Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #1117

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

HiKey - Flash and HiKey PKI Token

Standard

FIPS 140-2

Status

Historical

Historical Reason

RNG SP800-131A Revision 1 Transition

Overall Level

Caveat

When operated in FIPS mode

Security Level Exceptions

Roles, Services, and Authentication: Level 3
EMI/EMC: Level 3
Design Assurance: Level 3

Module Type

Hardware

Embodiment

Multi-chip standalone

Description

The HiKey Flash and HiKey PKI Token modules are multi-chip standalone implementations of a cryptographic module. The Hikey - Flash and HiKey PKI Token modules are USB tokens that adhere to ISO/IEC specifications for Integrated Circuit Chip (ICC) based identification cards. The HiKey - Flash and HiKey PKI Token cryptographic modules contain an implementation of the Open Platform (OP) Version 2.0.1 specification defining a secure infrastructure for post-issuance programmable smart cards.

Approved Algorithms


AES	Cert. #896
HMAC	Cert. #501
RNG	Cert. #515
RSA	Cert. #434
SHS	Cert. #889
Triple-DES	Cert. #732
Triple-DES MAC	Triple-DES Cert. #732, vendor affirmed

Other Algorithms

AES MAC (AES Cert. #896; non-compliant)

Hardware Versions

1.5 and 1.8

Software Versions

Card OS version 3.1 with GINA Applet: 1.0, PKI Applet: 2.0, FISC II Applet: 1.2

Firmware Versions

1.25

Vendor

Chunghwa Telecom Co., Ltd.
12, Lane 551, Min-Tsu Road SEC.5
Yang-Mei
Taoyuan, Taiwan 326
Republic of China

Yeou-Fuh Kuan
kufo@cht.com.tw
Phone: +886-3-424-4333
Fax: +886-3-424-4129
Char-Shin Miou
mcs@cht.com.tw
Phone: +886-3-424-4381
Fax: +886-3-424-4129

Related Files

Security Policy
Certificate

Validation History

Date	Type	Lab
7/7/2009	Initial	DOMUS
11/17/2011	Update