Why Not Layer 2?
You’re apparently asking, “Why are networks still abandoned of encryption and integrity
verification at Layer 2?” The acknowledgment is simple: The actuality of cryptographic algorithms
and accouterments able of able standards-based encryption and candor analysis at
Gb speeds accept not been ahead accessible or available.
Fortunately, this is no best the case. (Thanks to the all-encompassing analysis and analysis
performed by Dr. David McGrew, Cisco Fellow, who manages the Advanced Crypto
Development accumulation in the Cisco Aegis Technologies Group, and John Viega, accepted VP,
chief aegis architect, and McAfee. They led the codeveloped Galois/Counter Mode
[GCM]3, which is a symmetric key cryptographic block blank able of Gb speeds.) The
IEEE 802.1 MAC Aegis Task Accumulation adopted GCM as 802.1AE Media Access Control
Security, generally referred to as MACSec. MACSec was ratified in June 2006, and officially
became the IEEE 802.1AE standard.
When MACSec becomes commercially available, it will be important to break acquainted to the
various government authoritative bodies because they will access regulations stipulating the
use of 802.1AE encryption for accouterment acquaintance and candor for both LANs and
Layer 2 MANs.