beautypg.com

Comtech EF Data SLM-5650A User Manual

Page 258

background image

SLM-5650A Satellite Modem

Revision 8

TRANSEC Module HTTPS Interface

MN-SLM5650A

10–8

Item

Description

Future Passphrase

(write-only)

Accepts a 10- to 32-character Passphrase that is combined with the previously

entered Seed Key to generate TEKs.

Once the Passphrase is entered, click [Update Passphrase] to finalize this change.

Encryption Parameters

Item

Description

Encryption Mode

Set encryption in the TRANSEC Module as Primary or Secondary.

Note the following:

If Primary is selected, the TRANSEC Module will allow the user to advance the

TEK and activate the future key independently of any other modems.

If Secondary is selected, the TRANSEC Module's TEK automatically mirrors the

TEK of the primary modem and the module will activate the future key when the

primary modem activates its future key.

Click [Update Mode] when done.

Encryption

Click [Change Encryption State] to display the On and Off radio buttons. The

“layered” appearance of this control is intended to prevent the user from accidentally

toggling the Encryption State.

By selecting the Encryption State as ‘On’, this causes the data traffic to be encrypted by

the TRANSEC Module using the current TEK. This encrypted data is then delivered to

the base modem for transmission, regardless of the state of the receiving modem.

Three user-defined parameters must match in order for encrypted communication to

commence between two TRANSEC Module-equipped modems:

1. Seed Key.

2. Passphrase.

3. Encryption Frame Length.

Select the desired operational state, then click [Update Encryption] to save the

selected state and then return this selection to its “protected” mode; the On/Off radio

buttons will be hidden once again and the operational state message will update

accordingly (i.e., “Encryption is On” or “Encryption is Off”).

Encryption Frame

Length

Use this text box to specify the length of the Advanced Encryption Standard (AES)

256 encryption frame. Acceptable range is from 1 (fast acquisition, high overhead ) to

255 (slower acquisition, low overhead).

Once the desired Encryption Frame Length has been entered, click [Update Frame

Length] to implement this change.

Reset all keys

Click [Zeroize] to reset all encryption keys in the module’s memory and flash to

default values.

Run self tests

Click [Test] to run the module’s cryptographic self tests.

Note the following:

If the tests succeed, the module will resume operation.

If the tests fail, the module will report an error to the event log.

If encryption is enabled and the tests fail, the module will stop transmitting data

to protect its integrity.

See also other documents in the category Comtech EF Data Equipment: