Air Force wants cryptographic security for iPhones, Android

Encryption, IPSec just a couple of smartphone security technologies Air Force wants to explore

By Layer 8 on Thu, 01/27/11 - 12:43pm.

androidThe US Air Force is trying to decide whether or not to use commercial off-the-shelf (COTS) smart phones, such as Android-based devices or iPhones, and how it can securely process classified voice and data using them.

The Air Force has issued a request for information, not a formal contract solicitation as it is trying to come up with the best plan.  Securing smartphones for military use is an absolute necessity if the devices are to find wide applications for field use.  The Army has made smartphone development a priority as well.

The weirdest, wackiest and stupidest sci/tech stories of 2010

A few of the questions it is looking to address include:

  • What experience do you have in the development of encryption devices for the US Government? How recent was this experience?
  • What experience do you have with Type 1 certification of encryption devices? How recent is your Type 1 certification experience?
  • Please describe the most efficient engineering design to enable COTS mobile phones to securely process classified voice and data.
  • Describe how to develop a software High Assurance Internet Protocol Encryptor (HAIPE), or Internet Protocol security (IPSEC) application to enable secure classified processing on a smart phone. Describe the highest level of secure classified processing you believe could be enabled.
  • Assuming a HAIPE/ IPSEC secure session exists on the phone, describe other applications that could be developed to enhance warfighter capabilities.
  • Assume the mobile phone has been lost - describe a loss mitigation scenario: a. Describe the risks that the loss of a phone presents to the user's network. What system safeguards can/should be in place to protect the cryptographic system on the phone.

The military is very interested in getting smartphones out in the field.  Last year the Pentagon awarded $6.4 million to the Corporation for National Research Initiatives to build a smartphone app store.

The app store falls under the Defense Advanced Research Projects Agency's grand Transformative Apps Program which looks to rapidly develop and bring an array of applications to military mobile phones.  DARPA says that at least initially, all apps should target an open source mobile platform.  Meaning Android will be the platform of choice for the first apps.

In DARPA's words: "A military apps marketplace will be created to enable rapid innovation to meet user needs based on a direct collaboration between a vibrant and highly competitive development community and involved communities of end-users. The program will address all the challenges - technical, business, and operational - faced to make the new capabilities available for use in the field. The end objective is to transition the resulting systems to the end users in the Services, and to foster a new model for rapidly and effectively acquiring, introducing, maintaining, and enhancing software."

DARPA said the program will lean heavily on existing commercial handhelds for the initial development efforts. Initially, at least two distinct repositories are envisioned: one holding beta apps that are queued for initial app evaluations, and a separate repository holding apps that have been vetted, certified and approved for use.

Follow Michael Cooney on Twitter: nwwlayer8   

Layer 8 Extra

Check out these other hot stories:

NASA'S Hubble spots most far away galaxy ever

FTC wants best and brightest to tackle phone bill cramming

IRS gets hip with tax app for iPhone, Android

Google wants to hire more than 6,000 workers in 2011

US Secret Service taps video game, 3D technology for advanced security training

NASA to morph Kennedy Space Center into commercial role

Google fires back about search engine spam

NASA bulks-up Deep Space Network with new antennas

US Supreme Court says NASA background security checks do not go too far

Senseless: FAA says incidents of lasers being pointed at aircraft doubled in 2010

14 year-old's Bubble Ball is #1 iTunes app; shoots down Angry Birds

Military aircraft flying to all-fiber network gear

Maryland man exacts sweet robocall revenge

Hydrogen-powered unmanned aircraft takes first flight

Watchdogs outline 6 critical cybersecurity challenges facing the electrical grid



About Layer 8
Layer 8 is written by Michael Cooney, an online news editor with Network World
April 2014
March 2014
February 2014
January 2014
December 2013
November 2013
October 2013
September 2013
August 2013
July 2013
June 2013
May 2013
April 2013
March 2013
February 2013
January 2013
December 2012
November 2012
October 2012
September 2012
August 2012
July 2012
June 2012
May 2012
April 2012
March 2012
February 2012
January 2012
December 2011
November 2011
October 2011
September 2011
August 2011
July 2011
June 2011
May 2011
April 2011
March 2011
February 2011
January 2011
December 2010
November 2010
October 2010
September 2010
August 2010
July 2010
June 2010
May 2010
April 2010
March 2010
February 2010
January 2010
December 2009
November 2009
October 2009
September 2009
August 2009
July 2009
June 2009
May 2009
April 2009
March 2009
February 2009
January 2009
December 2008
November 2008
October 2008
September 2008
August 2008
July 2008
June 2008
May 2008
April 2008
March 2008
February 2008
January 2008
December 2007
November 2007
October 2007
September 2007
August 2007
July 2007
June 2007
May 2007
April 2007
March 2007
February 2007
January 2007
December 2006
November 2006
October 2006
September 2006
August 2006
July 2006
June 2006
May 2006
April 2006
March 2006
February 2006
January 2006
December 2005
November 2005
October 2005
September 2005
August 2005
July 2005
June 2005
May 2005
April 2005
March 2005
February 2005
January 2005
British Airways
FCC’s Video Relay Service (VRS)
General discussions
IP routing
Lance Atkinson
Wireless / Mobile
civilian airspace
federal security
jet engine
language translation
math problems
network security
open source
rocket car
spear phishing
unmanned aircraft
web glitch