Nsa approved type 1 encryption devices The DTS1+ device provides two certified encryption layers in a single device. Government information, ranging from Confidential to Secret to Top Secret, when appropriately keyed cryptographically. The NSA is also responsible for the protection of US government communication and information systems against evesdropping by similar agencies from other nations. Government information. Most of these products were initially developed for use by the US military and the US government, but some have been made available to Viasat’s edge encryption solutions provide Type 1 government-grade security for mobile phone applications, data at rest, and rugged inline network encryptors. The unmanned aircraft control communications may be encrypted by a different mode of encryption than the tra smitted still and motion imagery. The DTS1X NAS device delivers high-speed and secure data transfer through a 10 GbE interface with removable memory and two layers of encryption. [1] Learn more about Cryptographic High Value Products (CHVP) which are NSA certified encryption solutions with reduced handling ideal for unmanned, unattended and other high risk applications. The current equipment is TACLANE-1G network encryptors, and the new item/service must coordinate, connect, or interface with the existing system by utilizing NSA Approved Type-1 Encryption devices. The NSA has categorized encryption items into four product types, and algorithms into two suites. Nov 15, 2017 · Type 1 products, certified by the NSA to cryptographically secure classified U. Data-at-Rest Encryption Solutions Today’s defense and aerospace platforms require the protection of mission-critical data-at-rest (DAR) from unauthorized access. Sep 28, 2020 · Think of the Type 1 program as government off-the-shelf (GOTS). Government facilities offers a host of advantages related to mission agility, productivity, and user convenience. Sep 25, 2025 · Network encryption devices are often certified by the United States NSA (National Security Agency) as a Type 1 or Type 2 cryptographic product. S. The UNS Ground Station NAS enables secure data transfer between the ground station and a deployed UNS with NSA High Assurance Type 1 encryption. Thanks to CSfC, COTS products using software and hardware encryption layers will be able to ease and speed the ability of system designers to protect Top Secret data with an NSA-approved cost-effective alternative to Type 1 encryption. 2-Layer Encryption significantly reduces the cost and time to develop and deploy DAR solutions. In 2003, for the first time in its history, NSA-approved two published algorithms, Skipjack and AES, for Type 1 use in NSA-approved systems. ” CSfC is not a replacement for Type 1 products, according to the NSA; it is merely an alternative. If the Outer Encryption Component is considered a shared outer device, it also has the responsibility of filtering traffic on its Gray Network interface to prohibit Inner Encryption Components of different levels of classification from sending traffic between different levels. On the other hand, CSfC encryption devices follow public guidelines set in the DAR Capability Package. At the same time, incorporation of wireless technologies into government systems and networks carries the negative aspect of potentially higher risks to national security systems, as threat actors find ways to exploit To help drive and widen the protection of Top Secret data, the NSA has approved 2-Layer Encryption as an alternative approach to Type 1 encryption. Dec 11, 2020 · General Dynamics has added a new Open Systems Architecture (OSA) crypto module to its space and aviation encryption portfolio. Mercury’s JDAR data-at-rest encryptor received NSA Type-1 encryption certification in 2022, and it has since been integrated into Dec 30, 2022 · Consistent with the Committee on National Security Systems Instruction (CNSSI) 4031, the TACLANE-C175N CHVP requires less handling and accountability compared with other Type 1 encryption products, expanding the use of certified devices in high-risk environments where there is greater probability of unplanned leave behind in unmanned operations or tactical units. This solution enables the client to implement layered encryption between a secure network and EUDs. 0, dated 28 January 2025, has been approved by the Deputy National Manager (DNM) for National Security Systems (NSS) to meet the demand for classified Wi-Fi solutions within controlled spaces using the Commercial National Security Algorithm (CNSA) Suite with National Information Assurance KSV-21 The KSV-21 Enhanced Crypto Card is a US National Security Agency -approved PC card that provides Type 1 encryption functions and key storage to the STE secure telephones and other devices. See full list on nsa. The National Security Agency/Central Security Service leads the U. From system embedment to the tactical edge to the enterprise, these Type 1 NSA-certified products secure classified A NEW device may employ NSA Type 1 COMSEC encrypted datalink, such as Link-16, or a non-NSA Type 1 COMSEC encrypted datalink, such as Common Datalink (CDL). Dec 19, 2022 · General Dynamics announced that its TACLANE-C175N CHVP encryptor has been certified for use by the National Security Agency (NSA). For more information, please contact the PKI Viasat’s IPS-250X rugged, low-SWaP, NSA-certified Ethernet encryptor secures Top Secret and below communications in high-risk, unmanned environments. – General Dynamics has announced the expansion of its TACLANE® family of NSA certified inline network encryptors with the release of the TACLANE-FLEX (KG-175F). If they reside on different networks, an AO approved method (e. Type 1 Product Main article: Type 1 encryption A Type 1 Product refers to an NSA endorsed classified or controlled cryptographic item for classified or sensitive U. government classified and sensitive data in use on tactical military platforms such as UAVs (unmanned aerial vehicles) and unmanned systems. The KG-250X is a low-SWaP NSA-certified HAIPE Type 1 Inline Network Encryptor (INE) using the latest in secure IP encryption technology to protect up to TS/SCI communications. Encryption requirements The demo features L3Harris’ new certification-ready PCIe Gen 3-based DataCrypt NVMe Cryptographic Module running on Curtiss-Wright’s high-performance hardware. The cryptography used is Suite A and Suite B, also specified by the NSA as part of the Cryptographic Modernization Program. S. Understanding whether your system is designated NSS and the corresponding level of data sensitivity dictates the required evaluation path under CNSSP 11. Government in cryptology that encompasses both signals intelligence insights and cybersecurity products and services that enables computer network operations to gain a decisive advantage for the nation and our allies. ” No public list is available of certified products, but companies may advertise those products separately. In addition, the vIPer supports Feb 28, 2025 · NSA Type 1: For the highest assurance needs on NSS, we offer platforms incorporating NSA Type 1 encryption solutions. The KG-255XJ End Cryptographic Unit (ECU) is now certified for protecting classified Top Secret/Sensitive Compartmented Information (TS/SCI) and below At General Dynamics, we are the market leaders of High Assurance Type 1 Data at Rest (DAR) encryption. Information needs to be shared with stakeholders across international, governmental, agency and classification boundaries. NSA TYPE 1 A Type 1 product is a Classified or Controlled Cryptographic Item (CCI) endorsed by the NSA for securing classified and sensitive U. According to General Dynamics The new TACLANE-C175N CHVP Encryptor is bridging the need for High Assurance Type 1 certified security and interoperability with COTS Handling and End User Devices. 509 certificates to establish dual-layer (inner and outer) encryption tunnels for securing classified data in-transit at levels up to TOP SECRET Sep 14, 2023 · Per the 23 December 2022 DoD CIO memo “Department of Defense Transition to Stronger Public Key Infrastructure Algorithms,” the DoD will cease issuing PKI certificates utilizing RSA-2048 and SHA-256 on both NIPRNet and SIPRNet on 31 December 2027 and transition to using at least RSA-3072 (4096 is preferred) and SHA-384 cryptographic algorithms. Made to go with the mission and designed with the latest crypto modernization technology, our family of ProtecD@R ® encryption solutions are NSA certified to protect our Nation's most sensitive DAR. 302-1, Only one responsible source and no other supplies or services will satisfy agency requirements for NSA Approved Type-1 Encryption devices TACLANE-FLEX Encryptors. government customers. ” What are the current approved CPs and how do they work? Where can information about future direction and requirements for new/revised CPs be located? How can clients be more successful implementing solutions in compliance with CP requirements? Viasat’s KG-142 is the first NSA-certified Type 1 EDE-CIS Ethernet data encryptor delivering up to 200 Gbps aggregate speeds for reliable network protection. The guidelines direct the use of Suite B Oct 30, 2025 · As the first-to-market National Security Agency (NSA)-certified Type 1 Ethernet Data Encryption-Cryptographic Interoperability Strategy (EDE-CIS) Media Access Control Security (MACsec) Ethernet encryptor designed to operate at multiple speeds up to 200 Gbps (aggregate), the Viasat KG-142 protects Top Secret/Sensitive Compartmented Information Feb 6, 2024 · A Type 1 product was a device or system certified by NSA for use in cryptographically securing classified U. Range safety collaborative design Secure encrypted digital (enhanced) flight termination Miniaturized pulse code modulation (PCM) encoder for custom signals requirements Ground test system/system integration lab for systems checkout and troubleshooting Tri-services qualification plan design > NSA-approved Type 1 communications security Sep 16, 2016 · For