Module Name
EXP1000 Hardware Security Module
Caveat
When operated in FIPS mode
Embodiment
Multi-Chip Embedded
Description
The EXP1000 Hardware Security Module (HSM) is a multi-chip embedded cryptographic module that provides secure data storage and crypto-processing functionality. The module is assembled from production quality components. All sensitive components of the module are physically protected by a tamper resistant, responsive, and evident casing where all cryptographic operations are performed.
Approved Algorithms
| AES |
Certs. #C1991 and #C1992 |
| CKG |
vendor affirmed |
| CVL |
Cert. #C1991 |
| DRBG |
Cert. #C1991 |
| ECDSA |
Cert. #C1991 |
| HMAC |
Cert. #C1991 |
| KAS-SSC |
vendor affirmed |
| KBKDF |
Cert. #C1992 |
| KDA |
vendor affirmed |
| KTS |
AES Cert. #C1992; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
AES Cert. #C1991 and AES Cert. #C1991; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
AES Cert. #C1991 and HMAC Cert. #C1991; key establishment methodology provides between 128 and 256 bits of encryption strength |
| RSA |
Cert. #C1991 |
| SHS |
Cert. #C1991 |
Allowed Algorithms
MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
P/Ns 9850-0365 Rev10, 9800-2082 Rev 10, 9800-2082 Rev 10A, 9800-2082 Rev 10B, 9800-2082 Rev 10C, 9800-2082 Rev 10D, 9800-2082 Rev 10E, 9800-2082 Rev 11 and 9800-2082 Rev 11A
Firmware Versions
7.0.0.3
