U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1300

Details

Module Name
Datacryptor® 100M Ethernet
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
04/26/2010;05/07/2010;01/13/2011;04/27/2011;05/11/2016
Overall Level
3
Caveat
When configured for firmware version 4.5 with the Point-Point license as indicated in the Security Policy
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
The Datacryptor® 100 Mbps Ethernet Layer 2 is a rack-mountable multi-chip standalone cryptographic module designed to secure data in transit across public Ethernet Layer 2 networks. The device uses 100BaseT ports to connect the host and public sides of the network. Datacryptor® employs an automatic key generation and exchange mechanism using X.509v.3 certificates and the Diffie-Hellman key agreement scheme. The algorithm used is AES-256. Configuration and management of the Datacryptor® 100 Mbps units is done through a secure remote management interface application also using the AES algorithm.
FIPS Algorithms
AES Certs. #1033 and #1078
DSA Cert. #349
RNG Cert. #588
SHS Cert. #985
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption strength; non-compliant)
Hardware Versions
1600x439, Rev. 01 and 1600x439, Rev. 02
Firmware Versions
4.2 and 4.5

Vendor

Thales e-Security Inc.
900 South Pine Island Road
Suite 710
Plantation, FL 33324
USA

Juan Asenjo
Juan.Asenjo@thales-esecurity.com

Lab

COACT
NVLAP Code: 200416-0