Cryptographic Module Validation Program CMVP

Certificate #3656

Details

Module Name
Cisco Catalyst 9800 Wireless Controllers running IOS-XE 16.10
Standard
FIPS 140-2
Status
Active
Sunset Date
5/19/2025
Validation Dates
05/20/2020
Overall Level
1
Caveat
When installed, initialized and configured as specified in the Security Policy Section 11 and operated in FIPS mode
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The Cisco Series Wireless Controllers, are a highly scalable and flexible platform that enables system-wide services for mission-critical wireless networking in medium-sized to large enterprises and campus environments.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #2346, #C861, #C862 and #C972
CKG vendor affirmed
CVL Certs. #C861, #C862 and #C972
DRBG Certs. #C861, #C862 and #C972
ECDSA Certs. #C861, #C862 and #C972
HMAC Certs. #C861, #C862 and #C972
KTS AES Certs. #C861, #C862 and #C972 and HMAC Certs. #C861, #C862 and #C972; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-Des Cert. #C972 and HMAC Cert. #C972; key establishment methodology provides between 112 bits of encryption strength
RSA Certs. #C861, #C862 and #C972
SHS Certs. #2023, #C861, #C862 and #C972
Triple-DES Certs. #C861, #C862 and #C972
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); Diffie-Hellman (CVL Cert. #C972 with CVL Cert. #C972, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #C861 and #C862 with CVL Certs. #C861 and #C862, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C972 with CVL Cert. #C972, key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
Hardware Versions
9800-40 and 9800-80
Firmware Versions
IOS-XE 16.10

Vendor

Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0