Module Name
EXP1000 Hardware Security Module
Caveat
When operated in FIPS mode
Embodiment
Multi-Chip Embedded
Description
The EXP1000 Hardware Security Module (HSM) is a multi-chip embedded cryptographic module that provides secure data storage and crypto-processing functionality. The module is assembled from production quality components. All sensitive components of the module are physically protected by a tamper resistant, responsive, and evident casing where all cryptographic operations are performed.
Approved Algorithms
AES |
Certs. #C1991 and #C1992 |
CKG |
vendor affirmed |
CVL |
Cert. #C1991 |
DRBG |
Cert. #C1991 |
ECDSA |
Cert. #C1991 |
HMAC |
Cert. #C1991 |
KAS-SSC |
vendor affirmed |
KBKDF |
Cert. #C1992 |
KDA |
vendor affirmed |
KTS |
AES Cert. #C1992; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #C1991 and AES Cert. #C1991; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #C1991 and HMAC Cert. #C1991; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Cert. #C1991 |
SHS |
Cert. #C1991 |
Allowed Algorithms
MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
P/Ns 9850-0365 Rev10, 9800-2082 Rev 10, 9800-2082 Rev 10A, 9800-2082 Rev 10B, 9800-2082 Rev 10C, 9800-2082 Rev 10D, 9800-2082 Rev 10E, 9800-2082 Rev 11 and 9800-2082 Rev 11A
Firmware Versions
7.0.0.3