Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #4633

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

ASI-HSM AHX5 KNET Cryptographic Module

Standard

FIPS 140-2

Status

Historical

Historical Reason

Moved to historical list due to sunsetting

Overall Level

Caveat

When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy.

Security Level Exceptions

Mitigation of Other Attacks: N/A

Module Type

Hardware

Embodiment

Multi-Chip Embedded

Description

The module exists to provide cryptographic services to applications running on behalf of its users which communicate with it via a standard Ethernet interface using IP protocols. In order to provide these services, the module also requires a power supply. The module is usually sold embedded within a stand-alone network appliance. That appliance is typically used in large-scale cloud infrastructures, where ease of remote configuration and operation is required.

Tested Configuration(s)

Approved Algorithms

AES	Cert. #A3223
CKG	Vendor Affirmed
CVL	Cert. #A3223
DRBG	Cert. #349
DSA	Cert. #A3223
ECDSA	Cert. #A3223
HMAC	Cert. #A3223
KAS	KAS-SSC Cert. #A3223, CVL Cert. #A3223
KAS-SSC	Cert. #A3223
KTS	AES Cert. #A3223; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA	Cert. #A3223
SHS	Cert. #A3223
Triple-DES	Cert. #A3223

Allowed Algorithms

NDRNG

Hardware Versions

1.0.1

Firmware Versions

1.0.1

Vendor

KRYPTUS S.A.
Rua Maria Tereza Dias da Silva, 270
Campinas, Sau Paulo
Brazil

Sales Department
[email protected]
Phone: +55 19 3112-5000

Related Files

Security Policy
Consolidated Certificate

Validation History

Date	Type	Lab
10/11/2023	Initial	EWA - Canada