Module Name
3e-636M-HSE CyberFence Cryptographic Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
When installed, initialized and configured as specified in the Security Policy Section 9 and operated in FIPS mode
Security Level Exceptions
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
3e-636-HSE module provides high speed low latency dedicated Layer 2 data encryption for enhanced network security and performance. It supports multiple VLANs with bypass mode. Each VLAN uses its own data encryption key for data privacy and per data packet integrity.
Approved Algorithms
AES |
Certs. #2060 and #2078 |
CVL |
Cert. #285 |
DRBG |
Cert. #822 |
ECDSA |
Cert. #303 |
HMAC |
Certs. #1253 and #1259 |
KTS |
AES Cert. #2060 and HMAC Cert. #1253; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Cert. #1491 |
SHS |
Certs. #1801 and #1807 |
Other Algorithms
MD5; NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 128 bits of encryption strength); SNMPv3 KDF (non-compliant)