Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #2850

Details

Module Name
NITROXIII CNN35XX-NFBE HSM Family
Standard
FIPS 140-2
Status
Historical
 Historical Reason
Moved to historical list due to sunsetting
Overall Level
3
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Embedded
Description
CNN35XX-NFBE HSM Family is a high performance purpose built solution for key management and crypto acceleration compliance to FIPS 140-2. The module supports flexible key store that can be partitioned up to 32 individually managed and isolated partitions. This is a SRIOV capable PCIe adapter and can be used in a virtualization environment to extend services like virtual key management, crypto and TLS offloads to VMs in dedicated I/O channels. This product is suitable for PKI vendors, SSL servers/load balancers.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Certs. #2033, #2034, #2035, #3205, #3206 and #4104
CVL Certs. #167 and #563
DRBG Cert. #680
DSA Cert. #916
ECDSA Cert. #589
HMAC Certs. #1233 and #2019
KAS Cert. #53
KAS SP 800-56B, vendor affirmed
KBKDF Cert. #65
KTS AES Certs. #3206 and #4104
KTS Triple-DES Cert. #2242; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #1634 and #2218
SHS Certs. #1780 and #2652
Triple-DES Certs. #1311 and #2242
Other Algorithms
MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength); PBE; RC4
Hardware Versions
P/Ns CNL3560P-NFBE-G [1], CNL3560P-NFBE-2.0-G [2], CNL3560-NFBE-G [1], CNL3530-NFBE-G [1], CNL3510-NFBE-G [1], CNL3510P-NFBE-G [1], CNN3560P-NFBE-G [1], CNN3560-NFBE-G [1], CNN3560-NFBE-2.0-G [2], CNN3530-NFBE-G [1], CNN3530-NFBE-2.0-G [2], CNN3510-NFBE-G [1], CNN3510-NFBE-2.0-G [2], CNN3505LP-NFBE-2.0-G [2] and CNN3510LP-NFBE-2.0-G [2]
Firmware Versions
CNN35XX-NFBE-FW-2.03 build 10 [1], CNN35XX-NFBE-FW-2.03 build 13 [1], CNN35XX-NFBE-FW-2.03 build 20 [1], CNN35XX-NFBE-FW-2.03 build 21 [1], CNN35XX-NFBE-FW-2.03 build 22 [1] and CNN35XX-NFBE-FW-2.03 build 13-HW2.0 [1, 2]

Vendor

Cavium Inc.
2315 N 1st Street
San Jose, CA 95131
USA

Phanikumar Kancharla
PhaniKumar.kancharla@cavium.com
Phone: 408-943-7496
Tejinder Singh
tejinder.Singh@cavium.com
Phone: 408-943-7403

Validation History

Date Type Lab
2/27/2017 Initial UL VERIFICATION SERVICES INC
2/28/2017 Update UL VERIFICATION SERVICES INC
4/4/2017 Update UL VERIFICATION SERVICES INC
8/4/2017 Update UL VERIFICATION SERVICES INC
8/31/2017 Update UL VERIFICATION SERVICES INC
11/9/2017 Update UL VERIFICATION SERVICES INC
2/21/2018 Update UL VERIFICATION SERVICES INC
3/15/2018 Update UL VERIFICATION SERVICES INC
3/26/2018 Update UL VERIFICATION SERVICES INC