Module Name
nShield Connect 6000 [1], nShield Connect 1500 [2] and nShield Connect 500 [3]
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode with nShield PCIe validated to FIPS 140-2 under Cert. #1063
Embodiment
Multi-chip standalone
Description
The Thales nShield Connect is a network-attached hardware security module for business continuity of always-on, mission-critical systems in shared infrastructures, providing high availability, scalability and remote management for cryptographic infrastructures. Part of the nCipher product line, nShield Connect is the world's first HSM with redundant, hot-swappable power supplies, and enables organizations to build reliable, large-scale cryptographic services for their infrastructures.
Approved Algorithms
| AES |
Certs. #397, #754 and #1227 |
| AES GCM |
Cert. #754, vendor affirmed |
| DSA |
Certs. #280 and #407 |
| ECDSA |
Certs. #81 and #145 |
| HMAC |
Certs. #410 and #717 |
| RNG |
Certs. #436 and #681 |
| RSA |
Cert. #356 |
| SHS |
Certs. #764 and #1127 |
| Triple-DES |
Certs. #435, #666 and #883 |
| Triple-DES MAC |
Triple-DES Cert. #666, vendor affirmed |
Other Algorithms
Aria; Arc Four; Camellia; CAST 6; DES; MD5; SEED; HMAC-MD5, HMAC-Tiger, HMAC-RIPEMD160; RIPEMD 160; Tiger; El-Gamal; KCDSA; HAS 160; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 192 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); ECMQV (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
NH2047 [1], NH2040 [2] and NH2033 [3], Build Standard N
