Cryptographic Module Validation Program CMVP

Certificate #3529

Details

Module Name
PL-2000M, PL-2000AD and PL-2000ADS
Standard
FIPS 140-2
Status
Active
Sunset Date
9/17/2024
Validation Dates
09/18/2019
Overall Level
2
Caveat
When installed, initialized and configured as specified in the Security Policy Section 10 and operated in FIPS mode
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
PacketLight's PL-2000M, PL-2000AD and PL-2000ADS Layer-1 encryption solutions ensure the confidentiality and integrity of data, based on GCM-AES-256 encryption standards, supporting Diffie-Hellman (DH) key exchange up to every 1-minute. In addition, the solutions support multiple protocols including 10G/40G/100G Ethernet, 8G/16G/32G Fibre Channel, OTU2/OTU2e/OTU3/OTU4 and STM-64/OC-192
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #C221 and #C416
CKG vendor affirmed
CVL Cert. #C416
DRBG Cert. #C416
HMAC Cert. #C416
KTS AES Cert. #C221
KTS AES Cert. #C416; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Cert. #C416
SHS Cert. #C416
Allowed Algorithms
Diffie-Hellman (CVL Certs. #C 416, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #C 416, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG
Hardware Versions
PL-2000M, PL-2000AD, PL-2000ADS
Firmware Versions
1.3.12

Vendor

PacketLight Networks Ltd.
27 Habarzel Street
Tel-Aviv 6971039
Israel

Omri Viner
oviner@packetlight.com
Phone: 972-3-768-7850
Fax: 972-3-768-7825

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0