Cellcrypt Mobile
Cellcrypt Mobile™, is a downloadable application that runs on off-the-shelf cell phones such as Android™, BlackBerry®, iPhone® and Nokia® smartphones and uses government-grade security for protecting sensitive voice calls against interception.
Easy to Use
Cellcrypt Mobile's intuitive user interface makes a secure call as easy as making a normal call:
To make a call, users simply open the Cellcrypt Mobile application by selecting the icon on their phone, manually enter a Cellcrypt secure number (or select a previously saved contact from the Cellcrypt address book) and press send- Cellcrypt Mobile needs to be running on both devices so that both can encrypt/decrypt the voice call at each end to provide security along the entire path between the callers
- It also uses the data channel (IP) rather than voice channel so both devices also need to be connected to the internet using standard data connectivity provided by the service provider
- Government-grade cryptography is used to check the identity of each device on the call and then encrypt the call
- The recipient’s phone rings or vibrates, automatically shows the Cellcrypt Mobile screen and displays an incoming call
- If the call is accepted a normal conversation is conducted until one of the callers hangs up. The caller is notified if the recipient is busy or not online
Secure
In any product, security is only as strong as:
- The strength of the encryption it uses
- The security of the secret keys used to unlock the encryption
- The integrity of the product implementation and the trustworthiness of the supplier
Cellcrypt Mobile uses encryption algorithms that are recommended for military and government secure communications and its secret keys never leave the mobile device. The product has been tested by third parties and validated to several government standards including US NIST FIPS 140-2 (certificate #1310) for its cryptography.
High Performance
All communications products that rely on cellular networks are dependent on the strength, availability and reliability of the underlying radio network for their performance. Cellcrypt understands this industry problem and is one of few companies to deliver specific technology solutions for optimizing performance in poor and variable wireless conditions, including its Encrypted Mobile Content Protocol™ and Encrypted Content Delivery Network™.
Cellcrypt Mobile automatically switches to the highest quality network that the handset is connected to so that Wi-Fi™ is selected in preference to cellular networks. Also calls work across changing cellular networks (for example if a 3G connection is degraded by the carrier to an EDGE or GPRS connection) even as the call is in progress. Callers can be on different networks in different countries for example Wi-Fi at one end and GPRS at the other.
Easy to Set Up
Setting up Cellcrypt Mobile on a cell phone is easy:
- Users send a serial number of their phone to Cellcrypt and the secure number they want to use.
- The Cellcrypt Mobile software application is then transferred to the user for installation. The easiest transfer method is via a download link contained in an SMS sent by Cellcrypt to the user (if a phone number is given). It can also be sent by email or on a storage device for loading from a PC, or provisioned from a device management application such as BlackBerry Enterprise Server.
- A standard mobile application download procedure is then completed including validation checks by the handset to ensure the authenticity of the Cellcrypt Mobile software application.
If the phone is lost or stolen, Cellcrypt Mobile can be disabled remotely, instantly.
Security
- Strong end-to-end encryption
- US Government FIPS 140-2 validated (cert# number 1310)
Simplicity
- Runs on popular smartphones such as AndroidTM, BlackBerry®, iPhone® and Nokia®
- No specialist equipment required
- Intuitive user experience, runs in background & integrates with device phonebook
Performance
- High call quality with low latency
- Operates on all data-capable wireless networks
- International calling in over 200 countries
- Secure calling to landlines with Cellcrypt Enterprise Gateway™
Operating Systems
- Android™
- BlackBerry®
- iOS 4
- Symbian S60 (Nokia E-Series, N-Series devices)
Any IP-enabled network, e.g.
- GSM/CDMA
- 2G
- 3G
- 4G
- Satellite
- Wi-Fi™
Cellcrypt uses standard encryption technologies including:
- Advanced Encryption Standard (AES) for symmetric encryption
- Elliptic-Curve Digital Signature Algorithm (ECDSA) for digital signatures
- Elliptic Curve Diffie-Hellman (ECDH) for key agreement
- Secure Hash Algorithm (SHA) for message digest
In addition, before these algorithms are processed, Cellcrypt uses additional algorithms for added security (double-wrapping). For example, the voice call is first encrypted using RC4-256 bit and then encrypted again using AES-256 bit.
Public Cryptography
(2048-bit RSA, & ECDSA, ECDH using curves with 384-bit prime moduli)
RSA and ECDSA are used for authentication. The key pairs are generated on the phone during the installation and are unique to each phone. A private key is never shared. The Elliptic Curve Diffie-Hellman (ECDH) and RSA algorithms are used for key exchange. The session key is only valid for one phone call and securely destroyed after use.
Symmetric Cryptography
(AES & RC4, both 256 bits)
Both encryption algorithms are used at the same time. The data packet is first encrypted with RC4 and the cipher text is then encrypted again with AES in Counter Mode (CTR). Both algorithms are initialized with the exchanged session keys.
Hashing Algorithms
(SHA512)
Industry standard hashing algorithms are used for increased integrity assurance.
Random Number Generation
A 2048 bit seed pool is generated during the installation and is periodically updated. The initial seed is derived from the microphone input.
