Module Name
Cisco Systems 3504, 5520, and 8540 Wireless LAN Controllers
Historical Reason
SP 800-56Arev3 transition
Caveat
When installed, initialized and configured as specified in the Security Policy Section 3 and operated in FIPS mode
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Cisco Series Wireless Controllers, are a highly scalable and flexible platform that enables system-wide services for mission-critical wireless networking in medium-sized to large enterprises and campus environments.
Approved Algorithms
| AES |
Certs. #2346, #3301, #5674, #5675 and #5683 |
| CKG |
vendor affirmed |
| CVL |
Certs. #2057, #2058, #2059, #2060, #2075 and #2076 |
| DRBG |
Certs. #2293, #2294 and #2299 |
| DSA |
Certs. #1459, #1460 and #1462 |
| ECDSA |
Certs. #1536, #1537 and #1540 |
| HMAC |
Certs. #1455, #2095, #3776, #3777 and #3784 |
| KBKDF |
Certs. #236, #237 and #239 |
| KTS |
AES Certs. #5674, #5675 and #5683; key establishment methodology provides between 128 and 256 bits of encryption strength |
| RSA |
Certs. #3053, #3054 and #3058 |
| SHS |
Certs. #2023, #2737, #4545, #4546 and #4555 |
Allowed Algorithms
Diffie-Hellman (CVL Cert. #2058, #2060 and #2076, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #2057, #2058, #2059, #2060, #2075 and #2076, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD5; NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 128 bits of encryption strength)
Hardware Versions
3504, 5520 and 8540
