U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #2146

Details

Module Name
Cisco 881W, 881GW, 1941W, 891W, C819HGW+7-A-A-K9, C819HGW-V-A-K9, C819HGW-S-A-K9, and C819HWD-A-K9 Integrated Services Routers (ISRs)
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
05/13/2014;08/06/2014
Overall Level
2
Caveat
When operated in FIPS mode with tamper evident labels installed as indicated in the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
The Cisco 800 Series Integrated Services Routers are fixed-configuration routers that provide collaborative business solutions for data communication to small businesses and enterprise teleworkers. They offer wireless, Metro Ethernet, and multiple DSL technologies to provide business continuity. The routers provide the performance required for concurrent services, including firewall, intrusion prevention, content filtering, and encryption for VPNs for optimizing voice and video applications.
FIPS Algorithms
AES Certs. #962, #1115, #1535, #1648, #1791, #2611 and #2620
CVL Cert. #231
DRBG Cert. #401
ECDSA Cert. #450
HMAC Certs. #537, #538, #627, #1606 and #1618
RNG Cert. #1236
RSA Certs. #1338 and #1347
SHS Certs. #933, #934, #1038, #2194, #2182 and #2208
Triple-DES Certs. #757, #758, #812 and #1566
Other Algorithms
DES; Diffie-Hellman (key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key establishment methodology provides between 128 and 192 bits of encryption strength); GDOI (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength); HMAC-MD5; MD5; RC4; RSA (key wrapping; key establishment methodology provides between 112 and 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
Cisco 881W, 881GW, 891W, C819HGW+7-A-A-K9, C819HGW-V-A-K9, C819HGW-S-A-K9, C819HWD-A-K9 and 1941W with [FIPS Kit (CISCO-FIPS-KIT=), Revision -B0]
Firmware Versions
Router Firmware Version: IOS 15.2(4)M6A and AP Firmware Version: 15.2.2-JB

Vendor

Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Lab

Leidos
NVLAP Code: 200427-0