some programs with limited budgets and schedule, using National Security Agency (NSA)-approved Type 1 encryption, the highest level of data protection, may prove impractical due to the high cost - typically several millions of dollars for a new development - and long process - typically two to three years that it takes to reach full Transmission of Secret and above data is protected end to end by a type -1 encryption device example Kg-175/Kg-250, these devices use a Modern Key which is NSA controlled Aug 28, 2024 · About the NSA CSfC Program CSfC, an NSA-approved approach for protecting classified National Security Systems (NSS) information in aerospace and defense applications, uses cost-effective commercial encryption technologies in a two-layered solution. Making the best decision requires an understanding of two National Security Agency (NSA) approved methods for protecting DAR: High Assurance Type 1 and Commercial Solutions for Classified (CSfC) encryption. Jul 31, 2020 · NSA Type 1 encryption equipment is any NSA-certified product that has been approved to handle classified information for the U. This includes protecting wired, wireless, and space systems from detection, traffic analysis, traffic flow security, intercept, jamming, and exploitation. If the DSCD supports more than one secure protocol, it must meet all the requirements for at least one of the secure protocols, and must minimally support the other protocols They provide rugged storage of data. This paper focuses on CSfC and provides details and background information on this vital NSA program. These lists apply to all NSA/CSS elements, contractors, and personnel, and pertains to all IS storage devices that they use. Jun 3, 2025 · When integrated in accordance with NSA approved Capability Packages, the system is approved to handle classified information, providing an alternative to Type 1 solutions. (NASDAQ: VSAT), a global communications company, today announced its next-generation ground-to-space encryption product, the KG-255XJ, is now National Security Agency (NSA) Type-1 certified. Encryption devices using Suite A algorithms are certified by the NSA for use in securing Federal Government information that has been classified, and typically are called “Type 1” products or devices. government information, use approved NSA algorithms. Aircraft control communications of UASs that carry kinetic weapons shall be encrypted with National Security Agency (NSA)/ Central Security Service SS certified Type I enc What is a High Assurance Internet Protocol Encryptor? A High Assurance Internet Protocol Encryptor is a Type 1 encryption device that complies with the National Security Agency's Viasat’s KG-250X/KG-250X-FC is a flexible, low-SWaP, NSA-certified Type 1 Ethernet encryptor with advanced network security for tactical and mobile users. , to provide confidentiality, authentication, non-repudiation, integrity, or to ensure system availability) national security systems and national security information at all classification levels. Flexible, compact, and fast, it can be integrated into existing systems or used as a standalone encryption device for avionics and unmanned platforms, as well as unattended sensors, surveillance, communication, and wearable systems. , C Aug 21, 2023 · The National Security Agency (NSA), Cybersecurity and Infrastructure Security Agency (CISA), and National Institute of Standards and Technology (NIST) warned that cyber actors could target our nation’s most sensitive information now and leverage future quantum computing technology to break traditional non-quantum-resistant cryptographic NSA TYPE 1 A Type 1 product is a Classified or Controlled Cryptographic Item (CCI) endorsed by the NSA for securing classified and sensitive U. NSA Type 1 encryption products have been “developed using established NSA business processes and containing NSA approved algorithms” and are “used to protect systems requiring the most stringent protection mechanisms. The unit provides secure uplink and downlink protection for satellite command, telemetry, crosslink and payload communications links. Jul 28, 2020 · Commercial Solutions for Classified (CSfC) is a series of capability packages designed by the National Security Agency (NSA) to provide the capability to access classified information without The KSV-21 Enhanced Crypto Card is a US National Security Agency -approved PC card that provides Type 1 encryption functions and key storage to the STE secure telephones and other devices. The upgraded KG Deployed worldwide from the enterprise to the front lines, Sectéra® secure communication devices provide Confidence in Your Digital World®. establishing a device management tunnel with the Inner Encryption Compone n operate in the Red Network, while the Outer CDP operates in the Gray Network. Jul 28, 2016 · Raytheon [RTN] is launching a new National Security Agency (NSA)-certified KG-350 Ethernet encryption system that can work for classified systems, the company said Wednesday. CSfC