MACsec
-
MACsec authentication and encryption (MX10004 and MX10008)—You can enable MACsec on links connecting switches or routers using certificate-based authentication and encryption. Connected devices can mutually authenticate using 802.1X over Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) and dynamically derive the connectivity association key (CAK) for encryption. This configuration enhances security by ensuring that only authenticated devices can communicate and that data is encrypted during transmission.