U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3053

Details

Module Name
CN Series Ethernet Encryptors
Standard
FIPS 140-2
Status
Active
Sunset Date
10/18/2022
Validation Dates
10/19/2017;12/08/2017;02/07/2018
Overall Level
3
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Cryptographic Module Ports and Interfaces: Level 3
  • Roles, Services, and Authentication: Level 3
  • Finite State Model: Level 3
  • Physical Security: Level 3
  • Operational Environment: Level 3
  • EMI/EMC: Level 3
  • Self-Tests: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: Level 3
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The CN4010, CN4020, CN6010 and CN6140 are high-speed hardware encryption platforms that secure data over twisted-pair and optical Ethernet networks. The modules support line rates from 10Mb/s to 10Gb/s. The CN4020, CN6010 and CN6140 are equipped with pluggable transceivers to support a variety of optical network interfaces. Data privacy is provided by FIPS approved AES algorithms in CFB, CTR and GCM modes. Additional transmission security is provided via TRANSEC (Traffic Flow Security) which can be used to remove patterns in network traffic and prevent traffic analysis attacks.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #4404, #4405, #4406, #4412, #4413 and #4553
CVL Cert. #1232
DRBG Cert. #1503
ECDSA Cert. #1108
HMAC Cert. #3007
KAS Cert. #123
RSA Cert. #2480
SHS Cert. #3731
Triple-DES Cert. #2424
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 150 bits of encryption strength)
Hardware Versions
Senetas Corp. Ltd. CN4000 Series: A4010B (DC), A4020B (DC); Senetas Corp. Ltd. CN6010 Series: A6010B (AC), A6011B (DC) and A6012B (AC/DC); Senetas Corp. Ltd. CN6140 Series: A6140B (AC), A6141B (DC) and A6142B (AC/DC); Senetas Corp. Ltd. & SafeNet Inc. CN4000 Series: A4010B (DC), A4020B (DC); Senetas Corp. Ltd. & SafeNet Inc. CN6010 Series: A6010B (AC), A6011B (DC) and A6012B (AC/DC); Senetas Corp. Ltd. & SafeNet Inc. CN6140 Series: A6140B (AC), A6141B (DC) and A6142B (AC/DC)
Firmware Versions
3.0.1 and 3.0.2
Product URL
http://www.senetas.com/products/cn-encryptors/

Vendor

Senetas Corporation Ltd, distributed by Gemalto NV (SafeNet)
312 Kings Way
South Melbourne, Victoria 3205
Australia

John Weston
john.weston@senetas.com
Phone: +61 3 9868 4555
Fax: +61 3 9821 4899
 Laurie Mack
SecurityCertifications@safenet-inc.com
Phone: 613-221-5065
Fax: 613-723-5079

Related Files

Security Policy
Consolidated Certificate

Lab

DXC Technology
NVLAP Code: 200996-0