Module Name
Ciena Waveserver Ai WCS-2 Module
Validation Dates
09/16/2019;02/21/2020;05/22/2020;08/28/2020
Caveat
When installed, initialized and configured as specified in Section 12 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
The Ciena Waveserver Ai, with WCS2 and Encryption cards, offers a Layer 1 AES-256-GCM encryption solution for 100GE clients supporting 100Gbs to 400Gb/s wirespeed encryption per line port for enterprises, datacenters and government deployments.
FIPS Algorithms
| AES |
Certs. #4438, #C125 and #C193 |
| CKG |
Vendor Affirmed |
| CVL |
Cert. #C193 |
| DRBG |
Certs. #C125 and #C193 |
| ECDSA |
Cert. #C193 |
| HMAC |
Certs. #C125 and #C193 |
| KAS |
Cert. #C193 |
| KTS |
AES Certs. #4438 and #C193 |
| KTS |
AES Cert. #C193 and HMAC Cert. #C193 |
| RSA |
Cert. #C193 |
| SHS |
Certs. #C125 and #C193 |
Allowed Algorithms
Diffie-Hellman (CVL Cert. #C193, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C193, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits or 128 bits of encryption strength);
Hardware Versions
186-1034-411-EB, Revision 002 with PCB P/N: 186-1034-210 Revision 001 [1], [2], [3], 186-1034-411-EB, Revision 003 with PCB P/N: 186-1034-210 Revision 001 [2], [3], or 186-1034-411-EB, Revision 004 with PCB P/N: 186-1034-210 Revision 001 [2], [3]
Firmware Versions
1.3.5 [1], 1.3.6 [2] or 1.3.61 [3]
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
