Module Name
3e-636 CyberFence Cryptographic Module
Security Level Exceptions
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
3eTI’s 636 Series Network Security Devices offer the multiple capabilities necessary for protecting embedded devices and safety-critical industrial control systems (ICS) against internal and external attacks. The core capabilities include VPN encryption, VLAN encryption, network access control, OSI Layer 2 and Layer 3 packet filtering, industrial control protocols packet inspection and secured application data transportation (via encryption).
Approved Algorithms
AES |
Certs. #A1701 and #A1702 |
CVL |
Cert. #A1702 |
DRBG |
Cert. #A1702 |
ECDSA |
Cert. #A1702 |
ENT |
P |
HMAC |
Certs. #A1701 and #A1702 |
KAS |
KAS-SSC Cert. #A1702, CVL Cert. #A1702 |
KAS-SSC |
Cert. #A1702 |
KTS |
AES Cert. #A1702 and HMAC Cert. #A1702; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Cert. #A1702 |
SHS |
Certs. #A1701, #A1702 and #A2324 |
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)