U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3486

Details

Module Name
Enterprise Secure Key Manager
Standard
FIPS 140-2
Status
Active
Sunset Date
7/9/2024
Validation Dates
07/10/2019;04/22/2020
Overall Level
2
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
Utimaco Enterprise Secure Key Manager (ESKM) provides key generation, retrieval, and management for encryption devices and solutions. ESKM is a hardened security appliance with secure access control, administration, and logging. ESKM supports high availability with automatic multi-site clustering, replication, and failover.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Cert. #5951
CKG vendor affirmed
CVL Certs. #2186, #2187, #2188, #2189, #2190 and #C235
DRBG Certs. #2501 and #2502
DSA Cert. #C235
ECDSA Cert. #1597
HMAC Cert. #3923
KTS AES Cert. #5951 and HMAC Cert. #3923; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #5951; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Cert. #5951; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Cert. #2899 and HMAC Cert. #3923; key establishment methodology provides 112 bits of encryption strength
RSA Cert. #C235
SHS Cert. #4703
Triple-DES Cert. #2899
Allowed Algorithms
Diffie-Hellman (CVL Certs. #C235 and #2190; key agreement; key establishment methodology provides between 112 and 200 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #2186 and #2187; key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #2186 and #2190; key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG; RSA (CVL Cert. #2188, key wrapping; key establishment methodology provides between 112 and 152 bits of encryption strength)
Hardware Versions
HW-ESKM-V1 , Version 5.1 or 5.3
Firmware Versions
7.3.1 or 7.3.0

Vendor

Utimaco Inc.
900 East Hamilton Ave
Suite 400
Campbell, CA 95008
USA

John Lewis
John.Lewis@utimaco.com
Phone: +1 669-255-4450

Related Files

Security Policy
Consolidated Certificate

Lab

LEIDOS CSTL
NVLAP Code: 200427-0