Module Name
MiniHSM, MiniHSM for nShield Edge F2, and MiniHSM for Time Stamp Master Clock
Caveat
When operated in FIPS mode and initialized to Overall Level 2 per Security Policy. The protocol TLS shall not be used when operated in FIPS mode
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: Level 3
- EMI/EMC: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
The MiniHSM, MiniHSM for nShield Edge F2 and MiniHSM for Time Stamp Master Clock are fully featured HSMs supplied in a single chip package. The MiniHSM Modules offer all the security and key management features of other nShield modules - but with reduced processing speed. The MiniHSM modules are OEM parts and will be included within other appliances or products, for example switches or routers. The MiniHSM modules have a real time clock which also makes them suitable for use as a time-stamping engine.
Approved Algorithms
| AES |
Cert. #C754 |
| CVL |
Cert. #C754 |
| DRBG |
Cert. #C754 |
| DSA |
Cert. #C754 |
| ECDSA |
Cert. #C754 |
| HMAC |
Cert. #C754 |
| KBKDF |
Cert. #C754 |
| KTS |
AES Cert. #C754; key establishment methodology provides between 112 and 256 bits of encryption strength |
| KTS |
vendor affirmed |
| RSA |
Cert. #C754 |
| SHS |
Cert. #C754 |
| Triple-DES |
Cert. #C754 |
Allowed Algorithms
Diffie-Hellman (CVL Cert. #C754, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C754, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC MQV (CVL Cert. #C754, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG
Hardware Versions
nC4031Z-10, nC3021U-10, and TSMC200, Build Standard N
Firmware Versions
12.50.8
