Lantronix 900-618 Enable Encryption

8: Setup Mode: Advanced Settings

Enable Encryption

Rijndael is the block cipher algorithm chosen by the National Institute of Science and

Technology (NIST) as the Advanced Encryption Standard (AES) to be use d by the

US government. The xPico supports 128-, 192-, and 256-bit encryption key lengths.

Note: Configuring encryption should be done through a local connection to the se rial

port of the xPico, or via a secured network connection. Initial conf iguration

information, including the encryption key, is sent in clear text over the n etwork.

To configure AES encryption on the xPico:

1. When prompted to enable encryption, select Y.

2. When prompted, enter the encryption key length. The xPico supports 128-, 192-,

and 256-bit encryption key lengths.

3. When prompted to change keys, select Y.

4. At the Enter Keys prompt, enter your encryption key. The encryption ke ys are

entered in hexadecimal. The hexadecimal values are echoed as asterisk s to

prevent onlookers from seeing the key. Hexadecimal values are 0-9 and A-F.

 For a 128-bit key length, enter 32 hexadecimal characters.

 For a 192-bit key length, enter 48 hexadecimal characters.

 For a 256-bit key length, enter 64 hexadecimal characters

5. Continue pressing Enter until you return to the Change Setup menu.

6. From the Change Setup menu, select option 9 to save and exit.

Encryption only applies to the port selected for data tunneling (default 1 0001 for

Channel 1 and 10002 for Channel 2), regardless of whether you are using T CP or

UDP.

Generally, one of these situations applies:

 Encrypted xPico-to-xPico communication. Be sure to configure both modules

with the same encryption key.

 Third-party application to xPico-encrypted communication: xPico uses standar d

AES encryption protocols. To communicate successfully, products and

applications on the peer side must use the same protocols and the s ame

encryption key as the xPico.

xPico User Guide 59

Contents

Main Copyright and Trademark Warranty Contacts Disclaimer Revision History Table of Contents Page Page Page List of Tables List of Figures 1. Using This Guide xPico User Guide 9 Purpose and Audience Chapter Summary The remaining chapters in this guide include: Additional Documentation 2. Introduction Capabilities Applications Protocol Support Configuration Methods Addresses and Port Numbers Hardware Address IP Address Product Information Label 3. Using DeviceInstaller Installing DeviceInstaller Assigning an IP Address Accessing the xPico Using DeviceInstaller Viewing the Current Configuration 3: Using DeviceInstaller xPico User Guide 16 3: Using DeviceInstaller xPico User Guide 17 4. Configuration Using Web Manager Accessing Web-Manager Using DeviceInstaller Network Configuration Network Mode Automatic IP Address Configuration Static IP Address Configuration Ethernet Configuration Server Configuration 4: Configuration Using Web Manager Server Configuration Advanced Host List Configuration Retry Settings Host Information Channel 1 and 2 Configuration Serial Settings Channel 1 Port Settings 4: Configuration Using Web Manager Pack Control Flush Input Buffer (Serial to Network) Flush Output Buffer (Network to Serial) Connection Settings - TCP Page Connect Protocol xPico User Guide 29 Connect Mode: Passive Connection Connect Mode: Active Connection Endpoint Configuration Connection Settings - UDP Connect Protocol Datagram Mode Endpoint Configuration Configurable Pin Settings Configurable Pin Functions Apply Settings Apply Defaults 5. Configuration via Telnet or Serial Port (Setup Mode) Accessing Setup Mode Telnet Connection Serial Port Connection Exiting Setup Mode 6. Setup Mode: Server Configuration Server Configuration (Option 0) IP Address Set Gateway IP Address Netmask: Number of Bits for Host Part Set DNS Server IP Address Change Telnet/Web-Manager Password DHCP Name 7. Setup Mode: Channel Configuration Channel 1 (Option 1) or Channel 2 (Option 2) Baudrate 7: Setup Mode: Channel Configuration I/F (Interface) Mode Hex Binary Common I/F Mode Setting 1 Port Number Connect Mode 7: Setup Mode: Channel Configuration 1 2 a) Incoming Connection xPico User Guide 43 b) Response c) Active Startup 7: Setup Mode: Channel Configuration xPico User Guide 45 Command String Result if remote IP is 129.1.2.3 and remote port is 1234 Page d) Datagram Type e) Modem Mode Page Send the Escape Sequence (+++) in Modem Mode Show IP addr after 'RING' Auto Increment Source Port Remote IP Address Remote Port DisConnMode Flush Mode (Buffer Flushing) Pack Control Packing Interval Trailing Characters Send Characters DisConnTime (Inactivity Timeout) Send Characters Telnet Terminal Type Channel (Port) Password 8. Setup Mode: Advanced Settings Expert Settings (Option 5) TCP Keepalive time in seconds ARP Cache timeout in seconds CPU Performance Disable Monitor Mode at bootup HTTP Port Number MTU Size Security Settings (Option 6) Page Disable TFTP Firmware Upgrade Disable Port 77FE (Hex) Disable Web Server Disable Web Setup Disable ECHO Ports Enable Encryption Enable Enhanced Password Disable Port 77F0 (Hex) Default Settings (Option 7) Channel 1 and Channel 2 Configuration Defaults 8: Setup Mode: Advanced Settings Expert Settings Defaults xPico User Guide 61 Security Settings Defaults 9. GPIO Interface Configurable Pins Features Control Protocol Guidelines Commands Byte 0 Command Types 9: GPIO Interface Command 10h, Get Functions xPico User Guide 64 Command 11h, Get Directions Command 12h, Get Active Levels Command 13h, Get Current States Examples Page 10. Firmware Upgrades Obtaining Firmware Reloading Firmware Using TFTP: Graphical User Interface Using TFTP: Command Line Interface Recovering the Firmware Using the Serial Port and DeviceInstaller 11. Monitor Mode Entering Monitor Mode Using the Serial Port Entering Monitor Mode Using the Network Port Monitor Mode Commands 11: Monitor Mode Page 12. Troubleshooting xPico User Guide 73 Problems and Error Messages 12: Troubleshooting xPico User Guide 74 12: Troubleshooting xPico User Guide 75 Technical Support A: Binary to Hexadecimal Conversions Converting Binary to Hexadecimal Conversion Table Scientific Calculator Page B: Compliance RoHS Notice