CMVP Main Page

Validated FIPS 140-1 and FIPS 140-2 Cryptographic Modules
1995-1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014,
All

Last Update: 6/26/2014

It is important to note that the items on this list are cryptographic modules. A module may either be an embedded component of a product or application, or a complete product in-and-of-itself. If the cryptographic module is a component of a larger product or application, one should contact the product or application vendor in order to determine how the product utilizes the embedded validated cryptographic module. There may be a larger number of security products or applications available which use an embedded validated cryptographic module, than the number of modules which are found in this list. In addition, other vendors, who are not found in this list, may incorporate a validated cryptographic module from this list embedded into their own products.

When selecting a module from a vendor, verify that the module is either the product or application itself (e.g. VPN, SmartCard, USB memory token, etc.) or the module is embedded in a larger product or application (e.g. toolkit, etc.). If the module is embedded in a product or application, ask the product or application vendor to provide a signed letter or statement affirming that the unmodified validated cryptographic module is integrated in the solution; the module provides all the cryptographic services in the solution; and provide reference to the modules validation certificate number from this listing.

NOTE1: Module descriptions are provided by the module vendors and have not been verified for accuracy by the CMVP. The descriptions do not imply endorsement by the U.S. or Canadian Governments or NIST. Additionally, the descriptions may not necessarily reflect the capabilities of the modules when operated in the FIPS-Approved mode. The algorithms, protocols, and cryptographic functions listed as "other algorithms" (e.g. allowed or non-FIPS-Approved algorithms) have not been tested through the CMVP.

NOTE2: The operator of a cryptographic module is responsible for ensuring that the algorithms and key lengths are in compliance with the requirements of NIST SP 800-131A.

NOTE3: All questions regarding the implementation and/or use of any module located on the CMVP module validation lists should first be directed to the appropriate vendor point-of-contact (listed for each entry).

Please contact the CMVP if any errors are discovered or comments with suggestions for improvement of the validation listings.

Cert# Vendor / CST Lab Cryptographic Module
Module
Type
Val.
Date
Level / Description
12 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Joel Rieger
TEL: 410-931-7500
FAX: 410-931-7524

CST Lab: NVLAP 200002-0

SafeNet/Dial Secure Modem
(Firmware version 2.0)

(When operated in 'user with authentication' mode)

Revoked
DES Transition Ended

Security Policy

Hardware 12/08/1997;
10/18/2004
Overall Level: 2 

-EMI/EMC: Level 3
-Roles and Services: Strongest authentication provided when operated in conjunction with the SafeNet/Security Center.

-FIPS Approved algorithms:

-Other algorithms: DES; ATLAS

Multi-chip standalone

11 Motorola, Inc.
Secure Design Center
IL02 Room 0509A
1301 East Algonquin Rd
Schaumburg, IL 60196
USA

-Geoff Hobar
TEL: 847-576-9066
FAX: 847-538-2770

CST Lab: NVLAP 200017-0

Radio Network Controller Encryption Module Controller (RNC EMC)
(Firmware version D01.00.00)

(When operated in FIPS mode by selection of the DES algorithm)

Revoked
DES Transition Ended

Security Policy

Hardware 11/12/1997 Overall Level: 1 

-Module Interfaces: Level 3

-FIPS Approved algorithms:

-Other algorithms: DES; DES-XL; DVI-XL; DVP-XL; DVI-SPFL

Multi-chip standalone

"The RNC 3000 provides data communications between mobile data and host applications in an ASTRO integrated voice and data system. The RNC Encryption Module Controller provides data encryption services for the RNC 3000."
10 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Glenn Constable
TEL: 919-462-1900 x212
FAX: 919-462-1933

CST Lab: NVLAP 100432-0

Turbo Crypto Card (TCC), v09
(Part#: AB-14094-010-09)

Validated to FIPS 140-1

Security Policy

Hardware 11/12/1997;
10/18/2004
Overall Level: 1 

-EMI/EMC: Level 3

-FIPS Approved algorithms: DSA/SHA-1 (Cert. #5)

-Other algorithms: DES (Certs. #11 and #12); Diffie-Hellman

Multi-chip embedded

"Turbo Crypto Card is used in a variety of Cylink's host encryption products, including the Secure Frame Unit (SFU) and the Secure Domain Unit (SDU)."
9 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Glenn Constable
TEL: 919-462-1900 x212
FAX: 919-462-1933

CST Lab: NVLAP 200002-0

SafeNet/LAN VPN Encryptor
(Firmware version 2.0)

Revoked
DES Transition Ended

Security Policy

Hardware 11/12/1997;
10/18/2004
Overall Level: 2 

-Roles and Services: Strongest authentication provided when operated in conjunction with the SafeNet/Security Center.

