S-4538/110A transfers utilizing 256-bit Initialization Vectors (2)

i56578-swl.blogspot.com 1 rok temu

Recently I analyzed an interesting recording sent me by my friend Mike (mco) any days ago; for clarity, the transmission was recorded on 8006 KHz/USB. As shown in Figure 1, the recording consists of 4 data section sent utilizing the 188-110A Serial speech (at 600bps/S), 2 188-141B async call PDUs ("obsoleted", 3G-ALE)(1) and a final FLSU (Fast Link SetUp) PDU that terminates the link, the second BW5 waveform suggests a STANAG-4538 3G-HF "circuit mode service" transmission, as well as the usage of the 141B async call suggests the usage of Harris equipments.

Fig. 1

The bitstream after 110A removal (Figure 2) clearly shows the usage of encrypted frames which are characterized by the usage of 256-bit dimension Initialization Vectors (IVs), thus the data-link protocol is besides encrypted (not the data only). It's to be noticed that each Initialization Vector is 8 times repeated.
Fig. 2

The frame structure appears almost the same of the 1 analyzed in a akin transmission analyzed any times ago [1], in that case the 110A modem was utilized at 2400 bps/S. Studying more closely the 4 bitstreams, it's possible to see recurrence of a same COMSEC preamble consisting of 01s sequences for bit phasing, same repeated sequences (probably for frame sync), and evidently the 4 different 256-bit dimension Initialization Vectors (Figure 3).
Fig. 3

phasing

223-bit series sync:
0101101111011010010000100011110110111101110000100100001111000100010111011010001110100101101110111
1011100001001000011110001000101110000100011101001011011101111011100001001000011110001011010001001
00001110111101101000100011110

256-bit Initialization Vectors, each 8 times repeated:
E7 F6 45 FD 63 53 2A 4B 91 0B 0E B7 A8 80 00 00
63 35 D7 73 64 9B 8D 08 35 3F 26 0D 9D BE 02 F9

D7 32 3B 83 D0 6F 57 03 A9 65 CA F7 64 64 00 00
9B 32 8E B9 2B D0 9D D6 00 FB 96 53 68 92 BD F5

87 32 AA F0 9C 3D 03 EE E2 00 26 EF 45 4D 00 00
82 8F C3 CC BF 2B 36 99 51 27 45 88 9D 83 2E F7

77 CD 93 E5 EB AF 65 3D B6 2B 1A 47 4E 19 00 00
C6 E1 5C FA 8B 16 57 57 0E 2B 04 C9 65 66 25 F3

phasing

32-bit series sync (6 times repeated):
8B 87 84 7B

The COMSEC preamble is followed by encryption, according to the standard MIL 188-220D [2].

Fig. 4
For what concerns the encryption, I would speculate the usage of "HC-256", a software stream cipher for embedded systems which generates keystream from a 256-bit secret key and a 256-bit Initialization Vector [3], but it's just a guess.

https://disk.yandex.com/d/jVqWadSb-cBevA
(1) 188-141B (released on March 1999!) was superseded by 188-141C (December 2011), in its turn superseded by 188-141D (December 2017): the last 2 standards no longer have the Appendix C but only any short paragraphs, among them the #C.6 says "The specifications previously contained in this appendix have been replaced with mention to the fundamentally identical NATO STANAG 4538".

[1] https://i56578-swl.blogspot.com/2020/09/s-4538110a-transmissions-using-unid-256.html
[2] http://everyspec.com/MIL-STD/MIL-STD-0100-0299/MIL-STD-188-220D_CHG_NOTICE-1_24817/
[3] https://www.ecrypt.eu.org/stream/ciphers/hc256/hc256.pdf

Idź do oryginalnego materiału