Module Name
Ciena Waveserver Ai WCS-2 Module
Historical Reason
SP 800-56Arev3 transition
Caveat
When installed, initialized and configured as specified in Section 12 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
The Ciena Waveserver Ai, with WCS2 and Encryption cards, offers a Layer 1 AES-256-GCM encryption solution for 100GE clients supporting 100Gbs to 400Gb/s wirespeed encryption per line port for enterprises, datacenters and government deployments.
Approved Algorithms
| AES |
Certs. #4438, #C125 and #C193 |
| CKG |
vendor affirmed |
| CVL |
Cert. #C193 |
| DRBG |
Certs. #C125 and #C193 |
| ECDSA |
Cert. #C193 |
| HMAC |
Certs. #C125 and #C193 |
| KAS |
Cert. #C193 |
| KTS |
AES Certs. #4438 and #C193 |
| KTS |
AES Cert. #C193 and HMAC Cert. #C193 |
| RSA |
Cert. #C193 |
| SHS |
Certs. #C125 and #C193 |
Allowed Algorithms
Diffie-Hellman (CVL Cert. #C193, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C193, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits or 128 bits of encryption strength);
Hardware Versions
186-1034-411-EB, Revision 002 with PCB P/N: 186-1034-210 Revision 001 [1], [2], [3], [4], 186-1034-411-EB, Revision 003 with PCB P/N: 186-1034-210 Revision 001 [2], [3], [4], 186-1034-411-EB, Revision 004 with PCB P/N: 186-1034-210 Revision 001 [2], [3], [4], 186-1034-411-EB, Revision 005 with PCB P/N: 186-1034-210 Revision 001 [2], [3], [4], 186-1034-411-EB, Revision 006 with PCB P/N: 186-1034-210 Revision 001 [2], [3], [4] or 186-1034-411-EB, Revision 007 with PCB P/N: 186-1034-210 Revision 001 [2], [3], [4]
Firmware Versions
1.3.5 [1], 1.3.6 [2], 1.3.61 [3] or 1.3.62 [4]
