U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #2046

Details

Module Name
XTM 515, XTM 525, XTM 535 and XTM 545
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
11/18/2013
Overall Level
2
Caveat
When operated in FIPS mode and the tamper evident seals installed as indicated in the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy.
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
WatchGuard Fireware XTM extensible threat management appliances are built for enterprise-grade performance with blazing throughput and numerous connectivity options. Advanced networking features include clustering, high availability (active/active), VLAN support, multi-WAN load balancing and enhanced VoIP security, plus inbound and outbound HTTPS inspection, to give the strong security enterprises need.
FIPS Algorithms
AES Certs. #1659 and #2180
DSA Cert. #684
ECDSA Cert. #339
HMAC Certs. #974 and #1334
RNG Cert. #1103
RSA Cert. #1124
SHS Certs. #1453 and #1890
Triple-DES Certs. #1079 and #1380
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength); DES; RC4; MD5; TKIP; AES-CCM (non-compliant); Password Based Key Derivation Function (for 128 bit AES key; non-compliant)
Hardware Versions
NC2AE8 (XTM 515, XTM 525, XTM 535 and XTM 545) with Tamper Evident Seal Kit: SKU WG8566
Firmware Versions
Fireware XTM OS v11.5.5

Vendor

WatchGuard Technologies, Inc.
505 Fifth Avenue South, Suite 500
Seattle, WA 98104
USA

Peter Eng
Peter.Eng@watchguard.com
Phone: 206-613-6600

Lab

EWA
NVLAP Code: 200556-0