Cryptographic Module Validation Program CMVP

Certificate #3570

Details

Module Name
Cisco NCS 5500 Series Routers
Standard
FIPS 140-2
Status
Active
Sunset Date
11/21/2024
Validation Dates
11/22/2019
Overall Level
1
Caveat
When operated in FIPS mode, installed, initialized and configured as specified in Section 9 of the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The Cisco Network Convergence System 5500 Series is a family of routing platforms including fixed and modular chassis. The platform offers high port density, high performance forwarding, low jitter and the lowest power consumption per Gigabits/sec at a very cost-effective price point. The routers meet FIPS 140-2 overall Level 1 requirements as multi-chip standalone modules. The modules include cryptographic algorithms implemented in IOS-XR software.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #4369 and #C542
CVL Cert. #C542
DRBG Certs. #C542
HMAC Cert. #C542
KBKDF Cert. #C542
RSA Cert. #C542
SHS Cert. #C542
Triple-DES Cert. #C542
Allowed Algorithms
Diffie-Hellman (Cert. #C542, key establishment methodology provides between 112 and 150-bits of encryption strength); EC Diffie-Hellman (Cert. #C542, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); RSA (Cert. #C542, key wrapping; key establishment methodology provides 112 and 128 bits of encryption strength)
Hardware Versions
NCS-5501, NCS-5502, NCS-55A1-36H-SE-S and [NCS-5508 with components NC55-RP, NC55-36X100G-S]
Firmware Versions
Cisco IOS XR 6.3

Vendor

Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com
Phone: N/A
Fax: N/A

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0