Module Name

Viptela Cryptographic Module

Standard

FIPS 140-2

Status

Active

Sunset Date

2/4/2021

Validation Dates

05/30/2017;06/02/2017

Overall Level

1

Caveat

When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. This validation entry is a non-security relevant modification to Cert. #2038.

Security Level Exceptions

• Physical Security: N/A
• Mitigation of Other Attacks: N/A

Module Type

Software

Embodiment

Multi-Chip Stand Alone

Description

The Viptela Cryptographic Module is a fundamental component of Viptela's security functionality. It is used for authentication of users and devices as well as to provide high scalability data protection for Software Defined Wide Area Networks (SD-WANs).

Tested Configuration(s)

• CentOS 6.3 on a Dell OptiPlex 755 (single-user mode)

FIPS Algorithms

AES	Cert. #2273
CVL	Cert. #44
DRBG	Cert. #281
DSA	Cert. #709
ECDSA	Cert. #368
HMAC	Cert. #1391
RSA	Cert. #1166
SHS	Cert. #1954
Triple-DES	Cert. #1420

Other Algorithms

EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Dual EC DRBG; PRNG

Software Versions

2.1