Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #3164

Details

Module Name
IBM 4767 Cryptographic Coprocessor Security Module
Standard
FIPS 140-2
Status
Active
Sunset Date
4/3/2023
Validation Dates
4/4/2018
4/17/2018
6/12/2018
Overall Level
4
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Embedded
Description
The IBM 4767 PCIe Cryptographic Coprocessor Hardware Security Module is in the form of a programmable PCIe card that offloads computationally intensive cryptographic processes from the hosting server, and performs sensitive tasks within a secured tamper responding hardware boundary. This evolutionary design builds on previous generations of IBM cryptographic technology, improving performance over its predecessors. The IBM 4767 is supported on select IBM Z processors as the Crypto Express5S feature and on select x86 systems and Power servers.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #4814 and #4815
CKG vendor affirmed
CVL Certs. #1486 and #1487
DRBG Certs. #1674 and #1675
ECDSA Certs. #1214 and #1215
SHS Certs. #3956 and #3957
Allowed Algorithms
NDRNG
Hardware Versions
4767-001, P/N: 00LU348 POST0 v0110 MB0 v0102 and 4767-002, P/N: 00LV498 POST0 v0123 MB0 v0121
Firmware Versions
5.3.19 P0130 M0130 P0130 F0D01 (E2157B6F)

Vendor

IBM Corporation
1 New Orchard Road
Armonk, NY 10504-1722
USA

Thomas Morris, Jr
tmorrisj@us.ibm.com
Phone: 845-435-5538
William Santiago
wsf1@us.ibm.com
Phone: 845-435-9265

Lab

UL VERIFICATION SERVICES INC
NVLAP Code: 100432-0