Cryptographic Module Validation Program CMVP

Certificate #2812

Details

Module Name
SSL Visibility Appliance
Standard
FIPS 140-2
Status
Historical
 Historical Reason
186-2 transition
Validation Dates
01/11/2017
Overall Level
2
Caveat
When operated in FIPS mode with the tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The SSL Visibility Appliance is designed to detect SSL traffic and then under policy control to "inspect" the traffic. Inspection involves decrypting and re-encrypting the traffic to gain access to the clear text then passing this data to one or more associated security appliance(s) that need to see decrypted traffic.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #3195, #3496 and #4106
CVL Certs. #429, #562 and #919
DRBG Certs. #669, #866 and #1233
ECDSA Certs. #584, #711 and #931
HMAC Certs. #2013, #2230 and #2682
PBKDF vendor affirmed
RSA Certs. #1238, #1625, #1794 and #2222
SHS Certs. #2052, #2642, #2885 and #3378
Triple-DES Certs. #1821, #1968 and #2244
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Camelia; ChaCha20-Poly1305; DES; HMAC-MD5; MD5; RC4
Hardware Versions
SV1800-C [1], SV1800B-C [2], SV1800-F [3], SV1800B-F [4], SV2800 [5] and SV2800B [6]; 090-03061 [1], 080-03560 [1], 080-03676 [1], 090-03547 [2], 080-03779 [2], 080-03784 [2], 090-03062 [3], 080-03561 [3], 080-03677 [3], 090-03548 [4], 080-03780 [4], 080-03785 [4], 090-03063 [5], 080-03562 [5], 080-03678 [5], 090-03549 [6], 080-03781 [6], 080-03786 [6] with FIPS Kit: FIPS-LABELS-SV
Firmware Versions
3.8.2F build 227, 3.8.4FC, 3.10 build 40

Vendor

Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

Diana Robinson
diana_robinson@symantec.com
Phone: 845-454-6397
Ian Hall
Ian_Hall@symantec.com
Phone: 703-598-6876

Lab

CGI IT Security Evaluation & Testing Facility
NVLAP Code: 200928-0