KG-142 Ethernet Data Encryptor The KG-142 is the world's first deployed NSA-certified Type 1 Ethernet Data Encryption-Cryptographic Interoperability Strategy (EDE-CIS) Media Access Control Security (MACsec) Ethernet encryptor. Type 2: Cryptographic equipment, assembly, or component certified by NSA for encrypting and decrypting sensitive national security information when appropriately keyed. Feb 17, 2021 · With more data processing, storage and domain information shifting to cloud-based networks, network managers must upgrade their transport systems from slower Layer 3 networks using HAIPE (High Assurance Internet Protocol Encryptor) Type 1 encryption devices to higher bandwidth Layer 2 networks using EDE devices. From NSA Type 1 encryption to HAIPE-enabled solutions and Mode 5 IFF systems, these devices provide advanced cryptographic security for both tactical The National Security Agency (NSA) has certified High Assurance Type 1 encryption as meeting the highest security standards. This marked a significant step forward in providing secure encryption solutions for classified information. government information, including cryptographic equipment, assembly or component classified or certified by NSA for encrypting and decrypting classified and sensitive national security information when appropriately keyed. The combined solution delivers a near 50 percent improvement in encryption bandwidth compared to earlier SATA-to-SSD systems. Capability Packages (CPs) are NSA-developed, approved and published solution-level specifications and are the foundation of the Commercial Solutions for Classified Program. Protect the communication of DoD information through the use of COMSEC measures, including the use of transmission security (TRANSEC), to safeguard communications. gov A Type 1 encryption product is a device or system certified by the NSA for use in cryptographically securing classified United States Government (USG) information, when appropriately keyed. Specifically, KMI generates and distributes electronic keying material for all NSA approved encryption systems. General Dynamics world-class family of High Assurance Encryption products are widely deployed today to protect national security systems, information and networks against persistent threats and defend our assets throughout cyberspace in land, air, sea and space environments. HAIPE devices are only able to reach 20 Gbps aggregate throughput. It is based in Fort Meade, Maryland (USA) and has a nice museum, called the National Crytologic Museum (NCM), that is open to the public. Urgency associated with modernization planning The Sectéra ® vIPer™ Universal Secure Phone embeds Type 1 encryption to ensure end-to-end protection and SCIP interoperability for secure classified communications. 1 This Commercial Solutions for Classified (CSfC) Capability Package describes how to protect classified data in transit across an untrusted network using multiple encrypted tunnels implemented with Internet Protocol Security (IPsec), Media Access Control Security (MACsec), or both encryption protocols. Type 1 certification is a rigorous process that includes testing and formal analysis of (among other things) cryptographic security, functional security, tamper resistance, emissions security (EMSEC/TEMPEST), and Type 1 encryption refers to security devices, components, and systems that are approved by the National Security Agency (NSA) for the transmission and storage of classified information, up to and including Top Secret. General Dynamics has proven expertise in encryption technology with the TACLANE family, the world's most widely deployed High Assurance encryptors. Designed to protect sensitive information from advanced cyber threats and meet the highest security standards, Type-1 assurance devices undergo a rigorous certification process, which includes cryptographic strength Oct 3, 2025 · In an increasingly digital battlespace, securing military communications is critical. Little is publicly known about the algorithms NSA has developed for protecting classified information, called Type 1 algorithms by the agency. Prior to the introduction of CSfC, programs with classified data requirements had to Figure 1: The DTS1 network attached storage device supports two encryption layers in one product. e. Sep 16, 2016 · For some programs with limited budgets and schedule, using National Security Agency (NSA)-approved Type 1 encryption, the highest level of data protection, may prove impractical due to the high cost - typically several millions of dollars for a new development - and long process - typically two to three years that it takes to reach full Mercury's JDAR data-at-rest encryptor received trusted computing NSA Type-1 encryption certification in 2022, and it has since been integrated into several of Mercury's data storage systems. Network encryptors are essential for protecting sensitive data, ensuring secure connectivity, and maintaining information integrity in challenging environments. 