Module Name
NitroGuard IPS cryptographic module
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode with module OpenSSL FIPS Object Module validated to FIPS 140-2 under Cert. #918 operating in FIPS mode
Embodiment
Multi-chip standalone
Description
The NitroGuard IPS is a multi-chip standalone cryptographic module consisting of production-grade components contained within an opaque hard production-grade enclosure (the outside case is steel). The removable cover is protected by tamper evident security seals in accordance with FIPS 140-2 Level 2. The cryptographic boundary is the metal enclosure of the device. The network interface cards do not contain any security-relevant functionality. They are within the cryptographic boundary but are excluded from the evaluation.
Approved Algorithms
| AES |
Cert. #668 |
| HMAC |
Cert. #352 |
| RNG |
Cert. #387 |
| RSA |
Cert. #310 |
| SHS |
Cert. #701 |
| Triple-DES |
Cert. #613 |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
NS-IPS-620R-4C-B, NS-IPS-1220R-6C-B, NS-IPS-1220R-4C-2F-B, NS-IPS-620R-4C-BFS, NS-IPS-4245-R-4BTX, NS-IPS-4245-R-4BSX
Software Versions
8.0.0.20080605 and 8.2.0
