In the run up to Total Telecom 2019, we caught up with Rolf Nafziger, senior vice president at Deutsche Telekom Global Carrier

What is this new security service from Deutsche Telekom Global Carrier?

We have just launched a product we call Encrypted Lambda as a new service within our Lambda Connect solution and as part of our larger 360° Security Strategy. As the name suggests, it encrypts data while in transit via Lambda. This service has come about as an answer to an ongoing problem that has gone under the radar for years – but which cyber criminals have been increasingly targeting. That is, the theft of data while it is travelling across networks. And as volumes of data are exponentially increasing, this threat is also growing. In fact, Cisco has predicted zettabyte-level growth in data, which they believe will swell global IP traffic to 20.6ZB in 2021.

What’s driving this growth are, of course, the rising number of connected devices and technologies. We’re already seeing great expansion in the IoT, M2M, AI, SD-WAN and 5G areas. It is easy to calculate how quickly those volumes of data will rise. And as we get into more real-time scenarios – such as autonomous driving, remote surgery or automatic manufacturing – speed is crucial.  So we need to prepare ourselves and we need to help our clients get ready for a future that is fast upon us.


Please give us more details about your Encrypted Lambda

Encrypted Lambda is truly different. Developed it in partnership with Ciena, it is a Layer 1, hardware-based encryption solution. That means it enables wirespeed throughput at extremely low latency for even the largest quantities of data. This sets it apart from the solutions offered by our competitors – it is faster, more cost-effective and able to effectively take on huge amounts of data.


Working over Layer 1 instead of a higher layer is what makes it different?

Yes, that along with the fact that encryption happens in hardware at the client’s premises. It is important to know that the traditional way of encrypting transmitted data is over Layer 3 or 4, and it is software based. This requires, especially for very large amounts of data, more servers. And more servers means more maintenance, more software, more know-how, more manpower. Plus, because it needs software computation during the data flow, applications are slowed down and latency is added. So both factors – Layer 1 and hardware encryption – makes it possible for our solution to encrypt exceptionally large volumes of data while providing maximum performance and speed.


You have placed Encrypted Lambda within your 360° Security Strategy. Besides encryption, are there additional safeguards?

Definitely. First of all, as I said, encryption happens at the client’s site. The customer also takes care of all security operations. Those include things like managing and setting keys and certificates, so the solution offers dedicated connectivity and encryption. Also, safety is additionally supported due to a double set of authentication keys. If there are anomalies, these trigger an alarm, immediately alerting the customer. Encryption is always on, meaning there is never a data transfer without encryption. The world of communications is moving forward at a faster and faster pace, as are the skills of cyber criminals. That’s why we will continue to improve and develop our security offerings to keep our clients’ data safe.