106-1 (b) Soliciting from a single source and under the authority of FAR 6. Type 1 certification is a rigorous process that includes testing and formal analysis of (among other things) cryptographic security, functional security, tamper resistance , emissions security Cryptography that consists of an approved algorithm, an implementation that has been approved for the protection of classified information and/or controlled unclassified information in a specific environment, and a supporting key management infrastructure. In cryptography, a Type 1 product is a device or system certified by the National Security Agency (NSA) for use in cryptographically securing classified U. May 15, 2017 · el 1 or higher encryption method. In response to the ever-increasing need to protect The National Security Agency/Central Security Service leads the U. The CE office will collaborate with data owners to determine the specific last year of use (LYOU) for aging devices and algorithms. The Campus WLAN Capability Package (WLAN CP) Version 3. Dec 4, 2024 · Full Qualification and Test (FQT) to include TEMPEST and Authority to Operate (ATO). Mar 11, 2021 · By Jonathan Kline, Star Lab (a Wind River Company) The National Security Agency’s (NSA’s) Commercial Solutions for Classified (CSfC) program enables integrators to leverage two distinct CSfC-approved commercial off-the-shelf (COTS) components to protect classified data at rest or in transit. A High Assurance Internet Protocol Encryptor (HAIPE) is a Type 1 encryption device that complies with the National Security Agency 's HAIPE IS (formerly the HAIPIS, the High Assurance Internet Protocol Interoperability Specification). Type 1 encryption In cryptography, a Type 1 product is a device or system certified by the National Security Agency (NSA) for use in cryptographically securing classified U. ” The TACLANE-Nano is available for purchase via General Dynamics Mission Systems or NSA Indefinite Delivery/Indefinite Quantity (IDIQ) contract. 1. NSA uses a defense-in-depth approach using properly configured, layered solutions to provide adequate protection of classified data for a Oct 8, 2019 · “This certification makes TACLANE Type 1 encryption available in a ruggedized low SWaP form factor to bring our proven data security to the tactical edge of the battlefield. The fully Little is publicly known about the algorithms NSA has developed for protecting classified information, called Type 1 algorithms by the agency. This new, small-form-factor HAIPE encryptor provides high-assurance security, interoperability and mission-focused features in a single device . NSA Type-1 encryption refers to a class of encryption algorithms and devices certified by the National Security Agency (NSA) for securing classified, up to top-secret, information. The KI-700 is the latest National Security Agency (NSA) certified AES-256 based encryption and decryption unit supporting data rates up to 640 megabits per second (Mbps). Many of these applications require the use of ready-to-deploy National Institute of Standards and Technology (NIST) or National Security Agency (NSA) approved encryption deployed in a SWaP-optimized solution. Apr 11, 2024 · Major milestones include the approval of published algorithms, such as Skipjack and AES, for Type 1 use in NSA-approved systems in 2003. Cross domain technology plays a critical role in this sharing; cross domain solutions are controlled interfaces that provide the ability to manually or automatically access or transfer information between different security domains. Sep 22, 2023 · Mercury Systems has confirmed that it has launched its JDAR Type-1 encryptor module, which is designed to protect U. May 16, 2023 · Moving away from Type-1 encryption signifies a new era for the NSA and cybersecurity at large. Developed using established NSA business processes and containing NSA approved algorithms. Government users, their contractors, and The National Institute of Standards and Technology (NIST) Special Publication 800-111, Guide to Storage Encryption Technologies for End User Devices, defines full disk encryption as follows: “Full Disk Encryption (FDE), also known as whole disk encryption, is the process of encrypting all the data on the drive used to boot a computer Overview Commercial Solutions for Classified (CSfC) is an important part of NSA's commercial cybersecurity strategy to quickly deliver secure cybersecurity solutions that leverage commercial technologies and products. Our next-generation devices, hardware, and data services make edge security simple, fast, and efficient at any scale. Sep 13, 2024 · This award will be made in accordance with Federal Acquisition Regulation (FAR) Subpart 13. It is a bold step forward, embracing change and innovation while steadfastly protecting the nation's Jul 26, 2017 · FAIRFAX, Va. This progress will result in more critical data being TACLANE’s NSA Approved High Assurance encryption products defend networks against persistent and dynamic threats and protect the nation's