Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #3387

Details

Module Name

NetApp CryptoMod

Standard

FIPS 140-2

Status

Active

Sunset Date

2/29/2024

Validation Dates

03/01/2019;09/13/2019;06/08/2020

Overall Level

Caveat

When operated in FIPS mode

Security Level Exceptions

Physical Security: N/A
Mitigation of Other Attacks: N/A

Module Type

Software

Embodiment

Multi-Chip Stand Alone

Description

NetApp CryptoMod will be integrated into NetApp ONTAP releases for the purpose of supporting FIPS 140-2 compliant data-at-rest encryption and key management.

Tested Configuration(s)

ONTAP 9.4 running on AFF A800 system with Intel Xeon Platinum 8160 with PAA
ONTAP 9.4 running on AFF A800 system with Intel Xeon Platinum 8160 without PAA
ONTAP 9.4 running on FAS2750 system with Intel Xeon D-1557 with PAA
ONTAP 9.4 running on FAS2750 system with Intel Xeon D-1557 without PAA (single-user mode)

FIPS Algorithms

AES	Cert. #5917
CKG	vendor affirmed
DRBG	Cert. #2477
HMAC	Cert. #3897
KTS	AES Cert. #5917; key establishment methodology provides 256 bits of encryption strength
PBKDF	vendor affirmed
SHS	Cert. #4673

Allowed Algorithms

NDRNG

Software Versions

2.1

Vendor

NetApp, Inc.
495 East Java Drive
Fourth Floor
Sunnyvale, CA 94089
USA

Mike Scanlin
Michael.Scanlin@netapp.com
Phone: 919.476.8578
Fax: 919.476.4272

Related Files

Security Policy
Consolidated Certificate

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center