Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4074


Module Name
FireEye HX Series: HX4402, HX4502, HX4502D
FIPS 140-2
Sunset Date
Overall Level
When operated in FIPS mode and installed, initialized and configured as specified in Section 3 of the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Multi-Chip Stand Alone
The FireEye HX series appliances enable security operations teams to correlate network and endpoint activity. Organizations can automatically investigate alerts generated by FireEye Threat Prevention Platforms, log management, and network security products, apply intelligence from FireEye to continuously validate Indicators of Compromises on the endpoints and identify if a compromise has occurred and assess the potential risk.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Cert. #C1720
CKG vendor affirmed
CVL Cert. #C1720
DRBG Certs. #C1720 and #C1934
DSA Cert. #C1720
ECDSA Cert. #C1720
HMAC Certs. #C1720 and #C1934
KAS-SSC vendor affirmed
KTS AES Cert. #C1720 and HMAC Cert. #C1720; key establishment methodology provides 128 or 256 bits of encryption strength
KTS Triple-DES Cert. #C1720 and HMAC Cert. #C1720; key establishment methodology provides 112 bits of encryption strength
RSA Cert. #C1720
SHS Certs. #C1720 and #C1934
Triple-DES Cert. #C1720
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
Hardware Versions
HX4402, HX4502, HX4502D
Firmware Versions


FireEye, Inc.
1440 McCarthy Ave.
Milipitas, CA 95035

Steve Lanser

Validation History

Date Type Lab
11/18/2021 Initial ACUMEN SECURITY, LLC