Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #1918

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

Cisco 7600 Series Routers with Supervisor RSP720

Standard

FIPS 140-2

Status

Historical

Historical Reason

Moved to historical list due to sunsetting

Overall Level

Caveat

Validated when tamper evident labels are installed as indicated in the Security Policy and when operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy.

Security Level Exceptions

Roles, Services, and Authentication: Level 3
Design Assurance: Level 2

Module Type

Hardware

Embodiment

Multi-chip standalone

Description

The Cisco 7600-S Router is a compact, high-performance router designed in 3, 4, 6, 9 and 13-slot form factor for deployment at the network edge, where robust performance and IP/Multiprotocol Label Switching (MPLS) services are necessary to meet the requirements of both enterprises and service providers.

Approved Algorithms

AES	Certs. #598 and #2036
DRBG	Cert. #198
HMAC	Certs. #348 and #1234
RSA	Cert. #1056
SHS	Certs. #647 and #1781
Triple-DES	Certs. #569 and #1312

Other Algorithms

DES; DES MAC; HMAC MD5; MD4; MD5; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 156 bits of encryption strength; non-compliant less than 112 bits of encryption strength)

Hardware Versions

(7603-S, 7604, 7606-S, 7609-S, 7613, V02, V07, V13, V14 and -F0) with FIPS kit (Cisco-FIPS-KIT=)

Firmware Versions

15.1(3)S3

Vendor

Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Related Files

Security Policy
Consolidated Certificate

Validation History

Date	Type	Lab
3/22/2013	Initial	SAIC-VA