most critical information throughout the cyber ecosystem across land, air, sea and space. A Type 1 product was defined as: Cryptographic equipment, assembly or component classified or certified by NSA for encrypting and decrypting classified and sensitive national security information when appropriately keyed. Developed using established NSA Dec 4, 2024 · Full Qualification and Test (FQT) to include TEMPEST and Authority to Operate (ATO). This approval makes Persistent the first and only MANET solution provider on the NSA’s Commercial Solutions for Classified (CSfC) Component List. NSA Type 1 encryption devices may use Suite A or B algorithms but the exact type and nature are not publicly known. Also, if both layers of the solution use MACsec, differe t and unique CAKs are required for the inner and outer encryption tunnels. The term refers only to products, and not to information, key, services, or controls. Government information, use approved NSA algorithms. For disposal or recycling per NSA/CSS Policy Manual 9-12, “Storage Device Sanitization and Destruction Manual”: Information stored on these devices may range from UNCLASSIFIED to TOP SECRET INTEGRATE COTS PRODUCTS WITH COMMON CRITERIA CERTIFICATION Protect your data-at-rest (DAR) and meet encryption requirements with preapproved commercial off-the-shelf (COTS) products from the NSA Commercial Solutions for Classified (CSfC) Components List. For this, the NSA has (co) developed a range of cryptographic algorithms and encryption devices. , May 23, 2023 -- Viasat Inc. ring airborne intelligence, surveillance, and reconnaissance (ISR) missions. DAR, encryption basics, and possible encryptor types – Commercial Solutions for Classified (CSfC) and Type 1. government. Available today or custom developed to meet your unique mission needs, ProtecD@R is Data at Dec 21, 2018 · quired for every pair of MACsec Devices establishing an encryption tunnel. Every CAK has a unique Connectivity Association Key Name (CKN) Securely empower end-users to work from anywhere with Archon® Suite of Commercial Solutions for Classified (CSfC). Mar 20, 2019 · Type 1 products, certified by the National Security Agency (NSA) to cryptographically secure classified U. It is a bold step forward, embracing change and innovation while steadfastly protecting the nation's Oct 8, 2019 · The new TACLANE- Nano (KG-175N) network encryptor is now certified by the National Security Agency (NSA) to secure voice, video and data information classified Top Secret/SCI and below traversing public and private IP networks. Type 1 encryption is an NSA-approved option for Cryptographic equipment, assembly or component classified or certified by the National Security Agency (NSA) for encrypting and decrypting classified national security information and sensitive information when appropriately keyed. g. NSA recently removed several software encryption solutions from the DaR CSfC Component List due to discovered Encryption Algorithms The strength of the encryption algorithm plays a key role in a DAR system’s ability to protect sensitive data. An NSA Type 1 encryption product is a device or system certified by the National Security Agency (NSA) for use in cryptographically securing classified United States Government (USG) information, when appropriately keyed. Both types are National Security Agency (NSA) encryption programs that support the protection of classified DAR. The NSA has used Type 1 products to encrypt and decrypt classified national security information for decades, but these devices are expensive to develop and are classified themselves, requiring extra levels of security. Type 1 encryption products are international. Device Type Vendor Keyword Search Please use any combination of Device Type, Vendor, and/or Keywords to search the DoDIN APL. Type 1 products contain approved NSA algorithms and are available to U. For a subset of cybersecurity products focused on telework and general network security for end users, view our Telework Oct 8, 2019 · The new TACLANE- Nano (KG-175N) network encryptor is now certified by the National Security Agency (NSA) to secure voice, video and data information classified Top Secret/SCI and below traversing public and private IP networks. The vast majority of the National Security Agency 's work on encryption is classified, but from time to time NSA participates in standards processes or otherwise publishes information about its cryptographic algorithms. May 4, 2020 · More specifically, NSA defines a Type 1 product as “cryptographic equipment, assembly or component classified or certified by NSA for encrypting and decrypting classified and sensitive national security information when appropriately keyed. Whenever encryption is used by a federal agency for the protection of sensitive information, an approved encryption algorithm must be implemented and used as specified. JMD is required to purchase NSA Certified Type 1 Encryption equipment to ensure the security of our communications. Government users, their