Module Name
CryptoServer CSe
Historical Reason
Moved to historical list in accordance with SP800-131A Revision 1 Transition (AES/TDES key wrapping)
Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: Level 4
Embodiment
Multi-Chip Embedded
Description
CryptoServer CSe is an encapsulated, tamper-protected hardware security module which provides secure cryptographic services like encryption or decryption, hashing, signing and verification of data, random number generation, on-board secure key generation, key storage and further key management functions.
Approved Algorithms
AES |
Cert. #3589 |
CVL |
Cert. #613 |
DRBG |
Cert. #1089 |
DSA |
Cert. #997 |
ECDSA |
Cert. #730 |
HMAC |
Cert. #2289 |
RSA |
Cert. #1845 |
SHS |
Certs. #2951, #2954 and #3168 |
Triple-DES |
Cert. #1998 |
Triple-DES MAC |
Triple-DES Cert. #1998, vendor affirmed |
Other Algorithms
AES (Cert. #3589, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Diffie-Hellman (key agreement; key establishment methodology provides 112 or 128 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #613, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 270 bits of encryption strength); Triple-DES (Cert. #1998, key wrapping; key establishment methodology provides 112 bits of encryption strength); AES MAC (AES Cert. #3589; non-compliant); DES; ECIES; KDF (non-compliant); Retail-Triple-DES MAC; RIPEMD-160; RSA (encrypt/decrypt); MD5; MDC-2
Hardware Versions
P/N CryptoServer CSe Version 4.00.4.2
Firmware Versions
Firmware Package Version 4.0.3.0