Secure inter-network architecture

The Secure Inter-Network Architecture ( SINA , originally for Secure Network Connection ) is a hardware and software architecture developed by the German Federal Office for Information Security together with secunet Security Networks AG on the basis of the free Linux operating system as a hardened SINA -Linux was developed to process sensitive data in insecure networks.

Objectives of the system

The unit, made up of the three components SINA client, SINA box and SINA management, aims to secure communication between authorities or companies. The security level achieved by SINA for SINA-Box S is classified / confidential for German authorities and for SINA-Box H even up to "secret".

variants

SINA boxes are used for the secure transmission of data in official and military environments. As a result, there are also different versions of the SINA box. When Sina Box S encryption is only in the software crypto chiasm implemented, whereas the secret encryption method used there in Sina Box H bubble in the crypto processor Pluto on an additional PCI - plug-in card is implemented.

application

SINA boxes are u. a. also used for the secure transmission of data that arise during telecommunication monitoring in accordance with the TKÜV . Your task is not to monitor the connection itself, but to protect the connection against eavesdropping by unauthorized third parties as soon as the data is transmitted by certain people to the law enforcement authorities by transferring the data concerned via the SINA box to an Internet service provider Virtual Private Network .

According to the Telecommunications Act ( Section 113 (5) sentence 2 TKG), they must be installed at every Internet provider in Germany that has more than 100,000 customers.

Web links

SINA system description at the Federal Office for Information Security
Description on the manufacturer's website

On the subject of "interception interface" (false report in c't 4/2014)

Individual evidence

↑ Secure Inter-Network Architecture (SINA) , information brochure of the Federal Office for Information Security from January 2016; BSI-Bro16 / 322.
↑ SINA system description on the website of the Federal Office for Information Security; accessed on November 13, 2019.
↑ Implementation of monitoring measures, provision of information (Sections 110, 113 TKG). Federal Network Agency, August 2, 2017, accessed on March 7, 2018 .

[BSISINAPDF-1] Secure Inter-Network Architecture (SINA) , information brochure of the Federal Office for Information Security from January 2016; BSI-Bro16 / 322.

[BSI01-2] SINA system description on the website of the Federal Office for Information Security; accessed on November 13, 2019.

[BNA01-3] Implementation of monitoring measures, provision of information (Sections 110, 113 TKG). Federal Network Agency, August 2, 2017, accessed on March 7, 2018 .