Paradise adds support for satellite acceleration of customer-encrypted TCP data
September 14, 2017
Historically, TCP acceleration has been used to overcome the poor performance of TCP over high-latency satellite links and allows links to run at near capacity for all forms of TCP traffic (as used in file transfers, emails, general internet traffic, etc.). However, acceleration of encrypted TCP traffic has never been supported on satellite modems because the user data is hidden inside secure tunnels and any attempt by the modem to accelerate the encrypted packets would appear as a man-in-the-middle attack, resulting in rejection of the packets. The consequence of this for users has been poor performance of encrypted TCP traffic over satellite, resulting in wasted satellite bandwidth.
As part of our XStream IP™ advanced optimisation suite, Paradise modems now offer a TCP Cipher Acceleration feature for situations where customer-provided IP cryptos, collocated with the satellite modems, are used to provide encryption and decryption of the satellite data. The solution guarantees the acceleration of all TCP traffic, including for VPNs, regardless of the type or strength of encryption used. Furthermore, it does not require the user to provide the modems with any confidential information, such as encryption keys that could in principle be used to decrypt the data and re-encrypt it after performing the acceleration function.
Paradise was the first in the industry to support TCP acceleration inside satellite modems, all developed in-house well over a decade ago. With encryption becoming increasingly commonplace and set to become the norm, the need for TCP acceleration of encrypted traffic has become more important than ever. Paradise’s TCP cipher acceleration feature forms part of XStream IP™, an integrated set of modem IP optimisation and traffic management features designed for maximum reliability and bandwidth efficiency. Our cipher acceleration is being rolled out to all of our Q-Flex™ modem variants with immediate effect and is applicable to both point-to-multipoint and point-to-point links (including all Q-NET™ systems).
© 2014-2019 Teledyne Paradise Datacom
& Teledyne Paradise Datacom Ltd.