Skat-E
IP-NETWORK ENCRYPTOR WITH INTEGRATED VOICE MODULE
Skat-E (О171-Е) is IP Inline Network encryptor (INE).
О171-Е protects at the highest security levels in accordance with Government and Military requirements.
О171-Е is specifically designed to support IP/Ethernet operating over standard commercial networks (Internet, IP MPLS etc) and provides inline encryption of IP protocol by cable, satellite, and cellular (3G, 4G) communication channels as well as with HF/VHF communication equipment.
In-built voice module gives possibility to connect handset or headset directly to encryptor.
- Functionality
- func
End-to-end encrypting of IP-network traffic
Traffic encrypting is performed on local network perimeter. Cryptographic processing in online mode provides "transparent" operation of data processing network applications, IP-telephony, video conference communication.
Virtual channels of encrypted communication
During exchange of encrypted information, the virtual channels of communication means are created in accordance with the diagram given by complex administrator.
Link redundancy
For each communication direction some virtual channels can be defined with different routes, which provides automatic backup paths if an active link fails
Key Management
Key Management ensures centralized preparation and distribution of key data. О372-Е includes hardware random number generator (FIPS 140-2 compliance) which is used to create random cryptographic keys. The distribution is provided by methods of automatic online transmit through encrypted network and manual keys input.
Hardware crypto module
Cryptographic functions are performed by specialized chips with duplexing option which provides high transmitting capacity and encrypting reliability.
Channels loading balancer
Virtual channels can be combined in groups to balance the load and to increase the transmitting capacity of network nodes.
Equipment redundancy
The equipment can be duplicated for “hot” standby and the transmitting capacity trunking.
Monitoring and control
Monitoring and control of the equipment can be performed either locally or remotely via Centralized Management Software. CMS is available for PC Windows 2000, XP, 7 and enables to control operational modes of the equipment, change configuration parameters, view statistic information, logs of events in encrypted communication network. The protection against unauthorized access to equipment control is provided by two-factor authentication.
- Technical characteristics
- teh
Platform
RISC
Freescale Power QUICC II™
Operating System
RTOS
TritelOS™
Protocols
IIP v.4
RFC 791, RFC 826, RFC 1042, RFC 1812
IP Multicast
RFC 3171
PPP
RFC 1661
Speech converter
Audiocodec
G711u, G729a/b, G723.1
Vocoder
1,2 Kb/s
COMSEC Characteristics
Encryption mode
packet, end-to-end
Cryptographic algorithm
DSTU GOST 28147:2009, hardware implementation
IP Throughput
up to 30 Mb/s
Interoperability
О371-Е(РЕ), О271-Е(РЕ)
Communication schemes
Full mesh
Circular
Link oriented
Mixed
Management
Telnet, СMS
Physical Interfaces
100 Base-FX/TX, ММ, MTRJ, MIL-DTL-3899
Red Data Interface
RS-232, MIL-DTL-3899
Red Data Interface
100 Base-FX/TX, ММ, MTRJ, MIL-DTL-3899
Black Data Interface
USB, MIL-DTL-3899
Key fill
1 port
Handset, headse
Power
adapter
up to 10 Watt 170-240 V, 50-60 Hz
without adapter
up to 10 Watt 10-36 VDC
Safety
ІEC 60950:1999, DSTU 4113-2001
EMI/EMC
EMI/TEMPEST approved. ІEC 61000:2007, DSTU СISPR 22:2007, DSTU СISPR 24:2008
Environmental
Operational temperature
up -30° С to 60° С
Storage temperature
up -35° С to 80° С
Humidity
up to 95% (non-condensing 25°С)
Dimensions
230 х 187 х 88 mm (W х L х H)
Weight
1,8 kg
- Application diagram
- instr
- Documentation
- lic