CMVP Main Page

Validated FIPS 140-1 and FIPS 140-2 Cryptographic Modules

Historical, 1995-1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017
All

Last Updated: 3/29/2017

It is important to note that the items on this list are cryptographic modules. A module may either be an embedded component of a product or application, or a complete product in-and-of-itself. If the cryptographic module is a component of a larger product or application, one should contact the product or application vendor in order to determine how the product utilizes the embedded validated cryptographic module. There may be a larger number of security products or applications available which use an embedded validated cryptographic module, than the number of modules which are found in this list. In addition, other vendors, who are not found in this list, may incorporate a validated cryptographic module from this list embedded into their own products.

When selecting a module from a vendor, verify that the module is either the product or application itself (e.g. VPN, SmartCard, USB memory token, etc.) or the module is embedded in a larger product or application (e.g. toolkit, etc.). If the module is embedded in a product or application, ask the product or application vendor to provide a signed letter or statement affirming that the unmodified validated cryptographic module is integrated in the solution; the module provides all the cryptographic services in the solution; and provide reference to the modules validation certificate number from this listing.

NOTE1: Module descriptions are provided by the module vendors and have not been verified for accuracy by the CMVP. The descriptions do not imply endorsement by the U.S. or Canadian Governments or NIST. Additionally, the descriptions may not necessarily reflect the capabilities of the modules when operated in the FIPS-Approved mode. The algorithms, protocols, and cryptographic functions listed as "other algorithms" (e.g. allowed or non-FIPS-Approved algorithms) have not been tested through the CMVP.

NOTE2: The operator of a cryptographic module is responsible for ensuring that the algorithms and key lengths are in compliance with the requirements of NIST SP 800-131A.

NOTE3: All questions regarding the implementation and/or use of any module located on the CMVP module validation lists should first be directed to the appropriate vendor point-of-contact (listed for each entry).

Please contact the CMVP if any errors are discovered or comments with suggestions for improvement of the validation listings.

Cert#Vendor / CST LabCryptographic ModuleModule
Type
Validation
Date
Sunset
Date
Level / Description
1639Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

Global Certification Team

CST Lab: NVLAP 200427-0
Cisco 5940 Embedded Services Routers
(Hardware Versions: Cisco 5940 ESR air-cooled card and Cisco 5940 ESR conduction-cooled card; Firmware Version: 15.2(3)GC)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware11/16/2011
02/23/2012
07/18/2012
02/08/2013
2/7/2018Overall Level: 1

-Design Assurance: Level 2

-FIPS Approved algorithms: AES (Certs. #962, #1535 and #1643); DRBG (Cert. #89); HMAC (Certs. #537 and #965); RSA (Cert. #811); SHS (Certs. #933 and #1444); Triple-DES (Certs. #757 and #1073)

-Other algorithms: DES; DES MAC; HMAC-MD5; MD4; MD5; RC4; Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); GDOI (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)

Multi-chip embedded

"The Cisco 5940 is a high-performance, ruggedized router. With onboard hardware encryption, the Cisco 5940 offloads encryption processing from the router to provide highly secure yet scalable video, voice, and data services for mobile and embedded outdoor networks. The Cisco 5940 Embedded Services Routers provide a scalable, secure, manageable remote access server that meets FIPS 140-2 Level 1 requirements. The Cisco 5940 Router Card uses industrial-grade components and is optimized for harsh environments that require Cisco IOS Software routing technology."
1636Seagate Technology LLC
1280 Disc Drive
Shakopee, MN 55379
USA

