Module Name
CyberCogs Hardware Security Module
Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: Level 4
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
The CyberCogs HSM is a multi-chip embedded hardware cryptographic module in the form of a PCI-Express card. The module is intended for use within a general-purpose or custom computing platform. The module is contained in its own secure tamper envelope providing active anti-tamper functionality. The module is designed to offer blind secure PKCS11 key signing, encryption, and token storage with physical security, over a PCIe connection to a Host server.
Approved Algorithms
AES |
Certs. #A1438 and #A1468 |
CKG |
vendor affirmed |
CVL |
Cert. #A1438 |
DRBG |
Certs. #A1438 and #C1777 |
ECDSA |
Cert. #A1438 |
ENT |
P |
HMAC |
Cert. #A1438 |
KAS |
Cert. #A1438 |
KAS |
KAS-SSC Cert. #A1438, KDA Cert. #A1468 |
KAS-SSC |
Cert. #A1438 |
KBKDF |
Cert. #A1468 |
KDA |
Cert. #A1468 |
KTS |
AES Cert. #A1438 |
KTS |
AES Cert. #A1468; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #A1438 and AES Cert. #A1438 |
KTS |
AES Cert. #A1468 and HMAC Cert. #A1438 |
KTS-RSA |
Cert. #A1438; key establishment methodology provides between 112 and 192 bits of encryption strength |
PBKDF |
Cert. #A1438 |
RSA |
Cert. #A1438 |
SHA-3 |
Certs. #20 and #A1438 |
SHS |
Cert. #A1438 |
Allowed Algorithms
EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); ECDSA
Hardware Versions
CC50-3, CC100-3, CC200-3, CC300-3, CC400-3, CC50-4, CC100-4, CC200-4, CC300-4 and CC400-4