Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #1197

Details

Module Name
nShield F3 6000e, nShield F3 1500e, nShield F3 500e, nShield F3 10e, nShield F3 6000e for nShield Connect, nShield F3 1500e for nShield Connect and nShield F3 500e for nShield Connect
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Overall Level
3
Caveat
When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
Module Type
Hardware
Embodiment
Multi-chip embedded
Description
The nCipher modules: nShield F3 6000e, Shield F3 1500e, nShield F3 500e, nShield 10e, nShield F3 6000e for nShield Connect, nShield F3 1500e for nShield Connect and nShield F3 500e for nShield Connect family of secure e-commerce HSM's are multi-tasking hardware modules that is optimized for performing modular arithmetic on very large integers. The nCipher modules are FIPS 140-2 level 3 embedded devices. The units are identical in operation and only vary in the processing speed.
Approved Algorithms
AES Certs. #994 and #397
AES GCM Cert. #994, vendor affirmed
DSA Cert. #341
ECDSA Cert. #121
HMAC Cert. #560
RNG Cert. #564
RSA Cert. #478
SHS Cert. #960
Triple-DES Certs. #775 and #435
Triple-DES MAC Triple-DES Cert. #775, vendor affirmed
Other Algorithms
ARC FOUR; Aria; Camellia; CAST 6; DES; MD5; SEED; HMAC-MD5, HMAC-Tiger, HMAC-RIPEMD160; RIPEMD 160; Tiger; El-Gamal; KCDSA; HAS 160; AES (Cert. #994, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Diffie-Hellman (key agreement; key establishment methodology provides between 112and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 192 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength), ECMQV (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); NDRNG; DSA (FIPS 186-3; non-compliant); ECDSA (FIPS 186-3; non-compliant)
Hardware Versions
nC4033E-6K0, nC4033E-1K5, nC4033E-500, nC4033E-030, nC4033E-6K0N, nC4033E-1K5N and nC4033E-500N, Build Standard N
Firmware Versions
2.38.4-3 and 2.38.7-3
Product URL
http://www.ncipher.com/en/Products/Hardware Security Modules/nShield.aspx

Vendor

Thales - nCipher
92 Montvale Ave
Suite 4500
Stoneham, MA 02180
USA

sales@ncipher.com
sales@ncipher.com
Phone: 800-NCIPHER
Fax: 781-994-4001

Related Files

Security Policy
Certificate

Validation History

Date Type Lab
10/6/2009 Initial DOMUS
12/8/2009 Update
2/17/2010 Update