Module Name
Cryptek Common Security Module (CSM)
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Design Assurance: Level 3
Embodiment
Multi-chip embedded
Description
The CSM is a secure network product designed to enforce three distinct information flow policies: Mandatory Access Control (MAC), Discretionary access Control (DAC), and Packet filtering. The design can support multiple security domains on a single network infrastructure by combining cryptography and labeling technology. The Cryptek CSM hardware and firmware constitute the core technology used in the DiamondLink, DiamondVPN, DiamondPAK, DiamondSAT, DiamondUTC, CL100, CL150, CL100-F, CP102, CP104, CP106, CV100, CS101, CS102, and CT100.
Approved Algorithms
HMAC-SHA-1 |
Cert. #63, vendor affirmed |
RNG |
Cert. #24 |
RSA |
Cert. #19 |
SHS |
Cert. #63 |
Triple-DES |
Cert. #71 |
Other Algorithms
DES (Cert. #132); DES MAC (Cert. #132, vendor affirmed); MD5; HMAC-MD5, Diffie-Hellman (key agreement)
Hardware Versions
5110N0017-1, 5110N0017-2, 5110N0017-3, 5110N0017-4
Firmware Versions
2.1.9 and 2.4.0.3