Cryptographic Module Validation Program CMVP

Certificate #2898

Details

Module Name
Cisco ASA Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
5/3/2022
Validation Dates
05/04/2017;05/12/2017
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 2
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Embedded
Description
The market-leading Cisco ASA delivering robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA provides comprehensive security, performance, and reliability for network environments.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #2034, #2035 and #4249
CVL Cert. #1002
DRBG Certs. #197 and #1328
ECDSA Cert. #989
HMAC Certs. #1233 and #2787
RSA Cert. #2298
SHS Certs. #1780 and #3486
Triple-DES Certs. #1311 and #2304
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); HMAC MD5; MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; RC4
Hardware Versions
FPR4110-ASA-K9, FPR4120-ASA-K9, FPR4140-ASA-K9, FPR4150-ASA-K9, FPR9K-SM-24 (SM-24) and FPR9K-SM-36 (SM-36)
Firmware Versions
9.6

Vendor

Cisco Systems, Inc.
170 W Tasman Drive
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Lab

GOSSAMER SECURITY SOLUTIONS INC
NVLAP Code: 200997-0