Module Name
nShield F2 500+ & nShield F2 1500+ & nShield F2 6000+
Caveat
When operated in FIPS mode and initialized to Overall Level 2 per Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Physical Security: Level 3
- EMI/EMC: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
The nShield modules: nShield F2 500+ & nShield F2 1500+ & nShield F2 6000+ family of secure e-commerce HSMs are multi-tasking hardware modules that are optimized for performing modular arithmetic on very large integers. The nShield modules are FIPS 140-2 level 2 embedded devices. The units are identical in operation and only vary in the processing speed.
Approved Algorithms
| AES |
Cert. #A1931 |
| CKG |
vendor affirmed |
| DRBG |
Cert. #A1931 |
| DSA |
Cert. #A1931 |
| ECDSA |
Cert. #A1931 |
| ENT |
P |
| HMAC |
Cert. #A1931 |
| KAS |
Cert. #A1931 |
| KBKDF |
Cert. #A1931 |
| KTS |
AES Cert. #A1931; key establishment methodology provides between 112 and 256 bits of encryption strength |
| KTS-RSA |
Cert. #A1931, key establishment methodology provides between 112 and 152 bits of encryption strength |
| RSA |
Cert. #A1931 |
| SHS |
Cert. #A1931 |
| Triple-DES |
Cert. #A1931 |
Allowed Algorithms
EC Diffie-Hellman (shared secret computation provides between 112 and 256 bits of encryption strength); EC MQV (shared secret computation provides between 112 and 256 bits of encryption strength)
Hardware Versions
nC3423E-500, nC3423E-1K5 and nC3423E-6K0, Build Standard N
Firmware Versions
12.72.0
