Cryptographic Module Validation Program CMVP

Certificate #2121

Details

Module Name
nShield F2 500+ [1], nShield F2 1500+ [2] and nShield F2 6000+ [3]
Standard
FIPS 140-2
Status
Historical
 Historical Reason
186-2 transition
Validation Dates
04/03/2014;06/05/2014;11/24/2015;08/07/2018;08/28/2018;01/29/2020
Overall Level
2
Caveat
When operated in FIPS mode and initialized to Overall Level 2 per Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-chip embedded
Description
The nShield modules: nShield F2 500+, nShield F2 1500+ and nShield F2 6000+ family of secure e-commerce HSMs are multi-tasking hardware modules that are optimized for performing modular arithmetic on very large integers. The nShield modules are FIPS 140-2 level 2 embedded devices. The units are identical in operation and only vary in the processing speed.
FIPS Algorithms
AES Cert. #2122
AES KTS Cert. #5456
CVL Certs. #27 and #90
DRBG Cert. #232
DSA Certs. #664 and #777
ECDSA Cert. #181
HMAC Cert. #1292
RSA Certs. #1092 and #1299
SHS Cert. #1844
Triple-DES Cert. #1349
Triple-DES MAC Triple-DES Cert. #1349, vendor affirmed
Other Algorithms
ARC4; Aria; Camellia; CAST-6; DES; MD5; SEED; HMAC-MD5; HMAC-Tiger; HMAC-RIPEMD160; RIPEMD-160; Tiger; El-Gamal; KCDSA; HAS-160; Triple-DES (key wrapping; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Diffie-Hellman (CVL Certs. #27 and #90, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #27 and #90, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); ECMQV (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
nC3423E-500 [1], nC3423E-1K5 [2] and nC3423E-6K0 [3], Build Standard N
Firmware Versions
2.51.10-2, 2.55.1-2, and 2.55.2-2

Vendor

nCipher Security Limited
One Station Square
Suite 710
Cambridge, FL CB1 2GA
United Kingdom

sales@ncipher.com
sales@ncipher.com

Lab

CSC
NVLAP Code: 200996-0