Module Name
Cisco ASA 5505, 5510, 5520, 5540 and 5550 Security Appliances
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode and with the tamper evident seals installed as indicated in the Security Policy
Embodiment
Multi-chip standalone
Description
The market-leading Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA 5500 Series Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environments of all sizes.
Approved Algorithms
AES |
Certs. #105, #564, #966 and #1258 |
HMAC |
Certs. #125, #301, #539 and #735 |
RNG |
Certs. #144, #329, #545 and #701 |
RSA |
Certs. #106, #261, #467 and #604 |
SHS |
Certs. #196, #630, #935 and #1153 |
Triple-DES |
Certs. #217, #559, #760 and #897 |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption strength; non-compliant); MD5; DES; RC4; HMAC MD5; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
5505, 5510, 5520, 5540, 5550, FIPS Kit (Cisco-FIPS-KIT=): Revision -B0 and ASA 5505 FIPS Kit (ASA5505-FIPSKIT=):
Revision -A0
Firmware Versions
8.0.4.16, 8.0.4.28, 8.0.5, 8.2.1 and 8.2.2.9