Hardware and Software Options in Support of Mobile Computing and the ISLE Project by Roy Stehle [email protected]

Hardware and Software Options in Support of Mobile Computing and the ISLE Project by Roy Stehle Stehle@Erg.Sri.Com

Hardware and Software Options in Support of Mobile Computing and the ISLE Project by Roy Stehle [email protected] http://www.erg.sri.com/people/stehle

SRI International 333 Ravenswood Avenue Menlo Park, CA 94025

Information Sharing Technology Workshop for Criminal Justice May 6-7, 1998

Info. Sharing Technology Workshop for Criminal Justice Page 1 6-7 May 1998 SRI International Mobile Computing

o Need not imply communications on the move

o Access to information can be from an office, home, warehouse, or motel

o Access can be by wireline or wireless

o Need for Secure and reliable communications

One size does not fit all

Info. Sharing Technology Workshop for Criminal Justice Page 2 6-7 May 1998 SRI International Florida InfoTech/ISLE Program

ISLE = Information Sharing for Law Enforcement EDACS Dragonfly Other Comms

Firewall Others

Brevard Router Web Server CJ-Net Web Server Backbone Firewall NCIC & Monroe Router Other Databases Dragonfly Dragonfly Companion

Info. Sharing Technology Workshop for Criminal Justice CDPD Page 3 6-7 May 1998 SRI International Crisis Management Center Network Elements

External Databases FORTEZZA encryption (or higher) on all transfers.

Tactical Local Law Dragonfly Internet Enforcement TEED

TEED Mobile Command Post Commercial Dragonfly PSTN / Internet

Dragonfly

Crisis Management Center Firewall

Peace Keeper Field Agent

Info. Sharing Technology Workshop for Criminal Justice Page 4 6-7 May 1998 SRI International Terminal Selection Criteria

o Installation: In-vehicle or hand carried o Input: Free text entry (reports) or Menu-based applications; QWERTY keyboard (size) and/or touch screen (finger or stylus) o Display: B&W or Color; physical size; resolution; daylight readable o Battery Lifetime: Need to support peripherals (e.g., radio, camera) o I/O capability: Serial communications to transceiver; PCMCIA slots to host (Type II or III) peripherals o Benefits of local storage: Caching of databases and retrieved information for quick recall o Maintenance costs: Up-front for rugged units used for the long term vs. low-cost replacements as technology improves

Info. Sharing Technology Workshop for Criminal Justice Page 5 6-7 May 1998 SRI International Laptops

o Full Featured – Fast Processor – Large Hard Drive – Large RAM Capacity o Good for general applications – Frequently MS-Windows-based o Good mounting in vehicles PCMobile o Rugged versions o Sunlight readable displays o Full Keyboards & Touch screens o Multiple interfaces and PCMCIA Slots o Cost: $1,300 - $6,000

Toshiba Portege

Info. Sharing Technology Workshop for Criminal Justice Page 6 6-7 May 1998 SRI International Sub- and Mini-Notebooks

o Reduced size for carrying ease – Under 3 pounds o Processor: ‘486 to 166-MHz Pentium o Smaller keyboard o MS-Windows Operating System o 1 or 2 PCMCIA slots o Docking Station for I/O and peripherals Toshiba Libretto o Reduced vertical height display screen o Limited battery lifetime, particularly when loaded with peripherals o Cost: $700 - $2,500

IBM PC-110

Info. Sharing Technology Workshop for Criminal Justice Page 7 6-7 May 1998 SRI International Pen-based PDA

o Stylus-sensitive screen Hammerhead – QWERTY Keyboard Addons o Ruggedized – Hardened case – Waterproof o ‘486 to Pentium Processors o Some I/O limitations due to environmental seals Motorola Forte o Some have built-in radio links o Cost: $2,500 - 6,000

Phoenix Group Super Nightingale

Info. Sharing Technology Workshop for Criminal Justice Page 8 6-7 May 1998 SRI International Palm PCs

o Handheld Personal Computers o MS-Windows CE-based o Pocket-sized o Limited processor and memory; no hard drive o At best, one PCMCIA slot HP 620LX o Some with color displays o Basic note taking; e-mail; Web browsing o Cost: $300 - $1,000

Everex Freestyle

Sharp HC 4500 Hitachi HPW-200EC with Digital Camera

Info. Sharing Technology Workshop for Criminal Justice Page 9 6-7 May 1998 SRI International Organizers

o Shirt pocket size o Proprietary operating system Docked with Novatel o Pen-based Input Minstrel CDPD Transceiver o Personal Information Manager o Web Browser o E-mail o 3Com PalmPilot dominant o Cost: $190 - $400

