Module Name
FireEye HX Series: HX4502V
Caveat
When operated in FIPS mode and installed, initialized and configured as specified in Section 3 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The FireEye HX series appliances enable security operations teams to correlate network and endpoint activity. Organizations can automatically investigate alerts generated by FireEye Threat Prevention Platforms, log management, and network security products, apply intelligence from FireEye to continuously validate Indicators of Compromises on the endpoints and identify if a compromise has occurred and assess the potential risk.
Tested Configuration(s)
- FEYE 9.0 on VMware ESXi 6.7 running on Dell PowerEdge R630 with Intel Xeon E5 (Broadwell) (single-user mode)
Approved Algorithms
| AES |
Cert. #C1749 |
| CKG |
vendor affirmed |
| CVL |
Cert. #C1749 |
| DRBG |
Certs. #C1749 and #C2043 |
| DSA |
Cert. #C1749 |
| ECDSA |
Cert. #C1749 |
| HMAC |
Certs. #C1749 and #C2043 |
| KAS-SSC |
vendor affirmed |
| KTS |
AES Cert. #C1749 and HMAC Cert. #C1749; key establishment methodology provides 128 or 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #C1749 and HMAC Cert. #C1749; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Cert. #C1749 |
| SHS |
Certs. #C1749 and #C2043 |
| Triple-DES |
Cert. #C1749 |
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