David R Kaiser, PMP
TEL: 952-402-2356
FAX: 952-402-1273

CST Lab: NVLAP 200427-0
Seagate Secure Constellation® ES [24-34] and Constellation®.2 [1-23] Self-Encrypting Drives FIPS 140 Module
(Hardware Versions: 9XU268 [1, 6, 18, 19], 9XU268-251 [2, 7, 9, 11, 14, 16, 20], 9XU268-257 [3, 8, 10, 12, 13, 15, 17, 21], 9XU268-047 [4], 9XU268-090 [5], 9XU264 [1, 6, 18, 19], 9XU264-251 [2, 7, 9, 11, 14, 16, 20], 9XU264-257 [3, 8, 10, 12, 13, 15, 17, 21], 9XU264-047 [4], 9XU264-090 [5], 9XU168 [22, 23], 9XU164 [22, 23], 9XU162 [22, 23], 1AV268 [24, 26, 32], 1AV264 [24, 26, 32], 1AV264-257 [25, 28, 30], 1AV264-251 [27, 29, 31], 1AV262 [24, 26, 32], 1AV168 [33, 34], 1AV164 [33, 34] and 1AV162 [33, 34]; Firmware Versions: A002 [1], ASF2 [2], ANF1 [3], NS01 [4], QF70 [5], 0003 [6, 23, 32], ASF5 [7], AEF3 [8], ASF8 [9], AEF5 [10], ASF9 [11], AEF6 [12], AEF7 [13], ASFC [14], AEFB [15], ASFD [16], AEFC [17], 0004 [18], 0005 [19], ASFE [20], AEFD [21], 0002 [22, 26, 34], A001 [24, 33], PNF0 [25], PSF1 [27], PEF3 [28], PSF4 [29], PEF4 [30], and PSF5 [31])
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware11/10/2011
03/14/2012
06/21/2012
10/17/2012
12/12/2012
01/25/2013
02/20/2014
09/26/2014
10/23/2014
11/14/2016
11/13/2021Overall Level: 2

-EMI/EMC: Level 3

-FIPS Approved algorithms: AES (Certs. #1416, #1417 and #1343); DRBG (Cert. #62); RSA (Cert. #650); SHS (Cert. #1225)

-Other algorithms: N/A

Multi-chip embedded

"The Seagate Secure Enterprise Self-Encrypting Drives FIPS 140 Module is embodied in Seagate Constellation®.2 and Constellation® ES SED model disk drives. These products meet the performance requirements of the most demanding Enterprise applications. The cryptographic module (CM) provides a wide range of cryptographic services using FIPS approved algorithms. Services include hardware-based data encryption, instantaneous user data disposal with cryptographic erase, independently controlled and protected user data LBA bands and authenticated FW download."
1635Seagate Technology LLC
1280 Disc Drive
Shakopee, MN 55379
USA

