Module Name
Vocera Cryptographic Module
Caveat
When configured and initialized as specified in the Security Policy.
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Vocera C1000 Module is a firmware module that provides the cryptographic primitives (including encryption/decryption, hashing, digital signature functions, and key derivation) needed to support secure communication services to the system.
Tested Configuration(s)
- Vocera C1000 Badge running Vocera’s proprietary BadgeOS 6.0 on NXP i.MX 6 processor
Approved Algorithms
|
|
AES |
Certs. #A2059 |
CVL |
Certs. #A2059 |
ECDSA |
Certs. #A2059 |
HMAC |
Certs. #A2059 |
KAS-SSC |
Cert. #A2059 |
KTS |
AES Cert. #A2059; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #A2059 and HMAC Cert. #A2059; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Certs. #A2059 |
SHS |
Certs. #A2059 |
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 152 bits of encryption strength)