G├ľKT├ťRK-1 Reconnaissance and Survaillance Satellite National Crypto Sybsystem
G├ľKT├ťRK-1 is a reconnaissance and survaillance satellite system which aims the secure transmission of high-resolution images taken from any location in the world. Although the main objective of the system is to meet military needs, it is also planned to be used in the areas of civil activities such as forest control, illegal construction, crop management and casualty assessment after natural disasters.
The communication between G├ľKT├ťRK-1 Satellite and itÔÇÖs Main & Mobile Ground Stations is carried out via S-Band and X-Band links. UEKAE has developed the crypto devices to be used over these links and the related key management system. Thus, the security of the commands sent to the Satellite and of the images received from the Satellite is provided by national means.
The equipment developed are:
1.┬á┬á ┬áGround X-Band National Crypto Device
2.┬á┬á ┬áGround S-Band National Crypto Device
3.┬á┬á ┬áSatellite X-Band National Crypto Device
4.┬á┬á ┬áSatellite S-Band National Crypto Device
5.┬á┬á ┬áKey Management Unit
6.┬á┬á ┬áKey Fill Device for ground equipment
7.┬á┬á ┬áKey Injector for satellite equipment
8.┬á┬á ┬áElectronic Ground Support Equipment (EGSE)┬á
Additonally, Cryptographic Security, TEMPEST, COMSEC, and NETSEC test and evaluation services are provided for Satellite and itÔÇÖs Main & Mobile Ground Stations by B─░LGEM.
Within the scope of the management, UEKAE works as a sub-contractor of Telespazio S.p.A collaboration with Thales Alenia Space ÔÇô France and DSI GmbH.┬á
Network systems are being linked in an unique network technology nowadays. In the future, network systems will be based on ÔÇťEverything Over IPÔÇŁ concept which helps to transfer all data traffic over IP networks.
IP Crypto Devices acting as a security gateway are located between local network and edge router to establish VPN (Virtual Private Networks). IP Crypto Devices are the latest solution for high speed secure communications. In this way, many physical lines (cabled, wireless, satellite and hybrid networks) and applications can be secured with only one technology. IP Crypto System provides data confidentiality, authentication and integrity of these networks.
IP Crypto System consists of IP Crypto Devices and Management Center. IP Crypto Devices link confidential networks and provide secure communication. Management Center supplies remote management of keys and devices. Many IP Crypto Devices have been developed for different requirements and speed (from 34 Mbps to 9 Gbps) since 2000. Moreover, IP Crypto Projects are in progress now.
The software and hardware of IP Crypto System have national design. IP Crypto System secures many of the critical Military and Government networks in Turkey.
- National Public Key Infrastructure Project (MA3)
Public Key Infrastructure (PKI) is used by companies to provide security services required in IT environment. This infrastructure comprises one or more Certification Authorities (CA) and some other auxiliary software. Users are registered to CAÔÇÖs according to predefined policies. After registration, electronic documents are issued to users for proving their identities and achieving information security. These electronic documents are called electronic certificates which can be used for creating e-signature, data encryption and authentication.┬á Since e-signature features present in many IT applications act as legal signatures, the management of electronic certificates and their cryptographic keys is very important.
ESYA (Electronic Certificate Management Infrastructure), developed under MA3 project, comprises features required by a PKI system. ESYA certification authority is the only national PKI product used in Turkish National ID Card project for generation and management of certificates. ESYA also has critical role almost in all e-government projects such as e-justice, e-invoice, e-prescription, new generation cash register, e-passport, and tachograph. Besides, ESYA with the latest implementation of PKI technology, is one of the several products in the world and the only national one which is certified with Common Criteria EAL 4+.
MA3 project also provides APIÔÇÖs and desktop security solutions for PKI based authentication, encryption and e-signature needs of companies. These products are being widely used in Turkish Armed Forces, in strategically important institutions and in many other public institutions.
- MAMS─░S Project
MAMS─░S is a system which handles strategical, operative, tactical military messaging requirements of Turkish Army in a continuous, fast, secure and accurate manner. MAMS─░S is consist of platform independent server and client software components which have been developed with national resources. The system is based on international military and commercial messaging standards.
MAMS─░S includes an X.400 and SMPT based message transfer server, X.500 and LDAP based directory system server, messaging client and various gateways. The main purpose of the system is to provide a secure, integrated messaging among strategic and tactical environments.
