Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #1739

Details

Module Name
MiniHSM [1], MiniHSM for nShield Edge [2] and MiniHSM for Time Stamp Master Clock [3]
Standard
FIPS 140-2
Status
Historical
 Historical Reason
Moved to historical list in accordance with SP800-131A Revision 1 Transition (AES/TDES key wrapping)
Overall Level
3
Caveat
When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
Module Type
Hardware
Embodiment
Multi-chip embedded
Description
The MiniHSM, MiniHSM for nShield Edge and MiniHSM for Time Stamp Master Clock are fully featured HSMs supplied in a single chip package. The MiniHSM Modules offer all the security and key management features of other nShield modules - but with reduced processing speed. The MiniHSM modules are OEM parts and will be included within other appliances or products, for example switches or routers. The MiniHSM modules have a real time clock which also makes them suitable for use as a time-stamping engine.
Approved Algorithms
AES Cert. #1770
CVL Cert. #6
DRBG Cert. #120
DSA Cert. #553
ECDSA Cert. #238
HMAC Cert. #1039
RSA Cert. #886
SHS Cert. #1554
Triple-DES Cert. #1146
Triple-DES MAC Triple-DES Cert. #1146, vendor affirmed
Other Algorithms
ARC4; Aria; Camellia; CAST-6; DES; MD5; SEED; HMAC-MD5; HMAC-Tiger; HMAC-RIPEMD160; RIPEMD-160; Tiger; El-Gamal; KCDSA; HAS-160; AES (Cert. #1579, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Triple-DES (Cert. #1035, key wrapping; key establishment methodology provides 112 bits of encryption strengh; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Diffie-Hellman (CVL Cert. #1, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strengh; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #1, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strengh; non-compliant less than 112 bits of encryption strength); ECMQV (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strengh; non-compliant less than 112 bits of encryption strength)
Hardware Versions
nC4031Z-10 [1], nC4031U-10 [2] and TSMC200 [3], Build Standard N
Firmware Versions
2.50.17-3, 2.51.10-3, 2.50.35-3 and 2.55.1-3

Vendor

nCipher Security Limited
One Station Square
Suite 710
Cambridge, FL CB1 2GA
United Kingdom

sales@ncipher.com
sales@ncipher.com

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
6/25/2012 Initial DXC Technology
8/16/2013 Update DXC Technology
10/25/2013 Update DXC Technology
10/28/2015 Update DXC Technology
1/29/2020 Update Lightship Security, Inc.