Module Name
GSP3000 Hardware Security Module
Caveat
When operated in FIPS mode
Embodiment
Multi-Chip Embedded
Description
The GSP3000 Hardware Security Module (HSM) is a multi-chip embedded cryptographic module that provides secure data storage and crypto-processing functionality. The module is assembled from production quality components. All sensitive components of the module are physically protected by a tamper resistant, responsive, and evident casing where all cryptographic operations are performed.
Approved Algorithms
AES |
Certs. #C2004 and #C2005 |
CKG |
vendor affirmed |
CVL |
Cert. #C2004 |
DRBG |
Cert. #C2004 |
ECDSA |
Cert. #C2004 |
HMAC |
Cert. #C2004 |
KAS-SSC |
vendor affirmed |
KBKDF |
Cert. #C2005 |
KDA |
vendor affirmed |
KTS |
AES Cert. #C2005; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #C2004 and HMAC Cert. #C2004; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #C2004 and AES Cert. #C2004; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Cert. #C2003 |
SHS |
Cert. #C2003 |
Allowed Algorithms
MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
P/Ns 9800-2079 Rev7, Rev8, Rev8C, Rev8D, Rev9A.A, Rev9B.A, Rev9C.A, Rev9D.A, Rev9A.B, Rev9B.B, Rev9C.B, Rev9D.B, Rev11A.A, Rev11B.A, Rev11C.A or Rev11D.A
Firmware Versions
7.0.0.4