Cellcrypt Server is a secure networking device providing a core set of services for the Cellcrypt communications network. The Cellcrypt network enables end-to-end encrypted multimedia communications between users of mobile and desktop computers. Secure multimedia services include:
\r\nAll network communications are encrypted and interoperability with third-party networks using standards-based Realtime and store-and-forward protocols (SIP/SRTP). Cellcrypt Server consists of several services for the management of users, devices and multimedia networks. These services are integrated in a way that takes advantage of common proxying and network security interfaces to better facilitate security analysis.
","evaluation_configuration":"The TOE consists of the Cellcrypt Server version 5.0 firmware running on an HPE ProLiant DX380 Gen10 server appliance.
","security_evaluation_summary":"The evaluation was carried out in accordance with the Common Criteria Evaluation and Validation Scheme (CCEVS) process and scheme for the collaborative Protection Profile for Network Devices, Version 3.0E with the Functional Package for SSH, Version 1.0 and PP Module for Enterprise Session Controller (ESC), Version 1.0 applied. The evaluation methodology used by the evaluation team to conduct the evaluation is the Common Methodology for Information Technology Security Evaluation, Version 3.1 release 5. The product, when delivered and configured as identified in the guidance documentation, satisfies all the security functional requirements stated in the CellCrypt Server Security Target. The evaluation was completed in December 2025. Results of the evaluation can be found in the Common Criteria Evaluation and Validation Scheme Validation Report prepared by CCEVS.
","environmental_strengths":"Security Audit
\r\nThe TOE generates audit records of the activities performed on it as well as activities related to trusted channel establishment and operations. This includes call detail records (CDR) of VVoIP calls as well as well as real-time system diagnostic information. The TOE securely stores audit records locally and has the ability to transmit stored audit records to a remote audit server using a trusted channel.
\r\n\r\n
Cryptographic Support
\r\nThe TOE implements cryptography to protect data in transit. The TOE implements SSH as a server and mutually-authenticated TLS 1.3 as both a client and server. It also implements HTTPS as a server for remote administration and NTP for secure network time synchronization. Cryptographic operations are performed using NIST validated algorithm implementations via OpenSSL. Key destruction is performed when keys are no longer in use. The TOE’s DRBG is seeded using entropy from the processor RDSEED instruction set.
\r\nIdentification and Authentication
\r\nThe TOE supports administrator authentication using SSH password, SSH public key, local password, and web GUI-based password. It enforces authentication before use of the TSF, both for administrators and for connected VVoIP devices. For password-based authentication, it enforces password composition requirements and lockout in the event of excessive failed authentication attempts. For connections that require validation of X.509 certificates, the TOE enforces validity checking on certificates, including the use of CRL or OCSP for revocation checking. The TOE also has a mechanism to generate a certificate signing request to obtain a certificate that it can present to external entities.
\r\nSecurity Management
\r\nThe TOE includes management interfaces to configure its own security functionality as well as the functionality that governs the behavior of connected client devices in the TOE’s operational environment. Management is performed using a local or remote interface, and security relevant functions are restricted to authorized administrators.
\r\nProtection of the TSF
\r\nThe TOE protects keys and credential data at rest. It also enforces self-protection through performing power-on self-tests and enters a fail-secure state if any of the self-tests fail. It also enforces trusted updates by ensuring that only signed updates will be installed. It includes an NTP server connection to provide accurate time data, which supports auditing, cryptographic, and authentication functions.
\r\nTOE Access
\r\nThe TOE terminates idle administrative sessions and provides a means for administrators to actively terminate their own sessions. It also displays a pre-authentication warning banner governing acceptable use of the TSF.
\r\nTrusted Path/Channels
\r\nThe TOE encrypts sensitive data in transit between itself and its operational environment using TLS and TLS/HTTPS for communication with VVoIP endpoints and remote audit servers and between remote administrators and the TOE using SSH and TLS/HTTPS.
","features":[{"id":2340,"feature_name":"Asymmetric Key Generation"},{"id":2330,"feature_name":"Auditing"},{"id":2373,"feature_name":"Certificate Authentication"},{"id":2356,"feature_name":"Certificate Validation"},{"id":2346,"feature_name":"Cryptographic Hashing"},{"id":2341,"feature_name":"Cryptographic Key Establishment"},{"id":2342,"feature_name":"Cryptographic Signature Verification"},{"id":2338,"feature_name":"DRBG"},{"id":2359,"feature_name":"DTLS Server with Mutual Authentication"},{"id":2334,"feature_name":"Enterprise Session Controller"},{"id":2369,"feature_name":"HTTPS Client"},{"id":2371,"feature_name":"HTTPS Server with Mutual Authentication"},{"id":2332,"feature_name":"Key Destruction"},{"id":2348,"feature_name":"Keyed-hash message authentication"},{"id":2333,"feature_name":"SSH Server"},{"id":2377,"feature_name":"TLS 1.2"},{"id":3975,"feature_name":"TLS 1.3"},{"id":2368,"feature_name":"TLS Client"},{"id":2365,"feature_name":"TLS Server with Mutual Authentication"}]}