Module Name
SafeGuard® CryptoServer Se
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode
Embodiment
Multi-chip embedded
Description
SafeGuard® CryptoServer Se is an encapsulated, protected hardware security module which provides secure cryptographic services like encryption or decryption (for various cryptographic algorithms like Triple-DES, RSA and AES), hashing, signing, and verification of data (RSA, ECDSA), random number generation, on-board secure key generation, key storage and further key management functions in a tamper-protected environment. The module is optionally available with or without RSA Crypto Accelerator.
Approved Algorithms
| AES |
Cert. #1711 |
| DRBG |
Cert. #141 |
| ECDSA |
Cert. #221 |
| HMAC |
Cert. #990 |
| RSA |
Certs. #841 and #842 |
| SHS |
Certs. #1498, #1597 and #1598 |
| Triple-DES |
Cert. #1101 |
| Triple-DES MAC |
Triple-DES Cert. #1101, vendor affirmed |
Other Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); AES (Cert. #1711, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Triple-DES (Cert. #1101, key wrapping; key establishment methodology provides 112 bits of encryption strength); Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption strength; non-compliant); DES; MD5; DSA (non-compliant); MDC-2; RIPEMD-160; Retail-TDES MAC (non-compliant); AES MAC (AES Cert. #1711; non-compliant)
Hardware Versions
P/N CryptoServer Se, Version 3.00.3.1
Firmware Versions
1.0.1.0
