Module Name
Enterprise Secure Key Manager
Validation Dates
03/10/2017;12/14/2017;12/04/2018
Caveat
When operated in FIPS mode
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Utimaco Enterprise Secure Key Manager (ESKM) provides key generation, retrieval, and management for encryption devices and solutions. ESKM is a hardened security appliance with secure access control, administration, and logging. ESKM supports high availability with automatic multi-site clustering, replication, and failover.
FIPS Algorithms
AES |
Cert. #3995 |
CVL |
Certs. #820, #821, #822, #823 and #842 |
DRBG |
Certs. #1185 and #1186 |
ECDSA |
Cert. #889 |
HMAC |
Cert. #2609 |
KTS |
AES Cert #3995; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert #3995 and HMAC Cert. #2609; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
Triple-DES Cert #2194 and HMAC Cert. #2609; key establishment methodology provides 112 bits of encryption strength |
RSA |
Cert. #2051 |
SHS |
Cert. #3297 |
Triple-DES |
Cert. #2194 |
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #842; key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); DES; MD5; RC4; RSA (encrypt/decrypt)
Hardware Versions
P/N M6H81AA , Version 5.0