Module Name
Athena IDProtect Duo PIV
Historical Reason
RNG SP800-131A Revision 1 Transition
Security Level Exceptions
- Cryptographic Module Specification: Level 3
- Roles, Services, and Authentication: Level 3
- Physical Security: Level 4
- EMI/EMC: Level 3
- Design Assurance: Level 3
Description
The Athena IDProtect Duo PIV cryptographic module is compliant with FIPS 201 as an end point compliant card. The PIV application is hosted by the Athena IDProtect dual interface smart card operating system compliant with the Java Card 2.2.2 and GlobalPlatform 2.1.1 specifications and FIPS 140-2 Level 3 (Level 4 for physical security). IDProtect supports FIPS approved Random Number Generator, TDES, AES, SHA-1, SHA-256, and RSA up to 2048 bits including on board key generation.
Approved Algorithms
AES |
Cert. #646 |
CVL |
Cert. #210 |
RNG |
Cert. #368 |
RSA |
Cert. #296 |
SHS |
Cert. #680 |
Triple-DES |
Cert. #598 |
Triple-DES MAC |
Triple-DES Cert. #598, vendor affirmed |
Other Algorithms
RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Triple-DES (Cert. #598, key wrapping; key establishment methodology provides 80 bits of encryption strength; non-compliant)
Hardware Versions
P/N AT90SC12872RCFT Revision M
Software Versions
P/N Athena PIV Applet Version 2.0
Firmware Versions
P/N Athena IDProtect Duo Version 0107.9334.0306