Module Name
DocuSign Signature Appliance
Historical Reason
Moved to historical list due to dependency on certificate #1883
Caveat
When operated in FIPS mode. This module contains the embedded module eToken 5105 validated to FIPS 140-2 under Cert. #1883 operating in FIPS mode. No assurance of the minimum strength of generated keys
Security Level Exceptions
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The DocuSign Signature Appliance is a digital signature appliance that is connected to the organizational network and manages all signature keys and certificates of organization's end-users. End-users will connect securely to the appliance from their PC for the purpose of signing documents and data.
Approved Algorithms
| CVL |
Cert. #787 |
| DRBG |
Certs. #98 and #1203 |
| HMAC |
Certs. #2564 and #2629 |
| KTS |
Triple-DES Cert. #2161 and HMAC Cert. #2564; key establishment methodology provides 112 bits of encryption strength |
| PBKDF |
vendor affirmed |
| RSA |
Cert. #2068 |
| SHS |
Certs. #1465, #3249 and #3324 |
| Triple-DES |
Certs. #2161 and #2206 |
| Triple-DES MAC |
Triple-DES Cert. #2206, vendor affirmed |
Other Algorithms
MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength); HMAC (non-compliant); RSA-RESTful-TLS (key wrapping; non-compliant); SHS (non-compliant); Triple-DES (non-compliant)
