E F Johnson Company 2425770 Benutzerhandbuch
8-2
Viking Portable 600 Radio Operating Manual
Secure Communication (Encryption)
8.1.2 AES (Advanced Encryption Standard)
The encryption standard AES is replacing DES-OFB encryption on digital (P25) channels.
It uses a 128-, 192-, or 256-bit encryption key instead of the 64-bit key used with DES.
EFJohnson Technologies radios currently support only 256-bit AES keys. The type of
encryption (DES or AES) is determined by the type of encryption key that is loaded. AES
encryption, like DES encryption, is an optional radio feature that must be purchased and
then enabled at the factory (or by a factory-created option file).
It uses a 128-, 192-, or 256-bit encryption key instead of the 64-bit key used with DES.
EFJohnson Technologies radios currently support only 256-bit AES keys. The type of
encryption (DES or AES) is determined by the type of encryption key that is loaded. AES
encryption, like DES encryption, is an optional radio feature that must be purchased and
then enabled at the factory (or by a factory-created option file).
Note
Either DES encryption or AES encryption is optional for the 51FIRE Viking VP600 radio.
8.1.3 FIPS Modes
FIPS 140-2 is a Federal Information Processing Standard for encrypted radios used by the
Federal Government. This standard specifies Federal security requirements for
cryptographic modules for a wide range of applications and environments.
Federal Government. This standard specifies Federal security requirements for
cryptographic modules for a wide range of applications and environments.
8.2
Encryption Keys
An encryption key is a cryptographic variable that is required by the encryption algorithm
to encrypt and decrypt voice or data. To maintain system security, these keys must be
protected from disclosure and also periodically replaced or updated.
to encrypt and decrypt voice or data. To maintain system security, these keys must be
protected from disclosure and also periodically replaced or updated.
With the AES and DES encryption used by EFJohnson Technologies radios (see Section
8.1, "Encryption Algorithms"), the same encryption key is used by both the encrypting
(sending) and decrypting (receiving) radio. AES encryption keys are generated from a
string of 64 hexadecimal characters, and DES keys are generated from a string of 16
hexadecimal characters. Another four hexadecimal characters are used to specify the key
ID. Multiple keys can be loaded into a radio using OTAR or manual loading.
8.1, "Encryption Algorithms"), the same encryption key is used by both the encrypting
(sending) and decrypting (receiving) radio. AES encryption keys are generated from a
string of 64 hexadecimal characters, and DES keys are generated from a string of 16
hexadecimal characters. Another four hexadecimal characters are used to specify the key
ID. Multiple keys can be loaded into a radio using OTAR or manual loading.
When an encrypted message is transmitted, the encryption Algorithm ID (ALID) and key
ID (KID) are usually included in the message. This tells the receiving radio which key and
algorithm must be used to decrypt the message.
ID (KID) are usually included in the message. This tells the receiving radio which key and
algorithm must be used to decrypt the message.
If an attempt is made to transmit a secure message without loading the corresponding key,
“Keyfail” is displayed. The message must then be transmitted in the clear mode (this is
possible only if the channel is strapped to “switchable”) or the key must be loaded.
“Keyfail” is displayed. The message must then be transmitted in the clear mode (this is
possible only if the channel is strapped to “switchable”) or the key must be loaded.
Preliminary Draft 3/9/12