Module Name
ProtectServer Internal Express (PSI-e)
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Embodiment
Multi-chip embedded
Description
The SafeNet PSI-e is a high-end intelligent PCI adapter card that provides a wide range of cryptographic functions using firmware and dedicated hardware processors. The module provides key management (e.g., generation, storage, deletion, and backup), an
extensive suite of cryptographic mechanisms, and process management including separation between operators. The PSI-e also features non-volatile tamper protected memory for key
storage, a hardware random number generator, and an RTC.
Approved Algorithms
AES |
Cert. #1582 |
DSA |
Cert. #488 |
ECDSA |
Cert. #193 |
HMAC |
Cert. #928 |
RNG |
Cert. #851 |
RSA |
Cert. #772 |
SHS |
Cert. #1401 |
Triple-DES |
Cert. #1038 |
Triple-DES MAC |
Triple-DES Cert. #1038, vendor affirmed |
Other Algorithms
AES MAC (AES Cert. #1582; non-compliant); ARIA; CAST-128; CAST-128 MAC; DES; DES MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); ECIES; EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); IDEA; IDEA MAC; MD2; MD5; MD5 HMAC; RC2; RC2 MAC; RC4; RIPEMD-128; RIPEMD-160; RMD128 HMAC; RMD160 HMAC; RSA (Key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); SEED; SEED MAC;
Hardware Versions
VBD-04-0302
Firmware Versions
3.00.03