Module Name
Luna® PCI Cryptographic Module for Luna® IS
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Embodiment
Multi-chip embedded
Description
The Luna® PCI for Luna ® IS offers hardware-based key management and cryptographic operations to protect sensitive keys. The cryptographic boundary of the module is defined to encompass all components inside the secure enclosure on the PCI card.
Approved Algorithms
AES |
Certs. #510 and #511 |
DSA |
Cert. #211 |
ECDSA |
Cert. #52 |
HMAC |
Cert. #263 |
RNG |
Cert. #288 |
RSA |
Cert. #224 |
SHS |
Cert. #581 |
Triple-DES |
Certs. #520 and #521 |
Triple-DES MAC |
Triple-DES Certs. #520 and #521, vendor affirmed |
Other Algorithms
AES MAC (AES Certs. #510 and #511; non-compliant); DES; RC2; RC4; RC5; CAST; CAST3; CAST5; SEED; CAST5 in a CBC-MAC; MD2; MD5; HAS-160 (plain hash and HMAC); SSL3-MD5-MAC; SSL3-SHA1-MAC; SSL PRE-MASTER; PBE-MD2-DES; PBE-MD5-DES; PBE-MD5-CAST; PBE-MD5-CAST3; PBE-SHA-1-CAST5; KCDSA; Diffie-Hellman (key agreement; key establishment methodology provides 80 bits of encryption strength; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Hardware Versions
VBD-03-0100