{"id":453,"date":"2015-08-08T02:17:34","date_gmt":"2015-08-08T02:17:34","guid":{"rendered":"http:\/\/www.dogoodsoft.com\/blog\/?p=453"},"modified":"2024-12-23T08:04:33","modified_gmt":"2024-12-23T08:04:33","slug":"nsa-grade-encryption-for-mobile-over-untrusted-networks","status":"publish","type":"post","link":"https:\/\/www.dogoodsoft.com\/blog\/nsa-grade-encryption-for-mobile-over-untrusted-networks-453\/","title":{"rendered":"NSA-grade encryption for mobile over untrusted networks"},"content":{"rendered":"

\"NSA-grade<\/a><\/p>\n

The only term being thrown around government more than \u201c2016 elections\u201d these days is \u201ccybersecurity,\u201d particularly following a rash of damaging and high-profile data breaches. With that focus on protecting information top of mind in agencies, USMobile officials hope to find a ready market for their commercial app, which lets government workers use their personal smartphones for top-secret communications.<\/p>\n

Called Scrambl3, the app creates a secure virtual-private network that connects bring-your-own devices to an agency server to send messages using end-to-end encryption. Irvine, Calif.- based USMobile developed the Scrambl3 technology \u00a0when team members worked with the National Security Agency to create \u201cFishbowl,\u201d a secure phone network available only to Defense Department users via the DOD Information Network.<\/p>\n

\u201cWe\u2019ve implemented Fishbowl in the form of a software-defined network, so all of those typical hardware components that you\u2019d find in a mobile network — routers, VPNs, gateways, firewalls, proxy servers — all of those components are expressed or implemented in our system in the form of software,\u201d said Jon Hanour, USMobile\u2019s president and CEO. \u201cWe\u2019ve made an affordable version of Fishbowl.\u201d<\/p>\n

When the turnkey solution comes to market in October, it will work with Android and Apple iOS devices. It uses the Security-Enhanced Linux operating system and a defense-in-depth approachThe layered approach uses a VPN connection with an encrypted VoIP call travelling within.When an agency deploys Scrambl3 Enterprise, administrators will set up what USMobile calls Black Books, or lists of contacts that each user can communicate with via the VPN.<\/p>\n

\u201cA lower-level person wouldn\u2019t necessarily have the director of that particular agency listed,\u201d Hanour said. \u201cConversely, the director of that particular agency would have [a] contact list populated with people that are at the higher levels of management.\u201d<\/p>\n

When a user logs into the app on a smartphone, it creates a VPN that connects to the agency\u2019s server, whether it\u2019s in the cloud or on premises. Currently, Scrambl3 Enterprise software is deployed only on IBM Power Systems Linux servers.<\/p>\n

A two-rack server can handle up to 3,000 concurrent calls, Hanour said, a capacity \u201cthat would handle comfortably an agency of 50,000 people.\u201d<\/p>\n

Once connected, users can see who in their Black Book is also logged in, as indicated by a green dot next to the name, and then select the mode of communication: email, voice call or text. Both senders and recipients would need to have Scrambl3 installed.<\/p>\n

\u201cOnce you establish this powerful VPN, you can run anything through it,\u201d Hanour said. \u201cAnything that you can put on a server, you can use Scrambl3 to communicate with.\u201d<\/p>\n

Calls are highly encrypted until they reach the recipient, where the app decrypts them. That communication happens at a top-secret-grade level as specified by NSA. Despite that encryption\/decryption process, Hanour said, latency is unnoticeable.<\/p>\n

For additional protection, nothing is recorded \u2013 users can\u2019t even leave voicemail \u2013 unless an agency specifies otherwise. For instance, Hanour said, some law enforcement regulations require that all communication among officers be recorded.<\/p>\n

The law enforcement community is a prime target customer for Scrambl3 because public cell phone networks don\u2019t meet heightened police security standards, and photographic evidence requires a secure uploading process.<\/p>\n

To use Scrambl3, agencies don\u2019t need mobile device management systems, but it integrates with any that might exist.<\/p>\n

\u201cThe advantage of this architecture is that the communication that the mobile device management software would typically have with the device, that communication can now run inside the VPN, so it makes that even more secure,\u201d Hanour said. \u201cIt creates value for the mobile device management system as well because you can protect it inside the VPN.\u201d<\/p>\n

Licensing fees for Scrambl3 depend on the number of users, but typically start at $5 per user per month. The most it would cost, Hanour said, is about $10 per user per month.<\/p>\n

Right now, Scrambl3 for Android is available in beta form in the Google Play Store for testing. Scramble3 for iOS will be available next month.<\/p>\n

The beta version does not include all Scrambl3\u2019s features, such as conference calling. When the release version is up and running in October, Scrambl3 will offer the only top-secret-grade conference call capability outside DOD\u2019s network, Hanour said. Users will be able to initiate a conference call by touching a few people\u2019s names and pressing the call button.<\/p>\n

Besides law enforcement, Hanour sees potential customers in several types of government operations, including health care, the State Department when conducting diplomatic relations and even individual politicians, who might want to communicate in absolute privacy.<\/p>\n

\u201cThe whole idea is to create trusted communications over untrusted networks (i.e., the Internet),\u201d Hanour said.<\/p>\n","protected":false},"excerpt":{"rendered":"

The only term being thrown around government more than \u201c2016 elections\u201d these days is \u201ccybersecurity,\u201d particularly following a rash of damaging and high-profile data breaches. With that focus on protecting information top of mind in agencies, USMobile officials hope to find a ready market for their commercial app, which lets government workers use their personal … Continue reading NSA-grade encryption for mobile over untrusted networks<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[8],"tags":[52,187,186],"class_list":["post-453","post","type-post","status-publish","format-standard","hentry","category-news","tag-encryption","tag-scrambl3","tag-vpn-blackbook"],"_links":{"self":[{"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/posts\/453","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/comments?post=453"}],"version-history":[{"count":1,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/posts\/453\/revisions"}],"predecessor-version":[{"id":455,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/posts\/453\/revisions\/455"}],"wp:attachment":[{"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/media?parent=453"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/categories?post=453"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.dogoodsoft.com\/blog\/wp-json\/wp\/v2\/tags?post=453"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}