- LHD (Landing Helicopter Dock) Message Operating System
The purpose of the LHD is to develop a message operating system which will be deployed to the ship and will allow storing, transferring and printing the formatted messages from the communication system. In addition to synchronous serial channel switching device, mechanical switching device and energy distribution device; ACP 127 software package, STANAG 5066 protocol software, STANAG 5066 Ed.3 applications, backup software and X.400 messaging system have also been developed.
- LST (Land Ship Tank) Message Operating System
The purpose of the LST is to develop a message operating system which will be deployed to two LST ships and will allow storing, transferring and printing the formatted messages from the communication system. In addition to synchronous serial channel switching device, mechanical switching device and energy distribution device; ACP 127 software package, STANAG 5066 protocol software, STANAG 5066 applications, backup software and X.400 messaging system have also been developed.
- MEDAS-2 Maintenance, Operation and Support Service Project
MEDAS is a STANAG 4406 based military messaging system which aims to fulfill the message and document handling requirements in a fast, accurate and secure manner. The system is based on X.400 e-mail standards, X.500 directory system standards, public key infrastructure and NATO STANAG 4406 messaging standards. In order to cover some of the messaging needs of MEDAS, national military message form and mail list agent products have been developed by T├ťB─░TAK B─░LGEM as prototypes in 2005. These products have been used as a part of MEDAS-2 since 2009. In the scope of MEDAS-2 Maintenance Project; the main goals are providing the interoperability with newer versions of MS Windows, the usage of national directory system server and 2 years of software support. The project has been started in 2018 and it is planned to end the project in 2020. The outputs of the project are national military message form (new version), national directory system server and national electronic certificate management infrastructure (new version).
The purpose of the MEDAS-3 project is to improve and nationalize the MEDAS system by including the abilities which have been gained by MAMS─░S (National military messaging system) Project in 2014. The commercial products within MEDAS are being replaced with national products based on NATO standards and international commercial standards. The project has been started in 2018 and it is planned to complete the project in 2021. The outputs of the project are messaging and directory software products which have been developed with national resources. Besides, the outputs of the project will be integrated with current, external strategic and tactical systems.
- The project has a 2-year warranty period. The products which are being developed or extended are:
- Directory system server software
- X.400 message transfer server software
- Mail list agent
- Message profiler
- ACP 127 ÔÇô X.400 converter
- Messaging client
- Administration tool
- The main goals of the project are
- Generalizing the abilities which have been gained with MAMS─░S and extending these abilities based on user feedbacks
- Developing an ultimate administrative tool in order to make maintenance and administration of the messaging and directory systems
- Upgrading the operating system and security software
- An integrated system which cooperates with external systems and which might be used strategic, operative and tactical levels
- M─░LGEM 3-4 Message Operating System
The purpose of the system is to develop a message operating system which can store, show and print the formatted messages coming from the communication system which is a part of M─░LGEM 3-4 ship warfare management system.
In addition to the synchronous channel switching device, mechanical switching device and energy distribution unit; ACP 127 software package, STANAG 5066 protocol software, STANAG 5066 applications software, data replication software and X.400 messaging system software have also been developed.
- YTDA Message Operating System
The purpose of the YTDA Message Operating System is to develop a sub system of integrated naval communication system which will be deployed to 6 submarines of Turkish Navy.
In addition to the asynchronous channel switching device, mechanical switching device and energy distribution unit; ACP 127 software package, STANAG 5066 protocol software, STANAG 5066 applications software, data replication software and X.400 messaging system software have also been developed.
- TVEG Message Operating System
The purpose of the system is to develop a message operating system which can store, show and print the formatted messages coming from the communication system which is a part of TVEG ship warfare management system.
In addition to the asynchronous channel switching device, mechanical switching device and energy distribution unit; ACP 127 software package, STANAG 5066 protocol software, STANAG 5066 applications software, data replication software and SMTP messaging system software have also been developed.
The purpose of the KurumNet Project is to develop secure messaging system with national resources. Within this project; national messaging server, national directory server and national messaging client have been developed. The system enables enterprise users to send signed and encrypted messages. The security functions such as strong authentication, transport layer security, access control, audit log and message security have been provided. In addition to the message security, enterprise messaging requirements have also been considered. Besides; backup, backup recovery and high availability functions have been supported via server components which are administrated remotely. KurumNet have been used by more than 2000 users as T├ťB─░TAK B─░LGEM enterprise messaging system since January 2017. Recently, the system is being deployed to many corporations, feedbacks are being collected and future projects are being planned.