Module Name
Network Security Platform Sensor NS3500
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Network Security Platform products (formerly known as IntruShield) are Intrusion Prevention Systems (IPS) that protect network infrastructures and endpoints from intrusions such as zero-day, DoS, spyware, VoIP, botnet, malware, phishing, and encrypted attacks with highly accurate, enterprise-class risk-aware intrusion prevention. The Network Security Management system manages the sensor deployments and permits the customer to receive real-time network status updates and alerts, implement customized security policies and incident response plans, and perform forensic analysis of attacks.
Approved Algorithms
|
|
AES |
Cert. #C1556 |
CKG |
vendor affirmed |
CVL |
Certs. #C1557 and #C1558 |
DRBG |
Cert. #C1556 |
ECDSA |
Cert. #C1556 |
HMAC |
Cert. #C1556 |
KAS-SSC |
vendor affirmed |
KTS |
AES Cert. #C1556 and HMAC Cert. #C1556; key establishment methodology provides 128 or 256 bits of encryption strength |
KTS |
AES Certs. #C1556; key establishment methodology provides 128 or 256 bits of encryption strength |
RSA |
Certs. #C1555 and #C1556 |
SHS |
Certs. #C1555 and #C1556 |
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength);
Hardware Versions
P/Ns IPS-NS3500 Version 1.10
Firmware Versions
10.1.17.63