Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: Level 3
- EMI/EMC: Level 3
Embodiment
Multi-chip standalone
Description
The Luna PCM cryptographic module is a multi-chip standalone hardware cryptographic module in the form of a PCMCIA card that typically resides within a custom computing or secure communications appliance. It is contained in its own secure enclosure that provides physical resistance to tampering. The module provides secure key generation and storage for symmetric keys and asymmetric key pairs along with symmetric and asymmetric cryptographic services. Access to key material and cryptographic services for users and user application software is provided indirectly through the host appliance.
Approved Algorithms
AES |
Cert. #508 |
DSA |
Cert. #210 |
ECDSA |
Cert. #51 |
HMAC |
Cert. #261 |
RNG |
Cert. #287 |
RSA |
Cert. #223 |
SHS |
Cert. #579 |
Triple-DES |
Cert. #518 |
Triple-DES MAC |
Triple-DES Cert. #518, vendor affirmed |
Other Algorithms
DES; AES MAC (AES Cert. #508; non-compliant); RC2; RC4; RC5; CAST; CAST 3; CAST 5; MD2; MD5; HAS-160; HMAC-MD5; KCDSA, RSA (encrypt/decrypt); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption strength; non-compliant)
Hardware Versions
LTK-02-0301 and LTK-02-0501