
CRYPTOGRAPHY
Encryption Algorithms
Proprietary/Commercial
Contemporary symmetric key block cipher
algorithms
Authentication
Elliptic Curve Digital Signature Algorithm
(ECDSA)
Smart card based X.509 certificates for
verification and validation
KEY MANAGEMENT
Key Exchange
384 bit ECDH
Option for periodic key exchange automatically
Key Generation
True Random Number Generator
Run time key generation
Hierarchically organized levels of keys
NS classified key derivative function
Private Key
Stored on smart card
SECURITY FEATURES
Firmware
Complete design based on FPGA
Firmware security provided through Anti
Cloning IC
Physical
Closed chassis structure which resists probing
Physical lock for interface card
Electronic lock for front panel switches
Tamper evident and respondent chassis
Automatic erasure of CSPs and Log on
tamper detection
OPERATIONS
Data independent encryption
Date-time-stamped log of every activity
Log retrieval and backup facility
Alarm detection and indication
Synchronization time < 3 seconds