Serial Interface to Metricom Ricochet SE

Basic Docking Station

Info. Sharing Technology Workshop for Criminal Justice Page 10 6-7 May 1998 SRI International PCS Terminals and 2-Way Paging

o Built-in communications o Small QWERTY keyboard o Self-contained with no peripheral ports o Cost: $450 to $1,200

Nokia 9000 (GSM)

Rim Inter@ctive on Ardis or Bell So. Wireless NovAtel C-O-N-T-A-C-T with Windows CE and CDPD

Info. Sharing Technology Workshop for Criminal Justice Page 11 6-7 May 1998 SRI International Wireless Networks o Regional-Area – AMSC, Inmarsat Wide-area Overlay Networks – Irridium, Orbcomm – DirecPC Regional-Area – HF o Metropolitan-Area – AMPS/CDPD Metropolitan-Area – BellSo. Wireless, Ardis – LMR, ESMR trunking Campus-Area Packet Relay – Paging (1- & 2-Way) – Digideck (TV Subcarrier) In-Building o Campus-Area – Metricom Source: BARWAN Project, University of California at Berkeley – WING-I o In-Building – NetWave, WaveLAN

Info. Sharing Technology Workshop for Criminal Justice Page 12 6-7 May 1998 SRI International Cellular Digital Packet Data (CDPD) o Available in major metropolitan areas o Covers 54% of the US Population o Raw datarate of 19,200 bps 8 kbps uplink and 9.6 kbps downlink, typ. o Full duplex o Nationwide standard (Version 1.1) o A and B carriers compete for business o $50/month flat rate for Public Safety groups o Internet Protocol (IP) - based for portability of applications o Virtual Private Network not (necessarily) linked to the Internet o RSA RC4 encryption over-the-air o No priority access in time of crisis o May compete with public for channels o Channel access latency o Good choice of transceiver suppliers

Info. Sharing Technology Workshop for Criminal Justice Page 13 6-7 May 1998 SRI International CDPD Coverage in Monroe County, FL

Key Largo to Key West using 0.6-W AirLink PinPoint

25.5

25.0 Latitude 24.5 -60 -80 -100

RSSI (dB) -120 10 8 6 4 2 TX Power 0 690 680 670 Channel 660 4000 2000

Ping (ms) 0 -81.5 -81.0 -80.5 Longitude Info. Sharing Technology Workshop for Criminal Justice Page 14 6-7 May 1998 SRI International LMR and ESMR Systems

o Leverages existing voice communications infrastructure; maintenance functions already being provided o Dedicated Public Safety channels for priority access in times of crisis o Low to moderate datarates (2.4 to 9.6 kbps) o Half duplex operation o Proprietary digital data interfaces and protocols o Expensive, sole source equipment o Rugged equipment o Voice may already be digitized for security o Frequencies can be a scarce commodity and may be needed for voice o Large capital investment may inhibit transitions to more capable technology o Potential inter-agency operational restrictions (e.g., equipment compatibility, channel assignments)

Info. Sharing Technology Workshop for Criminal Justice Page 15 6-7 May 1998 SRI International Ardis and BellSouth Wireless Data o RAM Mobile Data now BellSouth Wireless Data o Large cell LMR model o Raw datarates of 4.8 to 19.2 kbps o Much contention for the channel due to large service area per cell o Targeting 2-way pager market o Expensive monthly service charges – $25/month for 100 messages; $0.25 per message over allocation (BellSouth Data) – $70/month for 100 kBytes (Ardis)

Info. Sharing Technology Workshop for Criminal Justice Page 16 6-7 May 1998 SRI International Metricom Ricochet Packet Network

o Commercial Flat-Rate Wireless Packet Data Network ($30/mo) o 900-MHz Unlicensed ISM Band, Frequency Hopping, Spread Spectrum o 100-kbps raw data rate, simplex o Point-to-point protocols in addition to network support – PPP – WWW Browsing o Virtual RS-232 Cable o Beginning national deployment – San Francisco, District of Columbia, Seattle, Los Angeles, Corvallis, Brooklyn o “Light-Infrastructure” system for wide-area dispatch systems o RSA RC4 encryption available end-to-end

Info. Sharing Technology Workshop for Criminal Justice Page 17 6-7 May 1998 SRI International Wireless Communications Systems