-FIPS Approved algorithms:

-Other algorithms: DES; ATLAS

Multi-chip standalone

8 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Randy Kun
TEL: 613-723-5077
FAX: 613-723-5078

CST Lab: NVLAP 200017-0

Luna 1 PCMCIA Token
(Firmware version 1.19)

(When operated in FIPS mode for encryption, decryption, and random number generation)

Validated to FIPS 140-1

Security Policy

Hardware 10/29/1997;
10/18/2004
Overall Level: 2 

-EMI/EMC: Level 3

-FIPS Approved algorithms: SHA-1 (Cert. #7)

-Other algorithms: DES (Cert. #13); Triple-DES (allowed for US Government use); CAST; CAST3; MD2; MD5; RSA

Multi-chip standalone

"Chrysalis' Luna 1 is a PC Card that is used to provide generation and storage of symmetric and asymmetric keys, storage of Certificates, and random number generation. It can support up to 15 different users."
7 Netscape Communications Corporation
6905 Rockledge Dr
Suite 820
Bethesda, MD 20817
USA

-Ed Hicks
TEL: 301-571-3900

-Mitch Green

CST Lab: NVLAP 100432-0

Netscape Security Module 1
(ID: fipscm_v1)

(When operated in FIPS mode for secure e-mail, certificate management, password management and met when correctly implementing the tamper evident mechanism specified in the security policy.)

Validated to FIPS 140-1
Not Available

Security Policy

Software 08/29/1997 Overall Level: 2 

-Physical Security: Level 2

-Operating System Security:Tested as meeting Level 2 with Sun Sparc 5 w/ Sun Solaris v 2.4SE (ITSEC-rated), and Level 1 for Microsoft WindowsNT 4.0 workstation (operated in single user mode)

-FIPS Approved algorithms: DSA/SHA-1 (Cert. #3)

-Other algorithms: DES (Certs. #6 and #10); RSA; RC4; RC5; MD2; MD5

Multi-chip standalone

"Security module used in various Netscape products."
6 Mykotronx, Inc.
357 Van Ness Way
Suite 200
Torrance, CA 90501
USA

-Kevin Cook
TEL: 310-533-8100
FAX: 310-533-0527

CST Lab: NVLAP 100432-0

Palladium Fortezza Crypto Card
(Part Number 650000)

Validated to FIPS 140-1

Security Policy

Vendor Product Link
Hardware 06/11/1997 Overall Level: 2 

-EMI/EMC: Level 3

-FIPS Approved algorithms: DSA; SHA-1; Skipjack

-Other algorithms: KEA

Multi-chip standalone

5 SPYRUS, Inc.
2355 Oakland Road
Suite 1
San Jose, CA 95131
USA

-Tom Dickens
TEL: 408-953-0700
FAX: 408-953-9835

CST Lab: NVLAP 200002-0

FORTEZZA Crypto Card, v0.2

Validated to FIPS 140-1

Security Policy

Hardware 02/07/1997 Overall Level: 2 

-FIPS Approved algorithms: DSA; SHA-1; Skipjack

-Other algorithms: KEA

Multi-chip standalone

"SPYRUS's FORTEZZA is a PC Card that is used to provide cryptographic services."
4 National Semiconductor Corporation
(This cryptomodule and NSC's Fortezza business unit have been discontinued.)

CST Lab: NVLAP 100432-0

Fortezza PCMCIA Encryption Module
(Part Number: 990010947-200)

Validated to FIPS 140-1

Security Policy

Hardware 10/24/1996 Overall Level: 2 

-FIPS Approved algorithms: DSA; SHA-1; Skipjack

-Other algorithms: KEA

Multi-chip standalone

3 Entrust, Inc.
1000 Innovation Drive
Ottawa, Ontario K2K 3E7
Canada

-Entrust Sales

CST Lab: NVLAP 200017-0

Entrust Cryptographic Kernel, V2.4
(When operated in FIPS mode. For use with PCs)

Validated to FIPS 140-1

Security Policy

Software 09/17/1996;
07/18/2002;
05/28/2014
Overall Level: 1 

-FIPS Approved algorithms: DSA; SHA-1

-Other algorithms: DES; MD5; MD2; RSA; CAST; CAST3

Multi-chip standalone

"This module is used in the Entrust family of products."
2 Motorola, Inc.
Secure Design Center
IL02 Room 0509A
1301 East Algonquin Rd
Schaumburg, IL 60196
USA

-Geoff Hobar
TEL: 847-576-9066
FAX: 847-538-2770

CST Lab: NVLAP 100432-0

ASTRO Subscriber Encryption Module
(For ASTRO Radio Product Family: NTN7771D, NTN7772D, NTN7332D, NTN7331D)

Revoked
DES Transition Ended

Security Policy

Hardware 01/19/1996 Overall Level: 1 

-FIPS Approved algorithms:

-Other algorithms: DES; Motorola DVP

Multi-chip embedded

"This module is used in the ASTRO Radio Product Family."
1 Entrust, Inc.
1000 Innovation Drive
Ottawa, Ontario K2K 3E7
Canada

-Entrust Sales

CST Lab: NVLAP 200017-0

Entrust Cryptographic Kernel, V1.9
(For use with PCs)

Validated to FIPS 140-1

Security Policy

Software 10/12/1995;
07/18/2002;
05/28/2014
Overall Level: 1 

-FIPS Approved algorithms: DSA

-Other algorithms: DES; CAST; RSA; MD5; MD2

Multi-chip standalone

"This module is used in the Entrust family of products."


Need Assistance?