NSW Police Encryption key rollover
NSW Police Encryption key rollover
Hi All,
Was running OP25 against a NSW Police channel and it appears the Encryption Sync metadata carried across the channel in the HDU and LDU2 fields has changed. The algorithm is still DES-OFB (type 0x81) however the KID (Key ID) has changed from 0x7001 to 0x8000.
Interesting stuff!
Cheers,
Matt
Was running OP25 against a NSW Police channel and it appears the Encryption Sync metadata carried across the channel in the HDU and LDU2 fields has changed. The algorithm is still DES-OFB (type 0x81) however the KID (Key ID) has changed from 0x7001 to 0x8000.
Interesting stuff!
Cheers,
Matt
-
- Posts: 672
- Joined: Thu Aug 14, 2008 8:22 pm
Re: NSW Police Encryption key rollover
Yes Matt, it's especially interesting that the key rollover happened the day after this story came out.
http://www.smh.com.au/national/police-s ... 1hlqx.html
"The Herald investigation found one NSW chapter of a national bikie club had obtained technology to intercept police communications, and access to secret codes to break encrypted police communications."
Mike
http://www.smh.com.au/national/police-s ... 1hlqx.html
"The Herald investigation found one NSW chapter of a national bikie club had obtained technology to intercept police communications, and access to secret codes to break encrypted police communications."
Mike
Re: NSW Police Encryption key rollover
Good bit of timing there by the Police Media Liason unit!
-
- Posts: 1532
- Joined: Sat Feb 06, 2010 9:41 am
Re: NSW Police Encryption key rollover
Hacked keys or stolen portables?
- rustynswrail
- Posts: 646
- Joined: Thu Mar 11, 2010 10:18 pm
- Location: Blue Mountains
Re: NSW Police Encryption key rollover
Probably safer not to ask, given recent events.matthewn1983 wrote:Hacked keys or stolen portables?
R
Amateur Radio, when all other cures for insomnia fail!
Re: NSW Police Encryption key rollover
I asked a mate (whose in the know) about the change of encryption keys. He says it wasn't done due to any specific incident and is something that is planned to be done 'every now any again'.
Aparently they had been loading the new keys into radios for at least 2 months prior to the switch. It can't be done over the air, so each radio had to be done individually. I can image that would have taken a while.
Aparently they had been loading the new keys into radios for at least 2 months prior to the switch. It can't be done over the air, so each radio had to be done individually. I can image that would have taken a while.
Re: NSW Police Encryption key rollover
It could have been done over the air- if they had been on the GRN- but we better not go there...
Cheers,
Richard
Cheers,
Richard
Re: NSW Police Encryption key rollover
According to the IPART documents they have 15000 radios - just under 12000 radios in regular use and an additional 3000 odd radios for major ops.
Grant
Grant
Professional Scanner nut. Ibis bin chicken of radio scraps
Scanners:
Uniden 325P2, Whistler TRX-1, GRE PSR800 x 2, Uniden 780 x 3, Uniden 796, Uniden 396 x 2, Uniden 246,
Software:
DSD v2.368, Unitrunker, Trunkview
Scanners:
Uniden 325P2, Whistler TRX-1, GRE PSR800 x 2, Uniden 780 x 3, Uniden 796, Uniden 396 x 2, Uniden 246,
Software:
DSD v2.368, Unitrunker, Trunkview
Re: NSW Police Encryption key rollover
Yeah true, although I'm led to believe there was a small profile change as well. No idea what channels as obviously they can't be monitored anymore. I don't think it would really be feasible to do a key change to all radios over the air, let alone a key change and profile update - even on the GRN. Surely it would simply take too long, and there would be too much chance of missing radios, therefore having to attend a station in person for the missed ones anyway. I guess doing it in person also allows the radios to be given a 'once over' by a tech, which I can't imagine would happen very often.ivahri wrote:It could have been done over the air- if they had been on the GRN- but we better not go there...
Cheers,
Richard
That would probably be all their radios, not only the ones on the digital network. But even if that number was cut in half (and it's likely a lot more than half) that's still a lot of radios to reprogam!cartman wrote:According to the IPART documents they have 15000 radios - just under 12000 radios in regular use and an additional 3000 odd radios for major ops.
Grant
Re: NSW Police Encryption key rollover
They need to make sure they have the "Multikey/OTAR" option flash into their radios too. A key change is totally feasible over the air - even for a fleet that big. Keysets and multiple keys make it possible to do a staged approach - exactly the same way that they manage to do a manual rekey with guys spending months running around manually updating keys with a KVL.