Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #3162

Details

Module Name
Network Security Platform Sensor NS9300 S
Standard
FIPS 140-2
Status
Active
Sunset Date
4/3/2023
Validation Dates
4/4/2018
5/1/2018
Overall Level
2
Caveat
When operated with the tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
Network Security Platform products (formerly known as IntruShield) are Intrusion Prevention Systems (IPS) that protect network infrastructures and endpoints from intrusions such as zero-day, DoS, spyware, VoIP, botnet, malware, phishing, and encrypted attacks with highly accurate, enterprise-class risk-aware intrusion prevention. The Network Security Management system manages the sensor deployments and permits the customer to receive real-time network status updates and alerts, implement customized security policies and incident response plans, and perform forensic analysis of attacks.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Cert. #4820
CKG vendor affirmed
CVL Cert. #1441
DRBG Cert. #1679
HMAC Cert. #3221
KTS AES Cert. #4820 and HMAC Cert. #3221; key establishment methodology provides 128 or 256 bits of encryption strength
RSA Certs. #2638 and #2639
SHS Certs. #3960 and #3962
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
P/Ns IPS-NS9300 S Version 1.30; FIPS Kit P/N IAC-FIPS-KT2
Firmware Versions
9.1.17.2

Vendor

McAfee, LLC
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

Mark Hanson
mark_hanson@mcafee.com
Phone: 972-963-7326
Fax: N/A

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0