Module Name
MiniHSM & MiniHSM for nShield Edge F2
Caveat
When operated in FIPS mode and initialized to Overall Level 2 per Security Policy.
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: Level 3
- EMI/EMC: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
The MiniHSM and MiniHSM for nShield Edge F2 are fully featured HSMs supplied in a single chip package. The MiniHSM Modules offer all the security and key management features of other nShield modules but with reduced processing speed. The MiniHSM modules are OEM parts and will be included within other appliances or products, for example switches or routers. The MiniHSM modules have a real time clock which also makes them suitable for use as a time-stamping engine.
Approved Algorithms
AES |
Cert. #A1931 |
CKG |
vendor affirmed |
DRBG |
Cert. #A1931 |
DSA |
Cert. #A1931 |
ECDSA |
Cert. #A1931 |
ENT |
P |
HMAC |
Cert. #A1931 |
KAS |
Cert. #A1931 |
KBKDF |
Cert. #A1931 |
KTS |
AES Cert. #A1931; key establishment methodology provides between 112 and 256 bits of encryption strength |
KTS-RSA |
Cert. #A1931, key establishment methodology provides between 112 and 152 bits of encryption strength |
RSA |
Cert. #A1931 |
SHS |
Cert. #A1931 |
Triple-DES |
Cert. #A1931 |
Allowed Algorithms
EC Diffie-Hellman (shared secret computation provides between 112 and 256 bits of encryption strength); EC MQV (shared secret computation provides between 112 and 256 bits of encryption strength)
Hardware Versions
nC4031Z-10 and nC3021U-10, Build Standard N
Firmware Versions
12.72.0 and 12.72.2