Module Name
Entrust CygnaCom IPSec Cryptographic Module
Historical Reason
Validation Sunsetting Policy - FIPS 140-1 Certificate
Security Level Exceptions
- Operating System Security: Tested as meeting Level 1 with SCO CMW+ V3.0.1 Operating System (single user mode)
Embodiment
Multi-chip standalone
Description
The Entrust CygnaCom IPSec Cryptographic Module is a software cryptographic module intended to provide secure IPSEC communications between client workstations/laptops and servers. The communications are secured by the use of Triple DES (TDES) running in the Triple Cipher Block Chaining (TCBC) mode of operation to encrypt and the data portion of TCP/IP packets using either the IPSEC
ESP-tunneled mode or ESP-transport mode. HMAC SHA-1 is used to authenticate
IPSEC message headers and protocol data units.
Approved Algorithms
HMAC-SHA-1 |
Cert. #79, vendor affirmed |
SHA-1 |
Cert. #79 |
Triple-DES |
Cert. #91 |
Other Algorithms
Diffie-Hellman (key agreement)