Module Name
CryptoServer Se-Series Gen2
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode
Embodiment
Multi-Chip Embedded
Description
The CryptoServer Se-Series Gen2 Version 5.01.2.0 and 5.01.4.0 is an encapsulated protected security module which is realized as a multi-chip embedded cryptographic module as defined in FIPS 140-2. It's realization meets the overall FIPS 140-2 Level 3 requirements. The primary purpose of this module is to provide secure cryptographic services such as encryption or decryption, hashing, signing and verification of data, random number generation, on-board secure key generation, key storage and further key management functions in a tamper-protected environment.
Approved Algorithms
| AES |
Cert. #4028 |
| CVL |
Certs. #855 and #856 |
| DRBG |
Cert. #1202 |
| DSA |
Cert. #1091 |
| ECDSA |
Certs. #897 and #898 |
| HMAC |
Cert. #2628 |
| KBKDF |
Cert. #97 |
| KTS |
AES Cert. #4028 and AES Cert. #4028; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Certs. #2066 and #2067 |
| SHS |
Cert. #3321, #3322, and #3323 |
| Triple-DES |
Cert. #2205 |
| Triple-DES MAC |
Triple-DES Cert. #2205, Vendor Affirmed |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength); AES MAC (Cert. #4028; non-compliant); DES; ECIES; KDF per PKCS #11 (non-compliant); MD5; MDC-2; RIPEMD-160; RSA (non-compliant); Triple-DES ANSI Retail MAC
Hardware Versions
5.01.2.0 and 5.01.4.0
Firmware Versions
5.0.10.1
