Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3574


Module Name
Network Security Platform Sensor NS3100, NS3200, NS5100 and NS5200
FIPS 140-2
 Historical Reason
SP 800-56Arev3 transition
Overall Level
When operated with the tamper evident seals installed as indicated in the Security Policy
Security Level Exceptions
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Multi-Chip Stand Alone
Network Security Platform products (formerly known as IntruShield) are Intrusion Prevention Systems (IPS) that protect network infrastructures and endpoints from intrusions such as zero-day, DoS, spyware, VoIP, botnet, malware, phishing, and encrypted attacks with highly accurate, enterprise-class risk-aware intrusion prevention. The Network Security Management system manages the sensor deployments and permits the customer to receive real-time network status updates and alerts, implement customized security policies and incident response plans, and perform forensic analysis of attacks.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Certs. #C402 and #C409
CKG vendor affirmed
CVL Certs. #C402, #C403, #C409 and #C410
DRBG Certs. #C402 and #C409
HMAC Certs. #C402 and #C409
KTS AES Certs. #C402 and #C409 and HMAC Certs. #C402 and #C409; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Certs. #C402 and #C409; key establisment methodology provides 128 or 256 bits of encryption strength
RSA Certs. #2638, #C402 and #C409
SHS Certs. #3960, #C402 and #C409
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C409 with CVL Cert. #C410, key agreement; key establishment methodology provides 128 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
P/Ns IPS-NS3100 Version 1.00, IPS-NS3200 Version 1.00, IPS-NS5100 Version 1.00 and IPS-NS5200 Version 1.00; FIPS Kit P/N IAC-FIPS-KT2
Firmware Versions


McAfee, LLC
2821 Mission College Blvd.
Santa Clara, CA 95054

Mark Hanson
Phone: 972-963-7326

Validation History

Date Type Lab
12/3/2019 Initial ACUMEN SECURITY, LLC
3/23/2020 Update ACUMEN SECURITY, LLC