Cryptographic Module Validation Program CMVP

Certificate #3623

Details

Module Name
F5® vCMP Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
2/25/2025
Validation Dates
02/26/2020
Overall Level
2
Caveat
When operated in FIPS mode and installed and configured as specified in the section 8 of the Security Policy with tamper evident labels contained in F5-ADD-BIG-FIPS140 kit and affixed as indicated in the Security Policy section 4.
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Firmware
Embodiment
Multi-Chip Stand Alone
Description
F5® vCMP Cryptographic Module, Application Delivery Controller and Firewall software running on F5 BIG-IP and VIPRION hardwares.
Tested Configuration(s)
  • TMOS 14.1.0.3 EHF with vCMP hypervisor running on BIG-IP i15800 with Intel(R) Xeon(R) E5-2680
  • TMOS 14.1.0.3 EHF with vCMP hypervisor running on BIG-IP i5000 with Intel(R) Xeon(R) E5-1630
  • TMOS 14.1.0.3 EHF with vCMP hypervisor running on BIG-IP i5820-DF with Intel(R) Xeon(R) E5-1630
  • TMOS 14.1.0.3 EHF with vCMP hypervisor running on BIG-IP i7000 with Intel(R) Xeon(R) E5-1650
  • TMOS 14.1.0.3 EHF with vCMP hypervisor running on BIG-IP i7820-DF with Intel(R) Xeon(R) E5-1650
  • TMOS 14.1.0.3 EHF with vCMP hypervisor running on VIPRION B2250 with Intel(R) Xeon(R) E5-2658
  • TMOS 14.1.0.3 EHF with vCMP hypervisor running on VIPRION B4450 with Intel(R) Xeon(R) E5-2658A
FIPS Algorithms
AES Certs. #C696, #C697 and #C698
CVL Certs. #C696, #C697 and #C698
DRBG Certs. #C696, #C697 and #C698
ECDSA Certs. #C696, #C697 and #C698
HMAC Certs. #C696, #C697 and #C698
KTS AES Certs. #C697 and #C698; key establishment methodology provides between 128 or 256 bits of encryption strength
KTS AES Cert. #C696; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #C696 and HMAC Cert. #C696; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Certs. #C697 and #C698 and HMAC Certs. #C697 and #C698; key establishment methodology provides 128 or 256 bits of encryption strength
RSA Certs. #C696, #C697 and #C698
SHS Certs. #C696, #C697 and #C698
Allowed Algorithms
EC Diffie-Hellman (CVL Certs. #C696, #C697 and #C698 with CVL Certs. #C696, #C697 and #C698, key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
Firmware Versions
14.1.0.3 EHF

Vendor

F5 Networks
401 Elliott Avenue West
Seattle, WA 98119
USA

Maryrita Steinhour
m.steinhour@f5.com
Phone: 206-272-7351
Fax: n/a
Eric Raisters
e.raisters@f5.com
Phone: 206-272-7580
Fax: n/a

Lab

ATSEC INFORMATION SECURITY CORP
NVLAP Code: 200658-0