ECTOCRYP® Yellow
Portable High Grade IP Data Encryption
ECTOCRYP Yellow is the next stage in sovereign UK cryptographic development.
Portable and low-cost, ECTOCRYP Yellow is the interoperable basis for highly secure
strategic and tactical networks.
Building on the success of market-leading ECTOCRYP Blue, ECTOCRYP Yellow is
designed to provide the very highest levels of security for Governments and Defence
customers.
CAPS approved and utilising PRIME Suite A, (CESG’s ‘preferred solution for network
layer cryptography’), ECTOCRYP Yellow has been certified up to Top Secret (including
National Caveats such as UK Eyes Only) over a public infrastructure.
True 256 Simultaneous Security Associations supported:
•Building efficient, resilient cryptographic networks
•Can allocate different key types (X.509*, PSK, PPK) to Security Associations.
Features and Benefits
With 100 Mbit/s Ethernet connectivity,
and designed for cost-effective
small/branch office operation,
ECTOCRYP Yellow provides secure
voice, data and video transport over
fully meshed or hub and spoke IP
networks.
Thanks to ECTOCRYP Yellow there
are no requirements for leased lines
or air gaps, leading to cost-savings
for organisations. The complete
ECTOCRYP range has a common
feature-rich management terminal.
Systems can be updated and
upgraded in the field, ensuring
cost-effective future communications
security with minimal on-site
intervention and overheads.
With low latency and high throughput, ECTOCRYP Yellow has minimal
network impact, and provides end
users with transparent and secure
operations.
ECTOCRYP Yellow, when sent
separately from its associated User
Crypto Ignition Key (CIK) is shipped
as not protectively marked via
ACCSEC channels, making transport
simple and cost-effective.
ECTOCRYP Yellow’s uniquely flexible
and programmable architecture
provides industry-leading Value For
Money whilst minimising the risk of
obsolescence.
TEMPEST out of box – with no
additional casing required.
Technical Specifications
PRIME Support
• PRIME – Base (inc IKE-V2)
• PRIME – Suite A
• PRIME – Community Separation
• PRIME – NAT Traversal
• PRIME – Pre-shared Key
• PRIME – PPK SA
• Remote Management
Security Features
• Crypto Ignition Key (CIK) support to enable operation
• Encrypted Software Update
• Tamper Detection
• Tamper Evident Seals
• Full Zeroise function
• Remote kill
Prime Features Implemented
• Granular Selectors
• Multicast PPK
• IKEv2 Liveness
• Suite A GCM-96
• DSCP Bypass
• OSPF Routing Protocol*
• PTS Node*
Protocol Support
• IPv4
• QoS Bypass
Cryptography Support
• Suite A Traffic Protection
• Supports data encryption using Pre-Shared Key (PSK)
• Encryption of multicast
communications using Pre-Placed
Key (PPK)
• Cryptographic suite in field
upgradeable**
Certification Features
• CAPS certified for operation up to IL6
• TEMPEST SDIP 27a
* future capability
**subject to CAPS approval
999-002-4000-D45 Issue 1
This document is not contractual.
Subject to change without notice.
Copyright © 2014 Airbus Defence
and Space. ECTOCRYP is a
registered trademark of Airbus
Defence and Space. All rights
reserved. // 0314 E 0617
Capacity
• True 256 simultaneous Security
Associations
• Allocation of different key types
(X.509*, PSK; PPK)
• >90Mbps throughput
Management support
• Remote Management in-Band
rekeying (via Plain Text (PT) side
network and/or via Cipher Text (CT)
side network)
• Windows hosted custom
Management Application
• Standard SNMP v3 Compliant
Management and MIB support
• Communications Security Audit and
Accounting Support
Upgradeability
• Fully In-Field Reprogrammable –
from protocol support to
Cryptographic Algorithm Suites**
• Formally PRIME conformance
certified to interoperate with other
Certified PRIME Conformant
• Fully interoperable with ECTOCRYP
Blue PRIME Suite A once certified
• Interoperable with other manufacturers’ certified PRIME Suite A
products
Physical Interface
• Cipher Text Public Network –
100-Base-T RJ45 Traffic Interface
• Plain Text Private Network –
100-Base-T RJ45 Traffic Interface
• Plain Text Private Network –
100-Base-FX Mbps SC Fibre Optic
Interface
• Power – 5V DC from 100-240VAC
50-60Hz plug top power unit, 15VA power dissipation
Physical Specifications
• Size: 38 x 168 x 243 (HxDxW in mm)
• Weight: 1.8kg
• Operating Temperature: 0°C to 45°C – Humidity <70%
Non-Condensing
• Storage Temperature: -20°C to 60°C – Humidity <90%
Non-Condensing
• Power: <20W
Airbus Defence and Space – CyberSecurity
UK / Quadrant House / Celtic Springs / Coedkernew / South Wales – NP10 8FZ / T: +44 (0) 1663 713000 / www.airbusdefenceandspace.com / www.cassidiancybersecurity.com /
[email protected]