Cryptographic Module Validation Program CMVP

Certificate #3526

Details

Module Name
Ciena Waveserver Ai WCS-2 Module
Standard
FIPS 140-2
Status
Active
Sunset Date
9/15/2024
Validation Dates
09/16/2019;02/21/2020;05/22/2020;08/28/2020
Overall Level
2
Caveat
When installed, initialized and configured as specified in Section 12 of the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Embedded
Description
The Ciena Waveserver Ai, with WCS2 and Encryption cards, offers a Layer 1 AES-256-GCM encryption solution for 100GE clients supporting 100Gbs to 400Gb/s wirespeed encryption per line port for enterprises, datacenters and government deployments.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #4438, #C125 and #C193
CKG Vendor Affirmed
CVL Cert. #C193
DRBG Certs. #C125 and #C193
ECDSA Cert. #C193
HMAC Certs. #C125 and #C193
KAS Cert. #C193
KTS AES Certs. #4438 and #C193
KTS AES Cert. #C193 and HMAC Cert. #C193
RSA Cert. #C193
SHS Certs. #C125 and #C193
Allowed Algorithms
Diffie-Hellman (CVL Cert. #C193, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C193, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits or 128 bits of encryption strength);
Hardware Versions
186-1034-411-EB, Revision 002 with PCB P/N: 186-1034-210 Revision 001 [1], [2], [3], 186-1034-411-EB, Revision 003 with PCB P/N: 186-1034-210 Revision 001 [2], [3], or 186-1034-411-EB, Revision 004 with PCB P/N: 186-1034-210 Revision 001 [2], [3]
Firmware Versions
1.3.5 [1], 1.3.6 [2] or 1.3.61 [3]

Vendor

Ciena® Corporation
7035 Ridge Road
Hanover, MD 21076
USA

Sik Heng Foo
sfoo@ciena.com
Phone: 613-670-2252

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0