Cryptographic Module Validation Program CMVP

Certificate #3077

Details

Module Name
Blue Coat Secure Web Gateway Virtual Appliance
Standard
FIPS 140-2
Status
Active
Sunset Date
12/10/2022
Validation Dates
12/11/2017;12/20/2017;11/13/2019
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Blue Coat ProxySG physical and virtual appliances are the core of Symantec’s Unified Security and Optimization solutions for business assurance. The appliances offer complete security and control of web traffic, providing rich policy constructs for threat protection, SSL traffic, authentication, filtering, data loss prevention and logging. SWG VA identifies malicious payloads and then filters, strips, blocks or replaces web content to mitigate risks and prevent data loss. The appliances also optimize web and internal application traffic for data, video, cloud and web applications.
Tested Configuration(s)
  • SGOS v6.7.2 and SGOS v6.7.4 on Vmware ESXi 6.0 running on a Dell PowerEdge R830 Server
FIPS Algorithms
AES Cert. #4596
CKG vendor affirmed
CVL Certs. #1265, #1266 and #1267
DRBG Cert. #1541
HMAC Certs. #3046 and #3047
KTS AES Cert. #4596; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Cert. #2446; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #2506 and #2507
SHS Certs. #3772 and #3773
Triple-DES Cert. #2446
Allowed Algorithms
Diffie-Hellman (CVL Cert. #1266 with CVL Certs. #1265 and #1267, key agreement, key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #1266 with CVL Certs. #1265 and #1267, key agreement, key establishment methodology provides 192 bits of encryption strength); MD5; NDRNG; RSA (key wrapping, key establishment methodology provides between 112 and 150 bits of encryption strength)
Software Versions
6.7.2, 6.7.4

Vendor

Symantec Corporation
350 Ellis St.
Mountain View, CA 94043
USA

Diana Robinson
diana_robinson@symantec.com
Phone: 845.454.6397
Fax: N/A

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0