CryptoPhone  
 
background image ProductsTrennlinieOrderingTrennlinieBackgroundTrennlinieScenariosTrennlinieNewsTrennlinieQ&ATrennlinieSupportTrennlinieContact  
background image CompanyTrennlinieGSM SecurityTrennlinieEncryptionTrennliniePublished Source  
 
PRODUCTS
 

Encryption

Encryption

The GSMK CryptoPhone technology is based on published and well researched algorithms for both encryption and voice processing. It uses very long keys, resulting in a product that provides peace of mind today and in the future.

All calls are encrypted with 256-bit keys using AES and Twofish running as counter mode stream ciphers. Using both AES and Twofish provides a much stronger design then using only one algorithm. For the highly unlikely case that a weakness is discovered in one of the algorithms, the use of the second algorithm provides still a sufficient margin of security. The use of the two very strong algorithms is a unique feature of the CryptoPhone that provides a "fall back" inside the crypto-system design. The design goal was to provide not only "tactical security" that lasts for a few months or years, but to design for security against future developments in cryptanalysis in the next decades.

The key used for each call is generated using a 4096-bit Diffie-Hellman shared secret exchange, hashing the resulting 4096 bits to the 256 bit session key by means of SHA256. To prevent man-in-the-middle attacks, a six-letter hash is generated from the Diffie-Hellman result and displayed to the user. The user then reads three letters over the encrypted line to the communication partner and verifies the three letters the communication partner reads to him. If there were a discrepancy in the six letters, a man-in-the-middle attack has been  detected.

The random material required for the Diffie-Hellman exchange is generated by using the least significant bit from the microphone signal (not during calls of course) and enhancing this entropy with the Fortuna algorithm. This scheme ensures that each encrypted call is performed with a completely new and random key. All key material is securely erased immediately after the call ends.

The graphic below shows the encryption flow from key exchange to data encryption. For more in-detail explanation of the GSMK CryptoPhone, please refer to the Q&A-section.

back to the top

Further References Cryptanalysis

Title

Author

URL

Instant Cyphertext-only Cryptanalysis of GSM encrypted communication

E. Barkan, E. Biham, N. Keller

 http://cryptome.org/gsm-crack-bbk.pdf

Sicherheit von 1024 bit RSA-Schlüsseln

S. Lucks, R. Weis, A. Bogk

 http://www.cs.vu.nl/~ruedi
/nah6/WLBrsaDuD.pdf

GSM Association downplays mobile security concerns

EE Times

 http://www.eetimes.de/at/
news/OEG20030903S0018

Literature References COMINT/SIGINT

Author

Title

Publisher

ISBN

James Bamford

The Puzzle Palace: A report on on America´s Most secret Agency

Viking Press

0-14-006748-5

James Bamford

Body of Secrets: Anatomy of the Ultra-Secret National Security Agency

Anchor

0-38-549908-6

Kahn

Seizing the Enigma

Arrow

0-09-978411-4

back to the top