Module Name
F5® Device Cryptographic Module
Caveat
When operated in FIPS mode and when installed, initialized, and configured as specified in the section 8 of the Security Policy with tamper evident labels contained in F5-ADD-BIG-FIPS140 kit and installed as indicated in the Security Policy section 4.
Security Level Exceptions
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
F5® Device Cryptographic Module, Application Delivery Controller and Firewall software running on F5 BIG-IP.
Approved Algorithms
| AES |
Certs. #A1350 and #A1351 |
| CVL |
Certs. #A1350 and #A1351 |
| DRBG |
Certs. #A1350 and #A1351 |
| ECDSA |
Certs. #A1350 and #A1351 |
| ENT |
NP |
| HMAC |
Certs. #A1350 and #A1351 |
| KAS |
KAS-SSC Certs. #A1350 and #A1351, CVL Certs. #A1350 and #A1351 |
| KAS-SSC |
Certs. #A1350 and #A1351 |
| KTS |
AES Certs. #A1350 and #A1351; key establishment methodology provides 128 or 256 bits of encryption strength |
| KTS |
AES Certs. #A1350 and #A1351 and HMAC Certs. #A1350 and #A1351; key establishment methodology provides 128 or 256 bits of encryption strength |
| KTS |
AES Cert. #A1351 and HMAC Cert. #A1351; key establishment methodology provides between 128 and 256 bits of encryption strength |
| RSA |
Certs. #A1350 and #A1351 |
| SHS |
Certs. #A1350 and #A1351 |
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
Hardware Versions
BIG-IP i4600, BIG-IP i4800, BIG-IP i5600, BIG-IP i5800, BIG-IP i5820-DF, BIG-IP i7600, BIG-IP i7800, BIG-IP i7820-DF, BIG-IP i10600, BIG-IP i10800, BIG-IP i11600-DS, BIG-IP i11800-DS, BIG-IP i15600, BIG-IP i15800, BIG-IP 10350v-F, VIPRION B2250, VIPRION B4450 with FIPS Kit P/N: F5-ADD-BIG-FIPS140
Firmware Versions
15.1.2.1 EHF
