Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #1422

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

CoSign

Standard

FIPS 140-2

Status

Historical

Historical Reason

RNG SP800-131A Revision 1 Transition

Overall Level

Caveat

When operated in FIPS mode

Module Type

Hardware

Embodiment

Multi-chip standalone

Description

CoSign is a digital signature appliance that is connected to the organizational network and manages all signature keys and certificates of organization's end-users. End-users will connect securely to CoSign from their PC for the purpose of signing documents and data.

Approved Algorithms

HMAC	Certs. #799 and #1405
RNG	Certs. #750 and #1139
RSA	Certs. #665 and #1177
SHS	Certs. #1244, #1245, #1970 and #1971
Triple-DES	Certs. #939, #940, #1437 and #1438
Triple-DES MAC	Triple-DES Certs. #939 and #1437, vendor affirmed

Other Algorithms

MD5; RSA (key wrapping; key establishment methodology provides 80 bits of encryption strength; non-compliant)

Hardware Versions

7.0

Firmware Versions

5.2 and 6.0

Vendor

ARX (Algorithmic Research)
10 Nevatim Street
Kiryat Matalon, Petach Tikva 49561
Israel

Ezer Farhi
ezer@arx.com
Phone: 972-3-9279529

Related Files

Security Policy
Certificate

Validation History

Date	Type	Lab
10/25/2010	Initial	CYGNACOM SOLUTIONS INC
1/22/2013	Update	CYGNACOM SOLUTIONS INC