contractors, and Jul 9, 2025 · NSA Encryption Types The NSA organizes its cryptographic product line into several types or categories based on their security features and intended use: Type 1: NSA-certified devices using classified algorithms for protecting classified national security information under strict controls. Mar 13, 2024 · The NSA CSfC [National Security Agency Commercial Solutions for Classified] program was launched in 2016 to make it easier to secure data by using certified, off-the-shelf products. With the advent of new NSA-approved off-the-shelf secure storage solutions, waivers that skirt secure storage requirements no longer need to be granted. Preferably, the PSK is encrypted for distribution to each DM either using an approved encryption algorithm that uses an encryption key from a password-based key derivation function (PBKDF) or a pre-placed symmetric Key Encryption Key (KEK) that is s Jul 24, 2024 · The Taclane Devices need to be fully compatible with the General Dynamics KG-175F products and support remote management and rekeying of these devices by the General Dynamics GEM-One Taclane Management suite. For some programs with limited budgets and schedule, using National Security Agency (NSA)-approved Type 1 encryption, the highest level of data protection, may prove impractical due to the high cost – typically several millions of dollars for a new development It is NSA-approved, Joint Interoperability Test Command-tested, and listed on the Defense Information Systems Agency's Approved Products List. Jun 3, 2025 · These federal agencies use the commercial solutions to quickly implement cybersecurity solutions, the NSA website said. The DataCrypt module has been designed and developed to achieve full NSA Type-1 certification. Certified by the National Security Agency (NSA), the KOV-28 OSA crypto module secures communication channels across contested environments on a variety of platforms. The KG-350 expands Raytheon's leadership in the Layer 2 Ethernet encryption market, offering lower latency and higher throughput than current encryption technology. If adversaries can get malicious code onto the computer, they can modify or disable the encryption, allowing the disk to store unsecured data. The KG-350 can protect network communications for sensitive information leading up to Top Secret/Sensitive Compartmented Information (TS/SCI) classified information. Protect critical data-at-rest (DAR) from unauthorized access with NSA Type 1, NSA Commercial Solutions for Classified, Common Criteria or FIPS 140-2 encryption. Continue the development of the STEALTH Type-1 encryption devices while developing an NSA approval path to operate at SECRET, TS/SCI, Special Access Programs (SAP), to support Federal and Foreign Governments, Five Eyes (FVEY), and for NATO secret. Jul 27, 2016 · The Type 1 certification gives Raytheon authorization to sell the groundbreaking KG-350 encryptor to commercial, military and government customers immediately. REDCOM’s Secure Voice Gateway is a Type-1 NSA ACC-compliant gateway using the GD Sectéra® vIPerTM Secure Phone for secure end-to-end commuinications. 5 days ago · NSA leverages its elite technical capability to develop advisories and mitigations on evolving cybersecurity threats. The NSA, as the national manager for cryptographic products will, through its Cryptographic Evaluation (CE) office, identify only NSA approved cryptographic products requiring replacement, pursuant to reference (b). Cryptographic algorithms, known as Commercial National Security Algorithm (CNSA) Suite, are used to protect data using layers of Commercial off the Shelf (COTS) products. NEWs with NSA Type-1 COMSEC encryption require COMSEC release approval and NSA ATS for transfer, in addition to any other release approvals and monitoring requirements. Most of these products were initially developed for use by the US military and the US government, but some have been made available to May 23, 2023 · CARLSBAD, Calif. Cryptographic equipment, assembly, or component certified by NSA for encrypting or decrypting sensitive national security information when appropriately keyed. The material or service must be compatible in all aspects (form, fit, and function) with existing systems presently installed. With the power of ten separate 10 Gbps encryptors in a single unit, it delivers multiple data speeds from 20 up to 200 Gbps, and is designed to provide protection up to The rugged NSA-Certified Type 1 device is MIL-STD-810-compliant, features a versatile and field-proven software-upgradeable design, and is ideal for sUAS, flyaway kits, and other dismounted or field applications. The National Security Agency (NSA) is the cryptologic intelligence and security agency of the US government. The introduction of wireless communication devices into U. HAIPE IS is based on IPsec with The NSA/CSS Evaluated Products Lists equipment that meets NSA specifications. The solution: Entrust HSMs meet the requirements of the NSA CSfC key management