Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3294


Module Name
iStorage FIPS 140-2 Level 2 Module Rev 1.0
FIPS 140-2
 Historical Reason
Moved to historical list due to sunsetting
Overall Level
Security Level Exceptions
  • Cryptographic Module Specification: Level 3
  • Cryptographic Module Ports and Interfaces: Level 3
  • Physical Security: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Multi-Chip Embedded
iStorage FIPS 140-2 Module is a portable USB 3.1 module with real-time AES-XTS 256-bit hardware encryption and super-fast data transfer. An easy-to-use keypad interface enables secure access with unique 7-15 digit PINs and software-free setup and operation. The module is platform/device independent. The GDPR compliant module has a dedicated secure microprocessor (Common Criteria EAL4+ ready), employing built-in physical protection mechanisms to defend against external tamper, bypass attacks and more. All critical components are covered by super tough epoxy resin.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Certs. #4642 and #5179
CKG vendor affirmed
DRBG Cert. #1954
HMAC Cert. #3435
PBKDF vendor affirmed
SHS Cert. #4183
Allowed Algorithms
Hardware Versions
Rev 1.0
Firmware Versions
EC Firmware version IS_EC_FW_2_59_1X and SC Firmware version 1.6


iStorage Ltd.
iStorage House
13 Alperton Lane, Perivale
Middlesex UB6 8DH
United Kingdom

John Michael
Phone: +44 (0)20 8991 6260
Fax: +44 (0)20 8991 6277

Validation History

Date Type Lab
9/26/2018 Initial PENUMBRA SECURITY