Module Name
StoneGate Firewall / VPN Core
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Security Level Exceptions
- Tested: StoneGate FW-1020 hardware with Debian GNU/Linux 4.0 (Linux kernel 2.6.17.13)
Embodiment
Multi-chip standalone
Description
StoneGate Firewall/VPN Core 4.2.2.5798.cc3.1 provides IPsec compliant VPN connectivity between two firewall clusters (site to site connectivity) and remote IPsec compliant VPN connectivity between VPN clients the firewall cluster.
Approved Algorithms
AES |
Cert. #984 |
DSA |
Cert. #340 |
HMAC |
Cert. #554 |
RNG |
Cert. #559 |
RSA |
Cert. #474 |
SHS |
Cert. #953 |
Triple-DES |
Cert. #772 |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Blowfish; Twofish; Cast-128; DES; MD5; HMAC-MD5; AES-XCBC-MAC (non compliant); Triple DES-ECB (non compliant)
Firmware Versions
4.2.2.5708.cc3.1