Cipher X® 7100 Frame Relay Encryption - AES

Cipher X 7100 Frame Relay Encryption

Frame Relay Encryption (AES 256-bit) for Mission-Critical Networks

Cipher X 7100 Frame Relay Encryption protects mission-critical communications sent over public frame relay networks by securing selected permanent virtual circuits (PVCs). It offers full duplex 256-bit Advanced Encryption Standard (AES-256) encryption algorithms, incorporated within a hardware-based crypto processor module, ensuring low latency and maximum performance. It is also automatically and centrally managed by TCC's KEYNET Key and Device Management system.

Product Benefits

  • Proven AES encryption optimally protects the privacy of sensitive information
  • Single hardware platform with scalable performance
  • Clear and secure support saves money since only one frame relay circuit is required
  • Compliance to ANSI X9 security standards enables banks to certify that they are following 'Prudent Business Practice' in the protection of transmitted data
  • KEYNET secure management application lowers installation and maintenance costs, monitors security compromises, and automates key management
  • Allows secure remote software download to do product upgrades or to add new features.

Scalable Performance

Cipher X 7100 Frame Relay Encryption provides various speeds in a single hardware platform reducing the costs and optimizing the circuit data rate and number of private virtual circuits for each Cipher X frame relay encryptor at your remote sites. This innovative approach allows customers to install a Cipher X 7100 data encryptor on your public frame relay network today at the circuit data rate and the number of secure private virtual circuits (PVCs) you need and remotely upgrade to a higher speed circuit or add PVCs when needed. With Cipher X 7100 Frame Relay network encryption, you can tailor your hardware encryption needs quickly and easily as your corporate needs expand, while protecting your hardware investment.This allows you to pay for only the system you need today with options to upgrade in the future.

Seamless Network Overlay

Cipher X 7100 Frame Relay Encryption is network transparent. Since it only encrypts the data in a frame relay packet, no changes to the network are required. Additionally, it secures data at the frame relay layer so it can also protect SNA, BSC, IP or other protocols encapsulated in frame relay.

The Cipher X 7100 requires little user training to install, configure and operate, minimizing operational cost to end-users. Security policies are intuitively easy to establish and enforce; each bi-directional data link connection identifier (DLCI) based link is configured as a transparently established secure connection. Once configured, insertion of Cipher X 7100 data encryptors into the frame relay network is operationally transparent; no changes to the network are required.

Robust Key and Device Management

Secure, AES-256 protected key and device management of each Cipher X 7100 data encryptor can be performed remotely over a client-server connection using TCC's KEYNET Release 2

Incorporating a KEYNET centralized management function into the network makes the security policy configuration and periodic key management operations fully automatic for trusted security.

vpnchrt.gif (19725 bytes)

A security policy is also easily enforced by the Cipher X system. Each frame relay virtual circuit is designated as cipher (secure), clear, or blocked. This is transparent to the user thereby eliminating training, user acceptance, and enforcement issues. A single Cipher X system can control access for all 1,024 virtual circuits in a frame relay connection making it a very cost effective solution.

Frame Relay Encryption Specifications

(Cipher X 7100)

 Full Duplex frame relay data security

 Synchronous Data Rates up to 2.048Mbps

 Frame Size up to 4,096-Bytes


 Advanced Encryption Standard (AES)

 256-bit Session Key Variable

 16-Byte (I/O width) Block Cipher

 FIPS 197 Compliant Implementation

Key Management1

 Local Management via Cipher Site Manager

 Remote Centralized Management via KEYNET

 Secured SNMP Key Service Messages

 AES-256 Encrypted Key Service Msgs

Device Management1

 Local Monitoring / Setup - Cipher Site Manager

 Custom Microsoft Windows™ Application

 Role-Based Functionality (User Passwords)

 Remote Centralized Management via KEYNET (SNMP)

 AES-256 Protected Device Status & Control Msgs

 Time & Date Stamped Audit Logs

 Alarms, Errors, & Security Events

Network Protocol

 ITU-T:  Q.922; Q.933

 ANSI:  T1.606; T1.617; T1.618


Security Standards

 FIPS-197;  FIPS 140-12

 ISO 8732

Electrical Interfaces

 V.35; X.21; RS-422 / RS-449;

 RS-485; RS530; RS-232

Power Input

 85-264VAC, 45-65Hz;   20 Watts (typical)


 Operational temp. 0° C to +50° C

 Humidity  5% to 90%  non-condensing

Physical Parameters

 Dims:  41.0cm(w) x 4.4cm(h) x 26.7cm(d)

 19-Inch Rack Mountable: Flanges Included

 Weight:  3.7kg (8.2lbs) less cables & flanges

Agency Approvals

 FCC 47 CFR Part 15, Class A

 ICES-003 Issue 4 Class A

 EN55022:1998/A1:2000/A2:2003 Class A ITE

 EN55024:1998/A1:2001/A2:2003 ITE


 IEC 60950-1:2005

 EN 60950-1:2006


1.  Remote Centralized Key & Device Management requires AES-256 based KEYNET

2.  Based on FIPS 140-1 level 3 certified platform



AES = Advanced Encryption Standard

DEK = Data Encrypting Key (Session Key)

DLCI = Data Link Connection Identifier

KEK = Key Encrypting Key

MKEK = Master Key Encrypting Key

PVC = Permanent Virtual Circuit


TCC is dedicated to quality products and services. TCC is ISO 9001 certified. ISO 9001, granted to TCC by TUV, is the most stringent standard available for total quality systems in design/development, production, installation and servicing.

Cipher One

CipherONE® Optimized Network Encryption

Our solutions meet TCC's CipherONE Optimized Network Encryption best-in-class criteria for maximum cryptographic strength, and are optimized for performance and ease of use for our customers.

Read More