Type of System Frequency Raw Data Typical Mobility Channel Built-in Network Component (MHz) Rate Range Encryption In-Building Xircom 2400-2483.5 1 Mbps 1-600 ft Walking Simplex Proprietary NetWave Campus Metricom 902-928 100 kbps 2-5 miles Walking Simplex RSA RC4 Ricochet Rooftop WING-I 902-928 258 kbps 0.5-2 miles Vehicular Simplex Wide-Area AMPS 824-849 9.6 kbps 1-10 miles Vehicular Full 869-894 Duplex CDPD 824-849 19.2 kbps 1-10 miles Vehicular CSMA RSA RC4 869-894 TDMA RAM 896-901 8.0 kbps 1-10 miles Vehicular TDMA 935-940 Regional AMSC 1525-1559 4.8 kbps geosynch Vehicular Full 1626.5-1660.5 Duplex DirecPC 11700-12700 400 kbps geosynch Stationary Downlink Proprietary

Info. Sharing Technology Workshop for Criminal Justice Page 18 6-7 May 1998 SRI International Internet Protocol (IP)

o Widely used OSI Network Layer protocol o Connectionless protocol for efficient packet routing o Rich application set to draw from o Permits application portability to alternative networks o Availability of commercial routers, gateways, firewalls, and guards o Supports: – Remote Terminal Emulation (TELNET). – File Transport Protocol (FTP). – Trivial File Transfer Protocol (TFTP). – Simple Mail Transfer Protocol (SMTP). – Remote Procedure Calls (RPCs). – Routing Information Protocol (RIP). – eXternal Data Representation (XDR). – Network File System (NFS). – Internet Control Message Protocol (ICMP).

Info. Sharing Technology Workshop for Criminal Justice Page 19 6-7 May 1998 SRI International Secure Netscape Private Web Browsing

o Information Retrieval o Forms https://213.205.91.23:443/ccr_repo.htm Submission

https://213.205.91.23:443/96213-10.htm

o User-Friendly Graphical User Interface (GUI)

Info. Sharing Technology Workshop for Criminal Justice Page 20 6-7 May 1998 SRI International Basic Security Services

o Confidentiality – Privacy of data with encryption during transmission or computer processing (Encryption) o Integrity – Absolute verification that the data has not been modified in transmission or during computer processing (Hashing) o Identification & Authentication (I&A) – Verification of the originator of a transaction (Digital Signature) o Non-Repudiation – Undeniable proof of participation by both sender and receiver in a transaction; audit trail (Signing, Key exchange, Timestamp) o Availability – Ensuring that data transmission or computing processing systems are not denied to authorized users (Firewalls & Guards)

Info. Sharing Technology Workshop for Criminal Justice Page 21 6-7 May 1998 SRI International Network Security Guards

o In-Line Network Encryptors (INE) – Provides for tunneling through networks

VPN/Internet » Protects from disclosure of information and attacks in public/lower-level networks » Protects information in higher-level networks from disclosure and isolates the higher-level networks from attack o Tactical Guard – Provides all the features of the In-Line Network Encryptor, plus: » Enables Write-up » Provides for Regrading (i.e., Write-down) – Example: ITT Dragonfly

Workstation

Info. Sharing Technology Workshop for Criminal Justice Page 22 6-7 May 1998 SRI International Firewall

o Watches network traffic and guards internal assets from network threats o Screening Router – Packet filtering – Hides the network architecture on the Protected Side – Provides address mapping for unofficial internal IP addresses o Application-Level Gateway – Identification & Authentication for ftp, telnet, smtp and http protocols – Services are allowed on basis of protocol and IP address o Audit of attacks against the network o Virtual Private Network extensions allow secure communications over untrusted public networks – WatchGuard provides RSA RC4 128-bit encryption and Microsoft Point-to-Point Tunneling Protocol

Info. Sharing Technology Workshop for Criminal Justice Page 23 6-7 May 1998 SRI International ITT Dragonfly Network Guard

o Combined Network Guard and In-line Network Encryption (INE) unit o End-to-End Encryption with FORTEZZA o User-defined Security Levels in the Architecture – Unclassified, Sensitive, Confidential, Secret o Multipoint Networking o Operational Enhancements – Write-up – Laptop Companion Software (i.e., laptop is only hardware besides the FORTEZZA card

Info. Sharing Technology Workshop for Criminal Justice Page 24 6-7 May 1998 SRI International