Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3830

Details

Module Name
X4i Hardware Security Module (HSM)
Standard
FIPS 140-2
Status
Active
Sunset Date
2/25/2026
Overall Level
3
Caveat
When operated in FIPS Mode.
Module Type
Hardware
Embodiment
Single Chip
Description
The X4i HSM is a single chip cryptographic module using the Maxim MAX32590 hardware. The central purpose of the module is as a physical computing device that safeguards and manages cryptographic keys and provides cryptographic services to connected host devices. The module uses a number of strong identity-based authentication mechanisms to provide authentication, integrity, and (when necessary) non-repudiation.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Cert. #5954
CKG vendor affirmed
DRBG Cert. #C472
DSA Cert. #C475
ECDSA Cert. #C476
HMAC Cert. #C464
KAS KAS-SSC vendor affirmed, KDA vendor affirmed
KAS-SSC vendor affirmed
KDA vendor affirmed
KTS AES Cert. #5954; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #5954 and HMAC Cert. #C464
RSA Cert. #C477
SHS Cert. #C295
Allowed Algorithms
NDRNG
Hardware Versions
MAX32590 Secure Microcontroller Revision B4
Firmware Versions
PB Bootloader Version 00.00.0016, HSM Application Version 21.02.000F [1] or 21.03.0001 [2], and Device Abstraction Layer (DAL) Version 01.02.0018 [1] or 01.02.0024 [2]

Vendor

Pitney Bowes, Inc.
27 Waterview Drive
Shelton, CT 06484
USA

Brian Hannigan
brian.hannigan@pb.com
Phone: 203-796-3201
Fax: 203-749-7491

Validation History

Date Type Lab
2/26/2021 Initial PENUMBRA SECURITY