U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1642

Details

Module Name
PKI BLADE Cosmo
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
11/21/2011
Overall Level
2
Caveat
When operated in FIPS mode with the fingerprint authentication mechanism parameters configured as indicated in the Security Policy Section 8.6
PIV Cert Number
25
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Physical Security: Level 4
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Module Type
Hardware
Embodiment
Single-chip
Description
The PKI/BLADE applet is based on ISO 7816 and GSC-IS commands interface. The applet is designed to be loaded on any Java card compliant with JavaCard v2.2.1 and Global Platform v2.1.1 specifications including PIV certified Java cards. It is designed to provide services for PKI based logical access applications and to provide strong two factor authentication using fingerprint biometrics.
FIPS Algorithms
AES Cert. #840
CVL Cert. #3
ECDSA Cert. #94
RNG Cert. #480
RSA Cert. #403
SHS Cert. #833
Triple-DES Cert. #698
Triple-DES MAC Triple-DES Cert. #698, vendor affirmed
Other Algorithms
Triple-DES (Cert. #698, key wrapping; key establishment methodology provides 112 bits of encryption strength); AES (Cert. #840, key wrapping; key establishment methodology provides 128 bits of encryption strength); AES MAC (AES Cert. #840; non-compliant); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
P/N B0
Firmware Versions
FC10 (with op-code 071964) with ID-One PIV Applet Suite V2.3.2-a and PKI BLADE Applet V1.2

Vendor

U.S. Department of State
301 4th Street SW SA-44
Washington, DC 20547
USA

Paul Newton
newtonpj@state.gov
Phone: 202-203-5153
Fax: 202-203-7669

Lab

InfoGard
NVLAP Code: 100432-0