Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #3387

Details

Module Name
NetApp CryptoMod
Standard
FIPS 140-2
Status
Active
Sunset Date
2/29/2024
Validation Dates
3/1/2019
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
NetApp CryptoMod will be integrated into NetApp ONTAP releases for the purpose of supporting FIPS 140-2 compliant data-at-rest encryption and key management.
Tested Configuration(s)
  • ONTAP 9.4 running on AFF A800 system with Intel Xeon Platinum 8160 with PAA
  • ONTAP 9.4 running on AFF A800 system with Intel Xeon Platinum 8160 without PAA
  • ONTAP 9.4 running on FAS2750 system with Intel Xeon D-1557 with PAA
  • ONTAP 9.4 running on FAS2750 system with Intel Xeon D-1557 without PAA (single-user mode)
FIPS Algorithms
AES Cert. #5917
CKG vendor affirmed
DRBG Cert. #2477
HMAC Cert. #3897
KTS AES Cert. #5917; key establishment methodology provides 256 bits of encryption strength
PBKDF vendor affirmed
SHS Cert. #4673
Allowed Algorithms
NDRNG
Software Versions
2.1

Vendor

NetApp, Inc.
495 East Java Drive
Fourth Floor
Sunnyvale, CA 94089
USA

Mike Scanlin
Michael.Scanlin@netapp.com
Phone: 919.476.8578
Fax: 919.476.4272

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0