Module Name
7206VXR NPE-G2 with VSA
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode and with the tamper evident seals installed as indicated in the Security Policy
Embodiment
Multi-chip standalone
Description
Cisco Modular Access Routers are routers that provide data protection on a network providing packet encryption. The module performs all of the functions typical of a router. In addition to the normal routing functions, the module also provides packet encryption. The module is capable of encrypting traffic between one or more modules: providing a secure connection at the packet level.
Approved Algorithms
AES |
Cert. #91 |
HMAC |
Cert. #203 |
RNG |
Cert. #786 |
RSA |
Cert. #707 |
SHS |
Certs. #500 and #1303 |
Triple-DES |
Cert. #204 |
Other Algorithms
MD4; MD5; HMAC MD5; Diffie-Hellman (key agreement; key establishment methodology provides 80 or 96 bits of encryption strength; non-compliant); DES; AES (non-compliant); Triple-DES (non-compliant); HMAC (non-compliant); GDOI (key wrapping, key establishment methodology provides 128 or 256 bits of encryption strength)
Hardware Versions
7206VXR Version: 2.9 with NPE-G2 Version: 1.0 and VSA Version: 1.0
Firmware Versions
12.4(15)T10 or 12.4(15)T14