Module Name
KMF/Wave/Traffic CryptR
Caveat
When operated in FIPS mode and initialized to overall Level 2 per Sections 2.1 and 9.2 of the Security Policy. No assurance of the minimum strength of generated keys
Security Level Exceptions
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Module provides encryption and decryption services for secure key management, Over-the-Air-Rekeying (OTAR), and secure voice/data traffic for Motorola's Key Management Facility (KMF) and Motorola's Wave System. In the Wave System, the Module is referred to as the Wave CryptR/Traffic CryptR. In the Astro System, the Module is referred to as the KMF CryptR. The KMF and the KMF CryptR combine to provide cryptographic services for Motorola’s APCO-25 compliant Astro™ radio systems.
Approved Algorithms
| AES |
Certs. #C489, #C490, #C491 and #C492 |
| CKG |
vendor affirmed |
| CVL |
Cert. #C496 |
| DRBG |
Cert. #C494 |
| ECDSA |
Cert. #C495 |
| HMAC |
Cert. #C493 |
| KAS |
Cert. #A1761; key establishment methodology provides 192 bits of encryption strength |
| KTS |
AES Cert. #C491 |
| KTS |
AES Cert. #C492; key establishment methodology provides 128 or 256 bits of encryption strength |
| KTS |
AES Cert. #C491 and ECDSA Cert. #C495 |
| SHS |
Cert. #C493 |
Allowed Algorithms
AES (Cert. #C489, key unwrapping; key establishment methodology provides 128 bits of encryption strength); AES (Cert. #C490, key unwrapping; key establishment methodology provides 256 bits of encryption strength); AES (Cert. #C491, key unwrapping; key establishment methodology provides 256 bits of encryption strength); AES MAC (AES Cert. #C492, vendor affirmed; P25 AES OTAR)
Hardware Versions
P/Ns CLN8566A, Rev. 0x1 and CLN1875A, Rev. 0x1
Firmware Versions
R03.07.04 with or without AES128 R01.00.01, AES256 R01.00.03, and/or ADP/DES-CBC/DES-ECB/DES-OFB/DES-XL/DVI-XL/DVP-XL R01.00.00
