U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #2236

Details

Module Name
McAfee Firewall Enterprise 1100F, 2150F and 4150F
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
09/08/2014
Overall Level
2
Caveat
When operated in FIPS mode and when installed, initialized and configured as specified in the Security Policy Section Secure Operation. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-chip standalone
Description
McAfee Firewall Enterprise solutions provide unmatched protection for the enterprise in the most mission-critical and sensitive environments. McAfee Firewall Enterprise appliances are created to meet the specific needs of organizations of all types and enable those organizations to reduce costs and mitigate the evolving risks that threaten today's networks and applications.
FIPS Algorithms
AES Certs. #1833, #2711 and #2713
CVL Certs. #168 and #171
DRBG Certs. #448 and #450
DSA Certs. #828 and #830
ECDSA Certs. #472 and #474
HMAC Certs. #1086, #1690 and #1692
RNG Cert. #964
RSA Certs. #1407 and #1409
SHS Certs. #1612, #2276 and #2278
Triple-DES Certs. #1185, #1628 and #1630
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
(NSA-1100-FWEX-F, NSA-2150-FWEX-F and NSA-4150-FWEX-F) with FRU-686-0089-00
Firmware Versions
8.3.2 with patch number 8.3.2E14

Vendor

McAfee, Inc.
2821 Mission College Boulevard
Santa Clara, CA 95054
USA

Mark Hanson
mark_hanson@mcafee.com
Phone: 651-628-1633
Fax: 651-628-2701

Lab

EWA
NVLAP Code: 200556-0