Note:
It is not possible to accidentally make a non End-to-End encrypted
call. Every talkgroup or individual subscriber that can be exempt from
End-to-End Encryption must be explicitly customised into the radio.
End-to-End Encryption is designed to provide maximum security for voice
and SDS communications, whether operating in Direct Mode or Trunked
Mode, irrespective of the security level provided by the network.
A radio that supports End-to-End Encryption may nevertheless be required
to make calls that are not End-to-End Encrypted. For example, calls to certain
talkgroups and individual subscribers may be customised to be exempt from
End-to-End Encryption. All telephone calls are also not End-to-End
Encrypted.
When dialling, a separate
Secure Comms icon is displayed in the dial box if
the call or SDS will be End-to-End encrypted. During voice calls only (not
SDS calls) your radio my allow you to toggle End-to-End Encryption on/off
with a soft key.
When you are in a voice call, the Secure Comms icon indicates whether End-
to-End Encryption is operational. When the radio participates in a call that is
not End-to-End Encrypted, a periodic non intrusive audible alert is generated
(if customised).
When you receive an SDS (text) message or picture messages, if you see the
Secure Comms icon in the message details that the message was End-to-End
Encrypted.
Note:
If the message ‘Security Check Fail’ is displayed while making or
receiving calls, it indicates that the radio has not been customised
properly. In such cases, please contact technical support in your
organisation.
Zeroising
Radios that support End-to-End Encryption are loaded with sensitive
cryptographic keys. To avoid a potential security compromise, you may be
able to delete (zeroise) these cryptographic keys if permitted by your
operational procedures.
134
SC20 series – 04/2016