Module Name
nShield F3 10+ 500+ 6000+ & nShield F3 500+ 1500+ 6000+ for nShield Connect+, Connect CLX and HSMi
Caveat
When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
Security Level Exceptions
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
The nShield modules: nShield F3 10+ 500+ 6000+ & nShield F3 500+ 1500+ 6000+ for nShield Connect+, Connect CLX and HSMi are tamper evident and tamper responsive Hardware Security Modules which provide support for the widest range of cryptographic algorithms, application programming interfaces (APIs) and host operating systems, enabling the devices to be used with virtually any business application. The units are identical in operation and only vary in the processing speed.
Approved Algorithms
AES |
Cert. #A1931 |
CKG |
vendor affirmed |
DRBG |
Cert. #A1931 |
DSA |
Cert. #A1931 |
ECDSA |
Cert. #A1931 |
ENT |
P |
HMAC |
Cert. #A1931 |
KAS |
Cert. #A1931 |
KBKDF |
Cert. #A1931 |
KTS |
AES Cert. #A1931; key establishment methodology provides between 112 and 256 bits of encryption strength |
KTS-RSA |
Cert. #A1931, key establishment methodology provides between 112 and 152 bits of encryption strength |
RSA |
Cert. #A1931 |
SHS |
Cert. #A1931 |
Allowed Algorithms
EC Diffie-Hellman (shared secret computation provides between 112 and 256 bits of encryption strength); EC MQV (shared secret computation provides between 112 and 256 bits of encryption strength)
Hardware Versions
nC4033E-010, nC4433E-500, nC4433E-6K0, nC4433E-500N, nC4433E-1K5N and nC4433E-6K0N, Build Standard N
Firmware Versions
12.72.0