David R Kaiser, PMP
TEL: 952-402-2356
FAX: 952-402-1273

CST Lab: NVLAP 200427-0
Seagate Secure Constellation® ES.2 [41-68], Savvio® 10K.5 [1-26] and Savvio® 15K.3 [27-40] Self-Encrypting Drives FIPS 140 Module
(Hardware Versions: 9XS066 [1, 7, 21], 9XS066-251 [2, 8, 13, 16, 20], 9XS066-257 [3, 9, 14, 17, 18], 9XS066-047 [4], 9XS066-090 [5, 11, 22, 23], 9XS066-031 [10, 19], 9XS066-037 [10, 19], 9XS066-046 [12], 9XR066 [1, 7, 21], 9XR066-251 [2, 8, 13, 16, 20], 9XR066-257 [3, 9, 14, 17, 18], 9XR066-047 [4], 9XR066-090 [5, 11, 22, 23], 9XR066-038 [6, 15, 24, 25, 26], 9XR066-046 [12], 9XP066 [1, 7, 21], 9XP066-047 [4], 9XP066-090 [5, 11, 22, 23], 9XP066-046 [12], 9XN066 [1, 7, 21], 9XN066-251 [2, 8, 13, 16, 20], 9XN066-257 [3, 9, 14, 17, 18], 9XN066-047 [4], 9XN066-090 [5, 11, 22, 23], 9XN066-046 [12], 9XM066 [27, 30, 40], 9XM066-251 [28, 31, 33, 35, 37, 39], 9XM066-257 [29, 32, 34, 37, 38], 9XL066 [27, 30, 40], 9XL066-251 [28, 31, 33, 35, 37, 39], 9XL066-257 [29, 32, 34, 37, 38], 9XT260 [41, 47, 59, 64, 65, 66], 9XT260-251 [42, 48, 52, 55, 60, 61, 62], 9XT260-257 [43, 49, 53, 55, 57, 63], 9XT260-038 [44, 54], 9XT260-047 [45], 9XT260-090 [46], 9XT260-031 [50, 58], 9XT260-037 [50, 58], 9XT260-046 [51], 9XT267 [47, 59, 64, 65], 9XT160 [67, 68]; Firmware Versions: A002 [1, 27], CSF2 [2], CNF1 [3], NS03 [4], HF72 [5], NA00 [6, 54], 0003 [7, 30, 64], CSF4 [8], CEF3 [9], CE01 [10], HF75 [11], 6E01 [12], CSF7 [13], CEF4 [14], F740 [15], CSF8 [16], CEF5 [17], CEF6 [18], CE06 [19], CSFA[20], 0004 [21, 40, 65], HF7C [22], HF7D [23], NA01 [24], NA04 [25], F744 [26], YSF3 [28], YNF2 [29], YSF5 [31], YEF4 [32], YSF8 [33], YEF5 [34], YSF9 [35], YEF6 [36], YSFB [37], YEF9 [38], YSFC [39], 0002 [41], RSF3 [42], RNF3 [43], NQE1 [44], NS01 [45], NF72 [46], 0005 [47], RSF5 [48], REF5 [49], YE01 [50], 6EA1 [51], RSF8 [52], REF6 [53], RSFA [55], REF7 [56], REF8 [57], YE04 [58], 0006 [59], RSFC [60], RSFD [61], RSFE [62], REFB [63], A006[66], F000 [67] and F003 [68])
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware11/10/2011
11/17/2011
03/14/2012
06/21/2012
10/17/2012
12/12/2012
01/25/2013
10/18/2013
02/20/2014
06/05/2014
09/26/2014
10/23/2014
12/10/2015
04/04/2016
4/3/2021Overall Level: 2

-EMI/EMC: Level 3

-FIPS Approved algorithms: AES (Certs. #1416, #1417 and #1343); DRBG (Cert. #62); SHS (Cert. #1225); RSA (Cert. #650)

-Other algorithms: N/A

Multi-chip embedded

"The Seagate Secure Enterprise Self-Encrypting Drives FIPS 140 Module 2 is embodied in Seagate Constellation® ES.2, Savvio® 15K.3, and Savvio® 10K.5 SED model disk drives. These products meet the performance requirements of the most demanding Enterprise applications. The cryptographic module (CM) provides a wide range of cryptographic services using FIPS approved algorithms. Services include hardware-based data encryption, instantaneous user data disposal with cryptographic erase, independently controlled and protected user data LBA bands and authenticated FW download."
1627Communication Devices, Inc.
#1 Forstmann Court
Clifton, NJ 07011
USA

Donald Snook
TEL: 973-334-1980

CST Lab: NVLAP 200002-0
Port Authority Series
(Hardware Versions: PA111-SA CDI 01-03-0912I, PA111-RM CDI 01-03-0912I, PA155-RM CDI 01-03-0912I and PA199-RM CDI 01-03-0912I; Firmware Version: 10.05.10)
(When operated in FIPS mode. The protocols SSH and SNMP shall not be used when operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware11/01/2011
08/24/2016
8/23/2021Overall Level: 2

-Roles, Services, and Authentication: Level 3

-FIPS Approved algorithms: AES (Cert. #3846); SHS (Cert. #3169); HMAC (Cert. #2495); DRBG (Cert. #1090); KTS (AES Cert. #3846 and HMAC Cert. #2495)

-Other algorithms: NDRNG; SNMP KDF (non-compliant); SSH KDF (non-compliant); Triple-DES (non-compliant);

