U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1668

Details

Module Name
Cisco Common Cryptographic Module (C3M)
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
01/19/2012;02/23/2012
Overall Level
1
Module Type
Software-Hybrid
Embodiment
Multi-chip standalone
Description
The Cisco Common Cryptographic Module (C3M) is a software-hybrid that provides cryptographic services to a vast array of Cisco's networking and collaboration products. The module provides FIPS validated cryptographic algorithms for services such as sRTP, SSH, TLS, 802.1x etc. The module does not implement any of the protocols directly. Instead, it provides the cryptographic primitives and functions to allow a developer to implement various protocols.
Tested Configuration(s)
  • FreeBSD 8.2 or Windows 7 SP1 running on Intel Core i5 with PAA
  • Red Hat Enterprise Linux v5 running on Intel Xeon with PAA or Intel Core i7 with PAA (single-user mode)
FIPS Algorithms
AES Cert. #1758
DSA Cert. #550
ECDSA Cert. #234
HMAC Cert. #1031
RNG Cert. #937
RSA Cert. #876
SHS Cert. #1544
Triple-DES Cert. #1139
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 152 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 152 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
Intel [Core i5, Core i7 and Xeon] with AES-NI
Software Versions
0.9.8r.1.1

Vendor

Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Lab

SAIC
NVLAP Code: 200427-0