Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4516

Details

Module Name
Cisco ASR 9000 Aggregated Services Routers
Standard
FIPS 140-2
Status
Active
Sunset Date
9/21/2026
Overall Level
1
Caveat
When operated in FIPS mode. This module contains the embedded module ACT2Lite validated to FIPS 140-2 under Cert. #3637 operating in FIPS mode.
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The Cisco ASR 9000 Aggregated Services Routers accelerate services by offering performance and resiliency with optimized, intelligent services; establishing a benchmark for price-to-performance offerings in the enterprise routing, service provider edge, and broadband aggregation segments; facilitating significant network innovations in areas such as secure WAN aggregation, managed customer-premises-equipment services, and service provider edge services; reducing operating expenses and capital expenditures by facilitating managed or hosted services over identical architectures and operating env
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Cert. #A2414
CKG vendor affirmed
CVL Cert. #A2414
DRBG Cert. #A2414
ECDSA Cert. #A2414
HMAC Cert. #A2414
KAS KAS-SSC Cert. #A2414, CVL Cert. #A2414; key establishment methodology provides between 112 and 256 bits of encryption strength
KAS-SSC Cert. #A2414
KTS AES Cert. #A2414 and HMAC Cert. #A2414; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Cert. #A2414
SHS Cert. #A2414
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
Hardware Versions
[ASR-9006-SYS with components A9K-RSP5-TR, A9K-RSP880-TR, A9K-16X100GE-TR], [ASR-9010-SYS with components A9K-RSP5-TR, A9K-RSP880-TR, A9K-16X100GE-TR], ASR-9901, [ASR-9904 with components A9K-RSP5-TR, A9K-RSP880-TR, A9K-16X100GE-TR, A99-8X100GE-TR, A99-12X100GE, A99-32X100GE-TR], [ASR-9906 with components A9K-RSP5-TR, A9K-16X100GE-TR, A99-8X100GE-TR, A99-12X100GE, A99-32X100GE-TR], [ASR-9910 with components A9K-RSP5-TR, A9K-16X100GE-TR, A99-8X100GE-TR, A99-12X100GE, A99-32X100GE-TR], [ASR-9912 with components A99-RP3-TR, A9K-16X100GE-TR, A99-8X100GE-TR, A99-12X100GE, A99-32X100GE-TR] and [ASR-9922 with components A99-RP3-TR, A9K-16X100GE-TR, A99-8X100GE-TR, A99-12X100GE, A99-32X100GE-TR]
Firmware Versions
IOS-XR 7.1.2

Vendor

Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Validation History

Date Type Lab
5/8/2023 Initial ACUMEN SECURITY, LLC