Multi-chip standalone

"Secure Out of Band Management appliance with network port, internal modem, and up to 9 serial ports. Allows Secure Out of Band Access to Firewalls, Routers, Network appliances etc.. Supports up to 256 bit AES CFB encryption."
1621Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

Global Certification Team

CST Lab: NVLAP 200427-0
Cisco 7606-S and 7609-S Routers with Supervisor SUP720-3B
(Hardware Versions: 7606-S and 7609-S with SUP720-3B; Firmware Version: 15.1(3)S5)
(When operated in FIPS mode with the tamper evident labels and opacity shields installed as indicated in the Security Policy)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware10/28/2011
02/09/2012
02/23/2012
07/09/2012
08/16/2013
8/15/2018Overall Level: 2

-Roles, Services, and Authentication: Level 3

-FIPS Approved algorithms: AES (Cert. #1634); DRBG (Cert. #88); HMAC (Cert. #961); RSA (Cert. #808); SHS (Cert. #1439); Triple-DES (Cert. #1070)

-Other algorithms: Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 156 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; DES MAC; HMAC MD5; MD4; MD5; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)

Multi-chip standalone

"The Cisco 7606-S and 7609-S routers are designed for deployment at the network edge, where robust performance and IP/Multiprotocol Label Switching services are necessary to meet the requirements of both enterprises and service providers. It enables Carrier Ethernet service providers to deploy an advanced network infrastructure that supports a range of IP video and triple-play (voice, video, and data) system applications in both the residential and business services markets. They also deliver WAN and metropolitan-area network networking solutions at the enterprise edge."
1614Mocana Corporation
350 Sansome Street
Suite 1010
San Francisco, CA 94104
USA

James Blaisdell
TEL: 415-617-0055
FAX: 415-617-0056

CST Lab: NVLAP 100432-0
Mocana Cryptographic Suite B Module
(Software Version: 5.4f)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Software09/30/2011
10/26/2011
11/08/2011
04/12/2016
4/11/2021Overall Level: 1

-Tested Configuration(s): Tested as meeting Level 1 with Vx Works 6.7
Android 2.2
VxWorks 5.5
VxWorks 6.2
VxWorks 6.4
WindRiver 4.0 using Linux 2.6.34 (single-user mode)

-FIPS Approved algorithms: AES (Certs. #1505, #1506, #1507, #1509 and #1510); Triple-DES (Cert. #1006); SHS (Cert. #1353); HMAC (Cert. #885); RSA (Cert. #738); DSA (Cert. #472); ECDSA (Cert. #187); DRBG (Cert. #64)

-Other algorithms: Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; Blowfish; ARC2; ARC4; MD2; MD4; MD5; HMAC-MD5; AES EAX (non-compliant); AES XCBC (non-compliant); RSA (encrypt/decrypt); RNG; Dual EC DRBG

Multi-chip standalone

"The Mocana Cryptographic Suite B Module is the engine of Mocana's Device Security Framework - a software framework that secures all aspects of a system. The Device Security Framework helps applications and device designers reduce development costs and dramatically enhance cryptographic performance. For details see www.mocana.com."
1607Verdasys, Inc.
404 Wyman St.
Suite 320
Waltham, MA 02451
USA

Harvey Morrison
TEL: 781-788-8180

CST Lab: NVLAP 200002-0
Verdasys Secure Cryptographic Module
(Software Version: 1.0)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy

Vendor Product Link
Software09/26/2011
08/24/2012
8/23/2017Overall Level: 1

-Tested Configuration(s): Tested as meeting Level 1 with Windows XP 32-bit
Windows XP 64-bit (single-user mode)

-FIPS Approved algorithms: AES (Cert. #1384); SHS (Cert. #1261); DRBG (Cert. #50); HMAC (Cert. #814); RSA (Cert. #677)

-Other algorithms: RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RNG (non-compliant)

