Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3765

Details

Module Name
nShield Solo XC F2
Standard
FIPS 140-2
Status
Active
Sunset Date
12/9/2025
Overall Level
2
Caveat
When operated in FIPS mode and initialized to Overall Level 2 per Security Policy. The protocol TLS shall not be used when operated in FIPS mode
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Physical Security: Level 3
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Embedded
Description
The nShield XC F2 PCIe card, sold as nShield XC F2 PCIe server-embedded hardware security modules (HSMs) are multi-tasking HSMs optimized for symmetric and asymmetric operations on protected keys. The nShield module is FIPS 140-2 Level 2 embedded devices for applications including but not limited to PKI, SSL/TLS, Secure Manufacturing, Data Protection, Key Management and Provisioning.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Cert. #C1105
CKG vendor affirmed
CVL Cert. #C1105
DRBG Cert. #C1105
DSA Cert. #C1105
ECDSA Certs. #805 and #C1105
HMAC Cert. #C1105
KBKDF Cert. #C1105
KTS AES Cert. #C1105; key establishment methodology provides between 112 and 256 bits of encryption strength
KTS vendor affirmed
RSA Cert. #C1105
SHS Certs. #3130 and #C1105
Triple-DES Cert. #C1105
Allowed Algorithms
Diffie-Hellman (CVL Cert. #C1105, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C1105, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC MQV (CVL Cert. #C1105, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG
Hardware Versions
NC3025E-000, Build Standard A
Firmware Versions
12.50.11

Vendor

Entrust
One Station Square
Cambridge CB1 2GA
United Kingdom

Security Certification Team
DPS-Certification@entrust.com

Validation History

Date Type Lab
12/10/2020 Initial Lightship Security, Inc.
2/9/2022 Update Lightship Security, Inc.