Satellite Solution
Secure Voice Calling Solutions for Satellite: Breakthrough Simplicity
Never before has secure calling over satellite been so easy. With Cellcrypt Mobile, callers use off-the-shelf smartphones such as Android™, BlackBerry®, iPhone® and Nokia® to make encrypted calls. Using no other equipment and only standard smartphones and broadband satellite terminals, calls are as simple to make as a normal mobile phone call. Plus the cost of the call is often less expensive than a standard satellite voice call. All that is required for encrypted calls over satellites is access to IP (Internet Protocol) on a broadband terminal.
Because Cellcrypt Mobile runs on popular smartphones, all the latest market-leading phone features are available and a single device is used for making encrypted calls over cellular networks and Wi-Fi® as well as satellite.
Cellcrypt also provides voice encryption solutions for PBXs that extends voice security to landlines in corporate offices and with its portable and ruggedized PBX solutions to teams operating in remote locations. These portable solutions easily connect to broadband satellite systems to provide a completely secure, rapidly-deployed private communications network that comprises mobile phones and fixed landlines.
Downloads
Download BGAN User Guides from Inmarsat website.
Security
- Strong end-to-end encryption
- US Government FIPS 140-2 certification
Simplicity
- Runs on popular smartphones
- No additional equipment or configuration required: smart phones connect via WiFi to satellite terminal’s wireless router, and landlines connect via portable PBX server to Ethernet port
Performance
- High call quality with low latency (c.1 sec over BGAN and c. 2 secs if both phones connected to BGAN terminals)
- Supports secure voice calling to fixed landlines and mobile phones on mobile and WiFi networks
- Operates on mobile and Wi-Fi networks as well as satellite
- International mobile calling in over 200 countries
- Can be less expensive than normal satellite-based voice calls
Operating System
- AndroidTM
- BlackBerry®
- iOS
- Symbian S60 (Nokia E-Series, N-Series devices)
Any IP-enabled network, e.g.
- GSM/CDMA
- 2G
- 3G
- 4G
- Satellite
- Wi-Fi™
Cellcrypt uses standard encryption technologies including:
- Advanced Encryption Standard (AES) for symmetric encryption
- Elliptic-Curve Digital Signature Algorithm (ECDSA) for digital signatures
- Elliptic Curve Diffie-Hellman (ECDH) for key agreement
- Secure Hash Algorithm (SHA) for message digest
In addition, before these algorithms are processed, Cellcrypt uses additional algorithms for added security (double-wrapping). For example, the voice call is first encrypted using RC4-256 bit and then encrypted again using AES-256 bit.
Public Cryptography
(2048-bit RSA, & ECDSA, ECDH using curves with 384-bit prime moduli)
RSA and ECDSA are used for authentication. The key pairs are generated on the phone during the installation and are unique to each phone. A private key is never shared. The Elliptic Curve Diffie-Hellman (ECDH) and RSA algorithms are used for key exchange. The session key is only valid for one phone call and securely destroyed after use.
Symmetric Cryptography
(AES & RC4, both 256 bits)
Both encryption algorithms are used at the same time. The data packet is first encrypted with RC4 and the cipher text is then encrypted again with AES in Counter Mode (CTR). Both algorithms are initialized with the exchanged session keys.
Hashing Algorithms
(SHA512)
Industry standard hashing algorithms are used for increased integrity assurance.
Random Number Generation
A 2048 bit seed pool is generated during the installation and is periodically updated. The initial seed is derived from the microphone input.
