AL3A-RM User Guide Version B
Document Number: 451-93156-002B
31 of 172
8
AES-256
B
IT
E
NCRYPTION
The A3LA-RM modem has a built-in AES-256 encryption software module. It can transmit either
encrypted or unencrypted data in all modes—dial-up, direct Internet, RUDICS, SBD, and SMS.
The A3LA-RM does not support encrypted voice calls. All voice calls are made in the ‘clear’
unless an external encryption module is hooked to it, such as the General Dynamics® Sectéra.
When encryption is enabled and for non-packetized data transmission modes (including dial-up,
direct Internet, and RUDICS), the A3LA-RM sends data in NAL Research’s proprietary format
called packet send mode. Packet send mode is implemented to handle AES-256 frame
synchronization between the A3LA-RM and a connected device. The encryption and decryption
keys are matched in each frame to ensure NIST FIPS 140-2 compliance.
Instructions on how to use encryption can be found in the AT Command Reference manual in
Appendix B: AT Command Set Description
. The list of AT commands used to set encryption
include
^CCOP
,
^KD
,
^KE
,
^KZ
,
^STR
, and
^UE
. The encryption algorithm implemented into the
A3LA-RM complies with NIST FIPS 140-2 as defined in the following documents
https://csrc.nist.gov/publications/detail/fips/140/2/final)
:
Security Requirements for Cryptographic Modules
, FIPS PUB 140-2, US Department of
Commerce, National Institute of Standards and Technology, May 25, 2001
Security Requirements for Cryptographic Modules
, Annex A: Approved Security
Functions for FIPS PUB 140-2, US Department of Commerce, National Institute of
Standards and Technology, February 19, 2003