Module Name
Luna® PCI Cryptographic Module for Luna® IS
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Embodiment
Multi-chip embedded
Description
The Luna® PCI for Luna® IS offers hardware-based key management and cryptographic operations to protect sensitive keys. The cryptographic boundary of the module is defined to encompass all components inside the secure enclosure on the PCI card.
Approved Algorithms
AES |
Certs. #510, #910 and #913 |
DSA |
Certs. #320 and #326 |
ECDSA |
Certs. #110 and #112 |
HMAC |
Certs. #507 and #509 |
RNG |
Certs. #522 and #523 |
RSA |
Certs. #442, #444, #454 and #455 |
SHS |
Certs. #898 and #900 |
Triple-DES |
Certs. #520, #728 and #738 |
Triple-DES MAC |
Triple DES Certs. #520, #728 and #738; vendor affirmed |
Other Algorithms
AES MAC (AES Certs. #510, #910 and #913; non-compliant); DES; RC2; RC4; RC5; CAST; CAST3; CAST5; SEED; CAST5 in a CBC-MAC; MD2; MD5; HAS-160 (plain hash and HMAC); SSL3-MD5-MAC; SSL3-SHA1-MAC; SSL PRE-MASTER; PBE-MD2-DES; PBE-MD5-DES; PBE-MD5-CAST; PBE-MD5-CAST3; PBE-SHA-1-CAST5; KCDSA; Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption strength; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
VBD-03-0100
Firmware Versions
5.2.5 and 5.2.6