Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #3267

Details

Module Name

Cisco Adaptive Security Appliance (ASA) Virtual

Standard

FIPS 140-2

Status

Active

Sunset Date

8/22/2023

Validation Dates

08/23/2018

Overall Level

Caveat

When operated in FIPS mode

Security Level Exceptions

Roles, Services, and Authentication: Level 2
Physical Security: N/A
Mitigation of Other Attacks: N/A

Module Type

Software

Embodiment

Multi-Chip Stand Alone

Description

The market-leading Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA Virtual Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environments of all sizes.

Tested Configuration(s)

ASA Virtual 9.8 on NFVIS 3.5 running on ENCS-5412 (single-user mode)
ASA Virtual 9.8 on VMware ESXi 5.5 running on Cisco C220 M4
ASA Virtual 9.8 on VMware ESXi 6.0 running on Cisco C220 M4

FIPS Algorithms

AES	Cert. #5008
CKG	vendor affirmed
CVL	Cert. #1561
DRBG	Cert. #1828
ECDSA	Cert. #1277
HMAC	Cert. #3329
RSA	Cert. #2703
SHS	Cert. #4074
Triple-DES	Cert. #2584

Allowed Algorithms

Diffie-Hellman (CVL Cert. #1561, key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)

Software Versions

9.8

Vendor

Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Related Files

Security Policy
Consolidated Certificate

Lab

GOSSAMER SECURITY SOLUTIONS INC
NVLAP Code: 200997-0

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center