Module Name
Panorama 10.1 on Hardware Appliances
Caveat
When installed, initialized and configured as specified in Section 11 of the Security Policy. The tamper evident seals and Physical Kit installed as indicated in the Security Policy. The module generates SSPs (e.g., keys) whose strengths are modified by available entropy
Security Level Exceptions
- Roles, services, and authentication: Level 3
- Operational environment: N/A
- Non-invasive security: N/A
- Life-cycle assurance: Level 3
- Mitigation of other attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Panorama M-Series management appliances provide centralized management and visibility of Palo Alto Networks next generation firewalls. From a central location, you can gain insight into applications, users, and content traversing the firewalls. The knowledge of what is on the network, in conjunction with safe application enablement policies, maximizes protection and control while minimizing administrative effort. Your security team can centrally perform analysis, reporting, and forensics with the aggregated data over time, or on data stored on the local firewall.
Approved Algorithms
Conditioning Component AES-CBC-MAC SP800-90B
Safe Primes Key Generation
Safe Primes Key Verification
Hardware Versions
910-000176 with FIPS Kit 920-000208, 910-000073 with FIPS Kit 920-000145, 910-000175 with FIPS Kit 920-000209
