Module Name
ProtectServer Gold (PSG)
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Security Level Exceptions
- Mitigation of Other Attacks: N/A
Embodiment
Multi-chip embedded
Description
The SafeNet PSG Adapter is a high-end intelligent PCI adapter card that provides a wide range of cryptographic functions using firmware and dedicated hardware processors. Access to the PSG is provided via a comprehensive PKCS#11 API, allowing extremely flexible use of the module in a multitude of applications.
Approved Algorithms
AES |
Cert. #2605 |
DSA |
Cert. #790 |
ECDSA |
Cert. #449 |
HMAC |
Cert. #1613 |
RNG |
Cert. #1233 |
RSA |
Cert. #1332 |
SHS |
Cert. #2189 |
Triple-DES |
Cert. #1570 |
Triple-DES MAC |
Triple-DES Cert. #1570, vendor affirmed |
Other Algorithms
AES (Cert. #2605, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); AES MAC (AES Cert. #2605, non-compliant); ARIA; CAST 128; CAST MAC; DES; DES MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 152 bits of encryption strength; non-compliant less than 112-bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112-bits of encryption strength); ECIES; IDEA 128; IDEA MAC; MD2; MD5; MD5 HMAC; RC2; RC2 MAC; RC4; RIPEMD-128; RIPEMD-160; RMD128 HMAC; RMD160 HMAC; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112-bits of encryption strength); SEED 128; SEED MAC; Triple-DES (Cert. #1570, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112-bits of encryption strength)
Hardware Versions
B2, B3, B4 and PSG-01-0101
Firmware Versions
3.20.01