Module Name
Cisco 2811 and Cisco 2821 Integrated Services Routers with AIM-VPN/EPII-Plus
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Embodiment
Multi-chip standalone
Description
The Cisco 2800 Series features the ability to deliver multiple high-quality simultaneous services at wire speeds up to multiple T1/E1/xDSL connections. The Cisco 2800 Series routers offer embedded encryption acceleration on the motherboard. For additional performance, the Cisco 2811 and 2821 routers feature the ability to optionally add encryption acceleration advanced integration modules (AIM-VPN/EPII-Plus).
Approved Algorithms
| AES |
Certs. #100, #265, #795 [1] and #1199 [2] |
| HMAC |
Certs. #38, #77, #436 [1] and #696 [2] |
| RNG |
Certs. #80, #456 [1] and #663 [2] |
| RSA |
Certs. #379 [1], #383 and #576 [2] |
| SHS |
Certs. #344, #401, #794 [1] and #1104 [2] |
| Triple-DES |
Certs. #213, #347, #683 [1] and #867 [2] |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 80 or 96 bits of encryption strength; non-compliant); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; HMAC-MD5; RC4; DES
Hardware Versions
2811 and 2821; AIM Version: 1.0, Board Version: D0
Firmware Versions
12.4(15)T3[1] and 12.4(15)T10[2]
