Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #2167

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

Neopost Postal Security Device (PSD)

Standard

FIPS 140-2

Status

Historical

Historical Reason

RNG SP800-131A Revision 1 Transition

Overall Level

Caveat

When operated in FIPS mode

Security Level Exceptions

Physical Security: Level 3 +EFP/EFT

Module Type

Hardware

Embodiment

Multi-chip embedded

Description

The Neopost Postal Security Device (PSD) is a cryptographic module embedded within postal franking machines. The PSD performs all franking machine’s cryptographic and postal security functions and protects the Critical Security Parameters (CSPs) and Postal Relevant Data from unauthorized access.

Approved Algorithms

AES	Certs. #2565 and #2566
CVL	Cert. #92
ECDSA	Cert. #441
HMAC	Certs. #1583 and #1603
RNG	Cert. #1217
RSA	Cert. #1314
SHS	Cert. #2162

Other Algorithms

RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength, non-compliant less than 112 bits of encryption strength); Diffie-Hellman (non-compliant)

Hardware Versions

A0014227-B, A0014227-C

Firmware Versions

a22.17.01, a22.17.02, a23.08.01, a23.08.03, a28.02.01, a28.02.04, a28.05 and a28.08

Vendor

Neopost Technologies, S.A.
113 Rue Jean Marin Naudin
Bagneux 92220
France

Nathalie TORTELLIER
n.tortellier@neopost.com
Phone: +33 1 45 36 30 72
Fax: +33 1 45 36 30 10

Related Files

Security Policy
Consolidated Certificate

Validation History

Date	Type	Lab
6/11/2014	Initial	PENUMBRA SECURITY
8/29/2014	Update	PENUMBRA SECURITY
9/18/2015	Update	PENUMBRA SECURITY
1/4/2016	Update	PENUMBRA SECURITY