Multi-chip standalone

"The Verdasys FIPS Kernel Mode Cryptographic Module, VSEC.SYS, is a software module that provides cryptographic services for Digital Guardian's server and endpoint products. The Verdasys FIPS Kernel Mode Cryptographic Module is leveraged in a variety of functions including securing communication, protecting agent components, and file encryption."
1592Harris Corporation
221 Jefferson Ridge Parkway
Lynchburg, VA 24501
USA

Brian Justice
TEL: 434-455-9586

Joyce O'Quinn
TEL: 434-455-6458

CST Lab: NVLAP 200427-0
Harris Unified Audio Card
(Hardware Version: EA-103168-002; Firmware Versions: MPC 860: SK-007765-007 v R03A08, DSP: SK-007765-013 v R03A05, Boot Loader / Factory Test: R03A02, Low Level Boot: R01D01 and DSP Factory Test: R01D02)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware08/22/2011
04/13/2016
4/12/2021Overall Level: 1

-FIPS Approved algorithms: AES (Certs. #1652 and #1653); HMAC (Cert. #970); SHS (Cert. #1450)

-Other algorithms: AES MAC (AES Cert. #1653, vendor affirmed; P25 AES OTAR); RNG

Multi-chip embedded

"The Harris UAC is a multi-channel analog audio gateway used to interface analog radio communication equipment such as conventional base stations to radio systems and other devices on a Voice Interoperability Data Access (VIDA) network."
1579Certicom Corp.
4701 Tahoe Blvd.,
Building A
Mississauga, Ontario L4W 0B5
Canada

Certicom Support
TEL: 905-507-4220

Certicom Sales
TEL: 905-507-4220

CST Lab: NVLAP 200426-0
Security Builder FIPS Module
(Software Versions: 5.6, 5.6.1 or 5.6.2)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Software07/21/2011
06/05/2012
08/16/2012
03/13/2015
01/26/2016
07/05/2016
7/4/2021Overall Level: 1

-Tested Configuration(s): Tested as meeting Level 1 with QNX Neutrino Version 6.6
QNX Neutrino Version 6.5 (single-user mode)

-FIPS Approved algorithms: Triple-DES (Cert. #1054); AES (Cert. #1609); SHS (Cert. #1422); HMAC (Cert. #945); DRBG (Cert. #82); DSA (Cert. #500); ECDSA (Cert. #200); RSA (Cert. #791); KAS (Cert. #14; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112-bits of encryption strength); KTS (AES Cert. #1609; key establishment methodology provides between 128 and 256 bits of encryption strength)

-Other algorithms: DES; DESX; AES CCM* (non-compliant); ARC2; ARC4; MD2; MD4; MD5; HMAC-MD5; ECNR; ECQV; ECIES; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RNG; DRBG (non-compliant)

Multi-chip standalone

"The Security Builder FIPS Module is a standards-based cryptographic toolkit that supports optimized Elliptic Curve Cryptography and provides application developers with sophisticated tools to flexibly integrate encryption, digital signatures and other security mechanisms into both mobile and server-based applications. The Security Builder FIPS Module is part of the Certicom Security Architecture, a comprehensive cross-platform security solution which supports multiple cryptographic software and hardware providers with a single common API."
1578BlackBerry
295 Phillip Street
Waterloo, Ontario N2L 3W8
Canada

Security Certifications Team
TEL: 519-888-7465 x 72921
FAX: (519) 888-9852

CST Lab: NVLAP 200426-0
BlackBerry OS Cryptographic Library
(Software Versions: 5.6, 5.6.1 or 5.6.2)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy

Vendor Product Link
Software07/21/2011
06/05/2012
08/16/2012
01/24/2013
02/22/2013
04/11/2014
01/24/2016
06/21/2016
6/20/2021Overall Level: 1

-Tested Configuration(s): Tested as meeting Level 1 with BlackBerry® Tablet OS Version 2.0 (Binary compatible to BlackBerry® Tablet OS Version 1.0) (single-user mode)

