User's Manual
Table Of Contents
- SAFETY INFORMATION
- TABLE OF CONTENTS
- SECTION 1 GENERAL
- SECTION 2 CONTROLS AND DISPLAY
- SECTION 3 GENERAL OPERATION
- SECTION 4 RADIOWIDE FEATURES
- SECTION 5 CONVENTIONAL FEATURES
- 5.1 Introduction
- 5.2 Monitoring Before Transmitting
- 5.3 Monitor Mode
- 5.4 Busy Channel Lockout
- 5.5 Call Guard Squelch
- 5.6 Penalty Timer
- 5.7 Conversation Timer
- 5.8 Repeater Talk-Around
- 5.9 Displaying Transmit/Receive Frequency
- 5.10 Emergency Alarm and Call
- 5.11 Conventional Mode Scanning
- 5.12 Standard Conventional Calls
- 5.13 DTMF/ANI Signaling
- 5.14 Single Tone Encoder
- 5.15 Project 25 Mode Features
- 5.16 Keypad Programming
- SECTION 6 SMARTNET/SMARTZONE/P25 TRUNKED FEATURES
- 6.1 Introduction
- 6.2 Analog and Digital Operation
- 6.3 Viewing Unit ID
- 6.4 Standard Group Calls
- 6.5 Private (Unit-To-Unit) Calls
- 6.6 Telephone Calls
- 6.7 Call Alert
- 6.8 Messaging
- 6.9 Sending Status Conditions
- 6.10 Emergency Alarm and Call
- 6.11 Failsoft Operation
- 6.12 SMARTNET/SmartZone/P25 Trunked Scanning Features
- 6.13 Dynamic Regrouping
- 6.14 SmartZone and P25 Trunking Unique Features
- SECTION 7 MISCELLANEOUS
- SECTION 8 DETERMINING AVAILABLE OPTIONS
- SECTION 9 5300 MOBILE FIRMWARE VERSIONS
- SECTION 10 PASSWORD DESCRIPTION
- SECTION 11 SECURE COMMUNICATION (ENCRYPTION)
- INDEX
SECURE COMMUNICATION (ENCRYPTION)
59
Currently, only one crypto group is supported, and it is
always ID 0. As shown in Figure 11-3, the crypto
group ID is the upper four bits of both the SLN and
Keyset IDs.
Figure 11-3 Encryption Parameter IDs
11.4.5 KEY MANAGEMENT FACILITY
The Key Management Facility (KMF) provides
key management and OTAR functions to applicable
radios within the radio system. One of the main tasks
of the KMF is to maintain a data base of information
contained in each radio. This information may include
the following:
• TEKs (main Traffic Encryption Keys)
• KEKs (Key Encryption Keys) used to encrypt
OTAR messages
• Keysets (groups of TEKs or KEKs)
• Crypto groups (groups of keysets)
• Cryptonets (groups of radios using same keys)
• Individual and group Radio Set Identifiers (RSIs)
• List of probable lost or stolen radios
The KMF performs OTAR functions by
exchanging Key Management Messages (KMMs) with
the radios. Both the KMF and radio can originate
messages. Some functions performed by the KMF are
as follows:
• Loading new keys
• Modifying keys
• Initiating keyset switch overs
• Modifying keyset attributes
• Deleting one or more keys to remove a radio from a
cryptonet)
• Deleting all keys (zeroize) when a radio may be lost
or compromised
• Determining if a radio is on the air and reading key
information
• Changing individual and group RSIs
11.4.6 MESSAGE NUMBER PERIOD (MNP)
One of the parameters that is programmed in a
radio utilizing OTAR is Message Number Period
(MNP). This parameter is programmed as described in
Section 11.5.2. This parameter is used to minimize the
possibility of someone sending messages to “spoof”
the system. The MNP is used as follows.
Every message sent out has a message number.
The message number increments by one with each
message sent. The MNP is the maximum difference
allowed between messages. For example, if the MNP
is set to 1000 and the last message number received by
the radio is different by more than 1000 from the
current message number, the current message is
ignored. If the MNP is set to 65535, message numbers
are ignored.
When determining this number, consider the like-
lihood of someone trying to spoof the system by
retransmitting recorded messages and then adjust the
MNP accordingly. The higher the risk, the smaller the
MNP should be. A disadvantage of setting a low MNP
is that the chance of blocking out intended messages
becomes higher. In addition, traffic level and terrain
contribute to lost messages and should also be consid-
ered when selecting this number.
A setting of 1000 is a good compromise because
it blocks out real old messages but is unlikely to affect
anything intentionally sent out by the system (1000
messages sent to a single radio is not likely to occur in
a system in less than a year with normal usage).
11.4.7 DEFINITIONS
Algorithm - Refers to the specific encryption standard
(DES or AES) that is used to encrypt a message. Each
standard uses different calculations to perform the
encryption (see Section 11.1.2).
Algorithm ID (ALGID) - Identifies the algorithm
(DES or AES) used to encrypt a message. This ID and
the Key ID are transmitted with each message to
uniquely identify the key being used.
Crypto Group ID
(4-Bit = 0-15/0-F)
Keyset ID
8-Bit = 0-255/0-FF
xxxx xxxx
xxxx
SLN/CKR ID
16-Bit = 0-65535/0-FFFF
xxxx xxxxxxxxxxxx