Secure access to conference bridges with encrypted calls from cell phones

Conference Calling Solution

Cellcrypt Secure Conference Service - Protect your information in conference calls

Cellcrypt enables secure access to conference call bridges with encrypted calls from mobile phones, so your team can speak with confidence, wherever they are.

Conference Calls – Mobility and Security

Organizations depend on conference calls to run their daily operations. But as employees become more mobile and the speed of business becomes faster, there is a growing need for people to join conference calls from wherever they are - which often means using their cell phone either for convenience or out of necessity.

Traditional conference bridges make it difficult to control who is on a call. Long lived PINs are often distributed freely, making conference calls easy to access by unauthorized parties such as ex-employees.

Secure Conference Calling Solution

Because conference calls very often contain highly confidential and sensitive information – such as Board and Executive Management Team calls, Intellectual Property discussions, high value business deal talks, crisis management calls or discussions concerning disaster scenarios and national security– organizations need to take steps beyond simple access control to reduce the risk of targeted, malicious attacks. They need to strongly authenticate the calling devices and secure the conversations.

Speak with confidence

Cellcrypt Secure Conference Service™ is an easy-to-use solution for extra-secure access and encrypted calling within a secure conference bridge, accessible from cell phones.

Cellcrypt secure conference calling uses strong cryptographic authentication in combination with pre-defined phone numbers to ensure that only authorized phones can join. The service has an easy-to use web-based management console for setting up any number of bridges with eligible participants defined using a white list policy.

An optional policy setting enables eligible participants to gain access to the bridge from a standard phone, if required, using a pre-defined phone number and PIN. This allows an administrator to mix unencrypted calls from selected phones over the public telephone network with secure calls from other locations where calling is a concern.

Security

  • Strong end-to-end voice call encryption
  • US Government FIPS 140-2 validated (cert# number 1310)
  • PIN authorization
  • Pre-defined caller white lists
  • Strong authentication and encryption for secure access

Simplicity & performance

  • Use direct from Cellcrypt Mobile™ application on leading smartphones
  • High call quality with low latency
  • Operates on all wireless data networks including 2G, 3G, Wi-Fi and satellite
  • International calling in over 200 countries

Secure Conference Features

  • Secure mobile access via Cellcrypt Mobile, and secure landline access via Cellcrypt Enterprise Gateway™
  • Create and manage private conference bridges through web-based console
  • White lists of eligible callers
  • Access from PSTN
  • Simple to integrate with PBX dial plans
  • Entry / exit announcements
  • Volume adjustment: self / callers
  • Up to 25 callers per bridge, any number of bridges

Operating System

  • Symbian S60 (Nokia E-Series, N-Series devices)
  • BlackBerry
  • Cellcrypt Mobile v5.5 or later required

Any IP-enabled network, e.g.

  • GSM/CDMA
  • 2G
  • 3G
  • 4G
  • Satellite
  • Wi-Fi™

Cellcrypt uses standard encryption technologies including:

  • Advanced Encryption Standard (AES) for symmetric encryption
  • Elliptic-Curve Digital Signature Algorithm (ECDSA) for digital signatures
  • Elliptic Curve Diffie-Hellman (ECDH) for key agreement
  • Secure Hash Algorithm (SHA) for message digest

In addition, before these algorithms are processed, Cellcrypt uses additional algorithms for added security (double-wrapping). For example, the voice call is first encrypted using RC4-256 bit and then encrypted again using AES-256 bit.

Public Cryptography
(2048-bit RSA, & ECDSA, ECDH using curves with 384-bit prime moduli)
RSA and ECDSA are used for authentication. The key pairs are generated on the phone during the installation and are unique to each phone. A private key is never shared. The Elliptic Curve Diffie-Hellman (ECDH) and RSA algorithms are used for key exchange. The session key is only valid for one phone call and securely destroyed after use.

Symmetric Cryptography
(AES & RC4, both 256 bits)
Both encryption algorithms are used at the same time. The data packet is first encrypted with RC4 and the cipher text is then encrypted again with AES in Counter Mode (CTR). Both algorithms are initialized with the exchanged session keys.

Hashing Algorithms
(SHA512)
Industry standard hashing algorithms are used for increased integrity assurance.

Random Number Generation
A 2048 bit seed pool is generated during the installation and is periodically updated. The initial seed is derived from the microphone input.