Cryptographic Module Validation Program CMVP

Certificate #2427

Details

Module Name
Luna® PCI-E Cryptographic Module and Luna® PCI-E Cryptographic Module for Luna® SA
Standard
FIPS 140-2
Status
Historical
 Historical Reason
186-2 transition
Validation Dates
08/11/2015;09/30/2015;10/26/2015;12/15/2015;01/10/2017;06/23/2017;06/23/2017;02/21/2018;05/03/2019
Overall Level
2
Caveat
When operated in FIPS mode and initialized to Overall Level 2 per Security Policy
Security Level Exceptions
  • Physical Security: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
Module Type
Hardware
Embodiment
Multi-chip embedded
Description
The Luna PCI-e cryptographic module is a multi-chip embedded hardware cryptographic module in the form of a PCI-Express card that typically resides within a custom computing or secure communications appliance. The cryptographic module is contained in its own secure enclosure that provides physical resistance to tampering. The cryptographic boundary of the module is defined to encompass all components inside the secure enclosure on the PCI-e card.
FIPS Algorithms
AES Certs. #1756, #2664 and #2667
DRBG Cert. #428
DSA Certs. #804, #806 and #807
ECDSA Certs. #461, #462 and #463
HMAC Certs. #1655 and #1658
KAS Cert. #43
KBKDF Cert. #14
RSA Certs. #1369 and #1371
SHS Certs. #2237 and #2240
Triple-DES Certs. #1137, #1598 and #1599
Triple-DES MAC Triple-DES Certs. #1137, #1598 and #1599, vendor affirmed
Other Algorithms
AES (Certs. #2664 and #2667, key unwrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); HRNG; RSA (key wrapping; key establishment methodology provides between 112 and 152 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Triple-DES (Certs. #1598 and #1599, key unwrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
VBD-05, Version Code 0100, VBD-05, Version Code 0101, VBD-05, Version Code 0102, VBD-05, Version Code 0103
Firmware Versions
6.10.4, 6.10.7, 6.10.9 and 6.12.1

Vendor

SafeNet, Inc.
20 Colonnade Road, Suite 200
Ottawa, ON K2E 7M6
Canada

Security and Certifications Team
SecurityCertifications@gemalto.com

Lab

EWA
NVLAP Code: 200556-0