U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1275

Details

Module Name
Datacryptor® Gig Ethernet and 10 Gig Ethernet
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
03/29/2010;05/07/2010;01/13/2011;04/27/2011;01/23/2015
Overall Level
3
Caveat
When configured for firmware version 4.5 with the Point-Point license as indicated in the Security Policy
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
The Datacryptor® 1 Gig Ethernet and 10 Gig Ethernet are rack-mountable multi-chip standalone cryptographic modules which facilitate secure data transmission across public Ethernet Layer 2 networks. The 1 Gig and 10 Gig units use an standard SFP/XFP optical transceivers for their host and network connections. The Datacryptor® offers user verification services via DSA enabled X.509 v.3 certificates, key management based on a Diffie-Hellman Key Agreement Scheme, and AES encryption of data passing over public networks. Management of the Datacryptor® is performed via a remote management interface.
FIPS Algorithms
AES Certs. #1033, #1079 and #1080
DSA Cert. #349
RNG Cert. #588
SHS Cert. #985
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption strength; non-compliant)
Hardware Versions
1600x433, Rev. 01 and 1600x433, Rev. 02; 1600x437, Rev. 01 and 1600x437, Rev. 02
Firmware Versions
4.2 and 4.5 (with Point-Point license)

Vendor

Thales e-Security Inc.
900 South Pine Island Road
Suite 710
Plantation, FL 33324
USA

Juan Asenjo
Juan.Asenjo@thales-esecurity.com

Lab

COACT
NVLAP Code: 200416-0