[Pyxl101]

Does anyone know if the data flowing across cables like these is typically encrypted? Does the infrastructure itself provide any defense against a submarine hacking into a cable and installing a device that can monitor traffic?

I would hope that the infrastructure could add its own encryption across the link to defend against unauthorized interception.

[virtuallynathan]

It is possible to do this, you can get DWDM transmission equipment with encryption built in, I assume some submarine cable capacity purchasers make use of this, but is raises the cost by a decent amount.

[sitepodmatt]

Typically not.

[telekid]

Wait, really? That’s shocking to me - I would have assumed the entire link was encrypted E2E. Are there technical limitations that make this infeasible?

[solotronics]

as a network engineer for the most part we consider it the responsibility of the end user to encrypt their traffic, we function mostly as the freeway of the internet. some exceptions are when we have links through enemy territory such as through a foreign territory we are traditionally adversarial with. There are exceptions such as Google's anger at their backbone being snooped.

[nugi]

Imagine the hardware required to encrypt that much data on the fly... not so shocking anymore is it?

[ris]

Considering that AMD processors now have the streaming encryption capacity to encrypt data as it travels to and from the memory controller, I think we're at a point where performing high bandwidth symmetric encryption is not significantly more expensive than the existing encoding/transport costs.

[Pyxl101]

Indeed. It seems like we ought to be able to do encryption in hardware at arbitrary speeds without a lot of cost by this point. (No?)