Module Name
Cisco NCS 5500 Series Routers
Historical Reason
SP 800-56Arev3 transition
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 9 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Cisco Network Convergence System 5500 Series is a family of routing platforms including fixed and modular chassis. The platform offers high port density, high performance forwarding, low jitter and the lowest power consumption per Gigabits/sec at a very cost-effective price point. The routers meet FIPS 140-2 overall Level 1 requirements as multi-chip standalone modules. The modules include cryptographic algorithms implemented in IOS-XR software.
Allowed Algorithms
Diffie-Hellman (Cert. #C542, key establishment methodology provides between 112 and 150-bits of encryption strength); EC Diffie-Hellman (Cert. #C542, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); RSA (Cert. #C542, key wrapping; key establishment methodology provides 112 and 128 bits of encryption strength)
Hardware Versions
NCS-5501, NCS-5502, NCS-55A1-36H-SE-S and [NCS-5508 with components NC55-RP, NC55-36X100G-S]
Firmware Versions
Cisco IOS XR 6.3
