Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program CMVP

Certificate #3596

Details

Module Name
Cryptographic Module for BIG-IP ®
Standard
FIPS 140-2
Status
Active
Sunset Date
1/8/2025
Validation Dates
01/09/2020;06/29/2020
Overall Level
1
Caveat
When operated in FIPS Mode
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
Cryptographic library offering various cryptographic mechanisms to BIG-IP Virtual Edition.
Tested Configuration(s)
  • BIG-IP 14.1.0.3 on Hyper-V 10.0 on Windows Server 2019 running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [1]
  • BIG-IP 14.1.0.3 on Hyper-V 10.0 on Windows Server 2019 running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [2]
  • BIG-IP 14.1.0.3 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [1]
  • BIG-IP 14.1.0.3 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [1]
  • BIG-IP 14.1.2 on Hyper-V 10.0 on Windows Server 2019 running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [2]
  • BIG-IP 14.1.2 on Hyper-V 10.0 on Windows Server 2019 running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [2]
  • BIG-IP 14.1.2 on KVM Centos 7.0 running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [2]
  • BIG-IP 14.1.2 on KVM Centos 7.0 running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [2] (single-user mode)
  • BIG-IP 14.1.2 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [2]
  • BIG-IP 14.1.2 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [2]
FIPS Algorithms
AES Certs. #C694 and #C695
CVL Cert. #C694
DRBG Certs. #C694 and #C695
ECDSA Cert. #C694
HMAC Certs. #C694 and #C695
KTS AES Certs. #694 and #C695; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Cert. #C694
SHS Certs. #C694 and #C695
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C694; shared secret computation provides 128 or 192 bits of encryption strength); NDRNG
Software Versions
14.1.0.3 [1] and 14.1.2 [2]

Vendor

F5 Networks
401 Elliott Avenue West
Seattle, WA 98119
USA

Maryrita Steinhour
m.steinhour@f5.com
Phone: 206-272-7351
Fax: n/a
Eric Raisters
E.Raisters@f5.com
Phone: 206-272-7580
Fax: n/a

Lab

ATSEC INFORMATION SECURITY CORP
NVLAP Code: 200658-0