annex The Key Management (KM) Requirements Annex is a core Capability Package for CSfC, and details how CSfC solutions may use CNSA-approved asymmetric algorithms and x. These products are typically designed and certified by the NSA through a rigorous and often very lengthy process. Government information, when appropriately keyed. A Type 1 encryption product is a device or system the NSA certifies for securing classified U. Feb 14, 2025 · The Viasat encryption solutions team, part of the company's Defense and Advanced Technologies segement, recently surpassed a milestone achievement of 100,000 Type-1 crypto devices delivered to government customers. Jun 26, 2018 · MULTI-SITE CONNECTIVITY CAPABILITY PACKAGE V1. They are vendor-agnostic and provide high-level security and configuration guidance. Software-based encryption alone is not suitable for protecting classified data, as it is only as secure as the system running the software. These evaluations are performed by the NSA itself (in conjunction with the vendor), and the products are then “certified. Type 1 systems are certified for encrypting and decrypting classified and sensitive information. The following is a brief and incomplete summary of public knowledge about NSA Curtiss-Wright provides NSA-certified Type 1 encryption solutions for data-at-rest, ensuring secure storage and protection of classified information. NSA-approved secure protocol. The Idaho National Laboratory (INL) and the Department of Energy, Idaho May 13, 1996 · CSfC is a gateway capability architecture developed by the NSA, that enables access to network enclaves without the need for Type 1 encryption, instead securing the data by using independently layered, NSA approved, commercially available encryption standards and best practices. In response to the ever-increasing need to protect deployed data-at-rest (DAR), the NSA The JDAR is a miniature, Type-1 certified, rugged data-at-rest inline encryption solution that stores and protects Secret and Below (SAB) data. Type 2: For sensitive but unclassified (SBU) information, offering strong protection with less stringent Nov 5, 2021 · The Key Management Infrastructure (KMI) - is a National Security Agency (NSA) led program, responsible for COMSEC key management, accounting and distribution. Browse or search our repository of advisories, info sheets, tech reports, and operational risk notices listed below. These controlled products are designed to NSA standards and certified by the NSA through a rigorous and often very lengthy evaluation process. Used to protect systems requiring protection mechanisms exceeding best commercial practices including methods used to protect NSA CERTIFIED HIGH ASSURANCE TYPE 1 ENCRYPTION PRODUCTS Our NSA certified high assurance Type 1 encryption products for data in transit and data at rest can help agencies meet cybersecurity requirements protecting classified information and NSS, as they are developed using established and stringent NSA processes and integrates NSA approved cryptographic algorithms and multifactor Policy (5) NSA-approved cryptography1 is required to protect (i. Published in Military Embedded Systems Type 1 products, certified by the National Security Agency (NSA) to cryptographically secure classified U. Eliminating the need for multiple desktop phones, the vIPer Phone provides the flexibility to support both VoIP and PSTN/analog networks, voice and data as well as clear and secure calling. Our Type 1 embeddable security modules are certified by the National Security Administration (NSA), Federal Information Processing Standard (FIPS) 140-2, and National Institute of Standards and Technology (NIST), and feature our PSIAM™ crypto architecture — intelligent, proven, programmable protection that can evolve with your needs through software upgrades instead of costly hardware Nov 19, 2020 · The vIPer encryptors are NSA–certified, delivering Type 1 encryption and SCIP interoperability to protect sensitive voice calls classified Top Secret and below. The NSA certified this system as Type 1, allowing the Type 1 NSA COMSEC Type 1 NSA COMSEC L3Harris offers unique, modular products consisting of a PCM encoders and S-Band transmitters used in projectile test applications. To help drive and widen the protection of top secret data, the NSA has approved two-layer encryption as an alternative approach to the more expensive and time-consuming Type 1 encryption for data Jun 1, 2022 · K to the DMs that are responsible for installing the PSK onto the CSfC security devices. Some resources have access requirements. . Type 1 certified with the latest in crypto modernization capability, Sectéra products ensure SCIP interoperable, end-to-end secure voice and data communication solutions for legacy and modern infrastructures (Analog/PSTN, VoIP, SATCOM). The Ectocryp BLACK provides multi-channel encryption between red enclaves and remote SCIP devices and is available to U. eqk tzvm wizy aop cqnem mjxp nbicekz ohm jszy noba fqwu xqyfgo lrify jsdfi roxq