Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #3225

Details

Module Name

Cisco ASA Cryptographic Module

Standard

FIPS 140-2

Status

Active

Sunset Date

7/10/2023

Validation Dates

07/11/2018

Overall Level

Caveat

When operated in FIPS mode

Security Level Exceptions

Roles, Services, and Authentication: Level 3
Design Assurance: Level 2
Mitigation of Other Attacks: N/A

Module Type

Hardware

Embodiment

Multi-Chip Embedded

Description

The market-leading Cisco ASA delivering robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA provides comprehensive security, performance, and reliability for network environments.

Tested Configuration(s)

FIPS Algorithms

AES	Certs. #2034, #2035 and #4905
CKG	vendor affirmed
CVL	Cert. #1521
DRBG	Certs. #197 and #1735
ECDSA	Cert. #1254
HMAC	Certs. #1233 and #3272
RSA	Cert. #2678
SHS	Certs. #1780 and #4012
Triple-DES	Certs. #1311 and #2559

Allowed Algorithms

Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)

Hardware Versions

FPR4110-ASA-K9, FPR4120-ASA-K9, FPR4140-ASA-K9, FPR4150-ASA-K9, FPR9K-SM-24 (SM-24), FPR9K-SM-36 (SM-36) and FPR9K-SM-44 (SM-44)

Firmware Versions

9.8

Vendor

Cisco Systems, Inc.
170 W Tasman Drive
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Related Files

Security Policy
Consolidated Certificate

Lab

GOSSAMER SECURITY SOLUTIONS INC
NVLAP Code: 200997-0

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center