-FIPS Approved algorithms: Triple-DES (Cert. #1053); AES (Cert. #1608); SHS (Cert. #1421); HMAC (Cert. #944); DRBG (Cert. #81); DSA (Cert. #499); ECDSA (Cert. #199); RSA (Cert. #790); KAS (Cert. #13; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112-bits of encryption strength); KTS (AES Cert. #1608; key establishment methodology provides between 128 and 256 bits of encryption strength)

-Other algorithms: DES; DESX; AES CCM* (non-compliant); ARC2; ARC4; MD2; MD4; MD5; HMAC-MD5; ECNR; ECQV; ECIES; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RNG; DRBG (non-compliant)

Multi-chip standalone

"The BlackBerry OS Cryptographic Library is a software module that provides the cryptographic functionality required for secure operation of the BlackBerry® PlayBook™ and devices running the BlackBerry® 10 OS ."
1577Futurex
864 Old Boerne Rd.
Bulverde, TX 78163
USA

Paul Enman
TEL: 830-980-9782
FAX: 830-438-8782

CST Lab: NVLAP 100432-0
EXP9000 Hardware Security Module
(Hardware Versions: P/N 9750-2075, Revision B; Firmware Version: 4.2.0)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware08/05/2011
02/01/2017
1/31/2022Overall Level: 3

-FIPS Approved algorithms: AES (Cert. #1636); DRBG (Cert. #1243); HMAC (Cert. #962); RSA (Certs. #810 and #2331); SHS (Cert. #1441); Triple-DES (Cert. #1072)

-Other algorithms: MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength); DES; TR-31

Multi-chip embedded

"The EXP9000 cryptographic module provides secure encryption, storage, and transmission of sensitive data used in a wide variety of applications including Futurex Hardware Security Modules (HSM) and Key Management Servers (KMS)."
1543CareFusion
10020 Pacific Mesa Blvd.
San Diego, CA 92121
USA

Tom Miller
TEL: 858-617-2000

CST Lab: NVLAP 100432-0
Alaris™ PC Unit Model 8015
(Hardware Version: Model 8015 a/b/g or Model 8015 a/b/g/n with FIPS Kit 11935165; Firmware Versions: 9.7.40, 9.12.40, 9.17.1, 9.19 or 9.19.1)
(When operated in FIPS mode with tamper evident seals installed as indicated in the Security Policy)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware05/27/2011
01/11/2012
09/27/2012
06/05/2014
02/13/2015
07/23/2015
08/07/2015
06/07/2016
6/6/2021Overall Level: 2

-Cryptographic Module Specification: Level 3
-Design Assurance: Level 3

-FIPS Approved algorithms: AES (1) (Cert. #1436); SHS (Cert. #1301)

-Other algorithms: AES (2) (non-compliant); RC4; MD5; SHS (non-compliant); RIPEMD; DES; Triple-DES (non-compliant); RC2-CBC, RC2-ECB, RC2-CFB64, RC2-OFB64; Blowfish; CAST; RSA (non-compliant); DSA (non-compliant); Diffie-Hellman; RNG (non-compliant)

Multi-chip standalone

"The CareFusion Alaris™ PC Unit Model 8015 is a point-of-care unit, which is the main component of the Alaris System. The Alaris System is a modular system intended for adult, pediatric, and neonatal care in a professional healthcare environment. The Alaris System brings a higher level of medication error prevention to the point of patient care."
15413e Technologies International, Inc.
9715 Key West Ave,
Suite 500
Rockville, MD 20850
USA

Harinder Sood
TEL: 301-944-1325
FAX: 301-670-6779

CST Lab: NVLAP 200427-0
3e-523-3 Secure Multi-function Wireless Data Point
(Hardware Version: 2.0(a); Firmware Version: 4.5)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware04/29/2011
08/12/2016
8/11/2021Overall Level: 2

-Cryptographic Module Ports and Interfaces: Level 3
-Roles, Services, and Authentication: Level 3
-Design Assurance: Level 3
-Mitigation of Other Attacks: N/A
-Tested Configuration(s): N/A

