Академический Документы
Профессиональный Документы
Культура Документы
com
Products
ELCRODAT 4-2
Ruggedized encryption device for voice and data communications via HF/VHF/UHF and SatCom (NATO).
The ELCRODAT products from Rohde & Schwarz protect voice and data communications in digital and analog
networks of armed forces and government authorities for all German and NATO security classifications.
The ELCRODAT 4-2 is a fully ruggedized tactical crypto device used to encrypt and decrypt voice and data
communications for all German and NATO security classifications. Since it is TEMPEST-proof, it is interoperable with
HF/VHF/UHF radio, satellite communications and line transmission equipment. It is ideal for deployment on stationary
and mobile platforms in rugged terrain and in naval and airborne environments.
References
The French navy uses the ELCRODAT 4-2 as part of its RIFAN II program (rseau IP de la force aronavale). The
encryption device has also been qualified for operation in advanced airborne platforms such as the Eurocopter Tiger
(in Germany and Spain) and the A400M transport aircraft (in Belgium, Germany, Spain, France, Great Britain,
Luxembourg and Turkey). The MMC3000, a variant of the encryption device aimed at the global market, is in demand
by customers outside Europe.
Key Facts
Voice and data encryption from the highest German security levels up to COSMIC TOP SECRET
Stationary and mobile deployment in all military branches (army, navy, air force)
Stationary and mobile deployment in all military branches (army, navy, air force)
ELCRODAT 5-4
Highly secure voice and data communications in digital and analog networks.
The ELCRODAT products from Rohde & Schwarz protect voice and data communications in digital and analog
networks of armed forces and government authorities for all German and NATO security classifications.
The ELCRODAT 5-4 (ED5-4) is used by military organizations and government authorities for encrypted transmission
of voice and data signals in analog and ISDN networks. It provides secure end-to-end encryption, which protects
messages against eavesdropping and manipulation attacks along the entire transmission path.
Key Facts
Interoperable with existing voice encryption devices (ELCROVOX 1-4D, STU-IIB, TCE 500/B)
Encryption keys can be loaded manually via the standardized NATO fill interface or provided automatically via a key
distribution center
Access to all cryptological functions with personal chip card and PIN code
ELCRODAT 6-2
Secure voice and data communications in ISDN up to TOP SECRET classification level.
The ELCRODAT products from Rohde & Schwarz protect voice and data communications in digital and analog
networks of armed forces and government authorities for all German and NATO security classifications.
The ELCRODAT 6-2 is the first encryption unit approved by the German Federal Office for Information Security (BSI)
for the transmission of information classified up to TOP SECRET, which uses a public key method for key agreement.
In conjunction with the public key method, the noise generator implemented in the encryption unit permits mutual
authentication and key agreement. New session keys are generated in the encryption unit for each connection. The
keys do not leave the units and are deleted after the session, ensuring maximum security. Access for users and
administrator is secured by state-of-the-art processor chip cards.
The system is available in two versions: ELCRODAT 6-2 S and ELCRODAT 6-2 M.
Version "S" is used for Euro-ISDN basic rate access (S0 bus/port). It is the secure supplement to existing Euro-ISDN
terminals or PBXs.
Version "M" is used for Euro-ISDN primary rate access (S2M port) and permits simultaneous individual encryption of
up to 30 channels. A typical application of this version is the 2 Mbit/s port encryption at the frontend of ISDN PBX
systems.
The devices are connected between commercial ISDN terminals and the ISDN access point. For the network, the
encryption devices act like terminal equipment. For terminal equipment, the ELCRODAT 6-2 acts as a network
termination (NT).
The ELCRODAT 6-2 high-end encryption system consists of the following components:
Encryption unit
R&STrustedFilter IP
Real-time capable information flow between security domains
The R&STrustedFilter IP separates IP networks with different classification levels. It applies deep packet inspection
to all passing packets to prevent the unwanted leakage of classified information. If a packet violates the configured
filtering rules the packet is dropped and the event is logged.
The R&STrustedFilter IP supports the filtering of VoIP traffic (SIP, RTP) and of various radio control protocols. It is
possible to add further filter rules for other protocols as necessary. Filtering is performed stateless focusing only on
the current processed packet. Additionally, the R&STrustedFilter IP can be configured to only allow communication
between certain devices in both networks. The IP addresses of the higher-classified network can be hidden from the
lower-classified networks using network address translation (NAT). Audio data sent from the higher-classified network
to the lower-classified network may only pass the R&STrustedFilter IP if they bear a correct cryptographic signature.
The filter configuration of the R&STrustedFilter IP is easily configured using its management system.
The R&STrustedFilter IP is based on the R&S SIT Cryptodevice-Platform, which is embedded Linux based and uses
hardware developed and manufactured by R&S. The R&S SIT Cryptodevice-Platform offers among others the
following security features:
Secure boot
Rigid enforcement of classifi cation boundary between red and black data
Competencies
Software-defined crypto
Tamper protection
Access protection
High performance
VS - Approval of products
Long time experience in development of crypto products to reach an approval for all national (BSI) and NATO
(SECAN) classification level
Rohde & Schwarz SIT has the technical expertise and longtime experience in the creation of security concepts and
the development of modules and devices. This includes the security certification for all national (Germany) and NATO
classification levels, and according to Common Criteria.
Cryptologie Expertise
Secure side channel resistent Implementation of modern crypto algorithms and crypto methods.
Longtime experience in the secure, side-channel resistant implementation of modern cryptographic algorithms and
procedures.
Consulting in the analysis of security aspects, the selection of security procedures, and the creation of security
concepts. Development partner of new security products.
Expertise in designing and engineering of highly sophisticated random number generators, including their successful
certification. Consulting services in development and certification of random number generators.
Rohde & Schwarz SIT creates security concepts for various security applications.