators to delegate authentication of users and administrators to an external LDAP directory
  • SNMP account management (creation, modification, suppression) separate from NE management
  • Simplified startup configuration, creating a simpler and more efficient user experience

Fully certified by independent parties

Hardware and software implementation certified to meet:
 

  • Common Criteria Evaluation Assurance
  • Federal Information Processing Standards (FIPS)
  • Agence Nationale de la Sécurité des Systèmes d’Information (ANSSI) certifications
  • National Institute of Standards and Technology (NIST)

Ready to talk?

Please complete the form below.

The form is loading, please wait...