Module Name
Vormetric Data Security Manager Virtual Appliance Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode. The protocol SSH shall not be used when operated in FIPS mode
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: N/A
- Cryptographic Key Management: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Vormetric Data Security Virtual Appliance Module is a multi-chip standalone cryptographic module. The Vormetric Data Security Virtual Appliance Module is the central point of management for the Vormetric Data Security product. It manages keys and policies, and controls Vormetric Transparent Encryption Agents. These agents contain the Vormetric Encryption Expert Cryptographic Module, which has been validated separately from this module.
Tested Configuration(s)
- Centos 5.11 (64-bit) on VMware ESXi 5.5.0 running on a Supermicro X9DAX (single-user mode)
Approved Algorithms
| AES |
Certs. #3588 and #3621 |
| CVL |
Certs. #612 and #643 |
| DRBG |
Cert. #951 |
| ECDSA |
Cert. #751 |
| HMAC |
Certs. #2287, #2288 and #2375 |
| KTS |
AES Cert. #3621 and HMAC Cert. #2375; key establishment methodology provides 128 or 256 bits of encryption strength |
| RSA |
Cert. #1866 |
| SHS |
Certs. #2949, #2950 and #3041 |
Other Algorithms
EC Diffie-Hellman (key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); MD5; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength); Aria; SSH KDF (non-compliant); Triple-DES (non-compliant)
