U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1562

Details

Module Name
Datacryptor® Gig Ethernet [1] and 10 Gig Ethernet [2]
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
06/20/2011;02/13/2015
Overall Level
3
Caveat
When configured with the Multi-Point license as indicated in the Security Policy
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
The Datacryptor® Gig Ethernet and 10 Gig Ethernet are rack-mountable multi-chip standalone cryptographic modules designed to secure data transmissions across public Ethernet Layer 2 networks. The Gig Ethernet uses an SFP transceiver and the 10 Gig Ethernet uses a higher-speed XFP transceiver. The Datacryptor® employs an automatic key generation and exchange mechanism using X.509 v3 certificates and the Diffie-Hellman key agreement scheme. The algorithm used for securing data transmission is AES-256 GCM.
FIPS Algorithms
AES Certs. #1033, #1488, #1489, #1548 and #1550
DSA Cert. #349
RNG Cert. #588
SHS Cert. #985
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption strength; non-compliant); NDRNG
Hardware Versions
1600x433, Rev. 01 and 1600x433, Rev. 02; 1600x437, Rev. 01 and 1600x437, Rev. 02
Firmware Versions
4.5

Vendor

Thales e-Security Inc.
900 South Pine Island Road
Suite 710
Plantation, FL 33324
USA

Joe Warren
Joe.Warren@thalesesec.com

Lab

COACT
NVLAP Code: 200416-0