Manualshelf

Operating Manual

ManualsBrandsE F Johnson ManualsElectronics5100 ES Series VHF Radio
919293949596979899100
10-10 5100 ES Models II/III Portable Radio Operating Manual March 2008
Secure Communication (Encryption)
10.4.5 Definitions
Algorithm - Refers to the specific encryption standard (DES or AES) that is used to
encrypt a message. Each standard uses different calculations to perform the encryption
(see Section 10.1).
Algorithm ID (ALGID) - Identifies the algorithm (DES or AES) used to encrypt a
message. This ID and the Key ID are transmitted with each non-analog message to
uniquely identify the key being used.
Black - Refers to information that is encrypted. The opposite is “Red” which refers to
unencrypted information.
Common Key Encryption Key (CKEK) - This is a KEK common to a group of
subscriber units which share the same encryption. These keys can be the DES or AES
type. The use of a common key allows the subscriber units to be rekeyed by the KMF
using one Key Management Message in some circumstances by addressing the KMM to a
group RSI. Refer to “KEK” for more information.
Common Key Reference (CKR) - Same as Storage Location Number (SLN).
Crypto Group - A group of up to 16 keysets containing the same type of keys (either TEK
or KEK). Although a crypto group can contain up to 16 keysets, only two are normally
used. Only one keyset in a crypto group is active at a time. EFJohnson radios currently
support only one crypto group for TEKs, crypto group 0.
Cryptographic Variable - The variable used by a cryptographic algorithm to encrypt a
message. Also called a “key”.
Key - A variable used by a cryptographic algorithm to encrypt voice or data. Also called
“Cryptographic Variable”. Keys are identified by their Algorithm ID and Key ID values.
Key Encryption Key (KEK) - A key used to encrypt keys contained in Key Management
Messages (KMMs) during OTAR. These messages may themselves be encrypted by a
TEK. These keys can be the AES or DES type. There are KEKs unique to a subscriber unit
(UKEK) and common to a group (CKEK). The other type of key is the Traffic Encryption
Key (TEK) used to encrypt voice and data messages.
Key ID - This is a 16-bit (four hex digit) number identifier from 1-65535 for an encryption
key which allows the key to be identified without revealing the actual key variable. This
ID and the Algorithm ID uniquely identify a key within the KMF or subscriber unit.
Therefore, two keys can have the same ID if they have different algorithm IDs and vice
versa. The Key ID and Algorithm ID are usually transmitted with a message to identify the
key that must be used to decrypt it. Key ID 0 is not used with OTAR.
Key Management Facility (KMF) - The equipment and software which provide OTAR
and related key management services to the subscriber units.