U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #2910

Details

Module Name
Huawei S12700 Series Switches
Standard
FIPS 140-2
Status
Active
Sunset Date
5/14/2022
Validation Dates
05/15/2017
Overall Level
2
Caveat
When operated in FIPS mode and with the tamper evident seals installed as indicated in the Security Policy. The protocol SNMP shall not be used when operated in FIPS mode.
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
Huawei S12700 series agile switches are core switches designed for next-generation campus networks. Using a fully programmable switching architecture, the S12700 series allows fast, flexible function customization and supports a smooth evolution to software-defined networking (SDN) The S12700 series uses Huawei Ethernet Network Processor (ENP) and provides native wireless access controller (AC) to help build a wired and wireless converged network. Its uniform user management capabilities deliver refined user and service management.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Cert. #4400
CKG vendor affirmed
CVL Cert. #1107
DRBG Cert. #1418
DSA Cert. #1175
ECDSA Cert. #1057
HMAC Cert. #2924
KTS AES Cert. #4400 and HMAC Cert. #2924; key establishment methodology provides 128 or 256 bits of encryption strength
KTS Triple-DES Cert. #2372 and HMAC Cert. #2924; key establishment methodology provides 112 bits of encryption strength
RSA Cert. #2380
SHS Cert. #3627
Triple-DES Cert. #2372
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); HMAC-SHA-1-96 (HMAC Cert. #2924); MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength); AES-XCBC-MAC (non-compliant); DES; HMAC-MD5; RC4; SNMP KDF (non-compliant)
Hardware Versions
S12704 P/N 02114480 Version E.3, S12708 P/N 02114178 Version Q.3 and S12712 P/N 02114180 Version P.3 all with MPU P/N 03030RPE, SFU P/N 03030RPF, LPU P/N 03030SGN and Tamper Seals P/N 4057-113016
Firmware Versions
V200R010C00SPC900B900
Product URL
http://support.huawei.com/enterprise/en/newindex.html

Vendor

Huawei Technologies Co., Ltd.
101 Software Avenue
Yuhuatai District
NANJING, JIANGSU 210000
CHINA

Yang Ze (Allen)
yangze1@huawei.com
Phone: +86 15919432118
 Liu Pinping
liupinping@huawei.com
Phone: +86 15850529039

Related Files

Security Policy
Consolidated Certificate

Lab

UL VERIFICATION SERVICES INC
NVLAP Code: 100432-0