-FIPS Approved algorithms: AES (Certs. #1021, #1022 and #1023); HMAC (Certs. #570, #571 and #572); DRBG (Cert. #1136); RSA (Cert. #490); SHS (Certs. #975, #976 and #977); KTS (AES Cert. #1021 and HMAC Cert. #570; key establishment methodology provides between 128 and 256 bits of encryption strength)

-Other algorithms: RSA (key wrapping, key establishment methodology provides 112 bits of encryption strength); MD5; NDRNG; RC4; WEP

Multi-Chip Embedded

"The 3e-523-3 operates as either a gateway connecting a local area network to wide area network (WAN), an access point within a wireless local area network (WLAN), a client within a WLAN, or a wireless bridging device. 3eTI software provides the following major services in FIPS mode: Wireless 802.11a/b/g Access Point functionality; Wireless 802.11a/b/g Client functionality; Wireless 802.11a/b/g Bridge functionality; Wireless 802.11a/b/g Mesh functionality (auto-forming, self-healing wireless capability); IEEE 802.11i."
1530

CST Lab: NVLAP 200802-0


Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware04/04/2011
10/10/2012
05/13/2013
12/13/2013
07/11/2014
03/20/2015
07/24/2015
08/13/2015
09/28/2015
11/18/2015
03/18/2016
3/17/2021Overall Level: 2

Multi-chip standalone
1504DataLocker Inc.
7007 College Blvd Suite 240
Overland Park, KS 66211
USA

Jay Kim
TEL: 913-310-9088

CST Lab: NVLAP 200658-0
DataLocker Enterprise, V2.0 (DataLocker DL2)
(Hardware Versions: P/Ns DL500E2 and DL1000E2; Firmware Version: 2.30)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware02/24/2011
03/01/2011
06/10/2016
07/05/2016
7/4/2021Overall Level: 1

-Roles, Services, and Authentication: Level 2
-EMI/EMC: Level 3

-FIPS Approved algorithms: AES (Cert. #250)

-Other algorithms: N/A

Multi-chip standalone

"The DataLocker Enterprise (also named DataLocker DL2) is a fully platform independent, portable encrypted hard drive. Compatible with MAC, Windows and Linux systems, the DataLocker operates without any host based software or drivers. It utilizes an embedded LCD touch screen interface for all authentication and administrative functions. The device is fully 256bit AES CBC Mode encrypted via a dedicated crypto engine."
1497Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

Global Certification Team

CST Lab: NVLAP 200427-0
Cisco Secure Access Control Server (ACS) FIPS module (NSS)
(Software Versions: 3.12.5 and 3.12.5.1)
(When operated in FIPS mode)

Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Software02/10/2011
02/23/2012
04/05/2013
4/4/2018Overall Level: 1

-Tested Configuration(s): Tested as meeting Level 1 with Cisco CARS 1.2.0.182 (single-user mode)

-FIPS Approved algorithms: AES (Cert. #1475); DRBG (Cert. #59); DSA (Cert. #466); HMAC (Cert. #868); RSA (Cert. #722); SHS (Cert. #1334); Triple-DES (Cert. #993)

-Other algorithms: Camellia; DES; Diffie-Hellman; EC Diffie-Hellman; MD2; MD5; RC2; RC4; SEED

Multi-chip standalone

"The Cisco Secure Access Control Server (ACS) FIPS module (NSS) Version 3.12.5 is a software cryptographic library that provides cryptographic services to the Cisco Access Control Server (ACS) application. The Cisco ACS FIPS module (NSS) is a general-purpose cryptographic library, with an API based on the industry standard PKCS #11 version 2.20."
1495

CST Lab: NVLAP 100432-0


Validated to FIPS 140-2
Consolidated Validation Certificate

Security Policy
Hardware02/28/2011
06/08/2012
10/15/2012
10/14/2017Overall Level: 2

Multi-chip standalone