Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #3534

Details

Module Name

Cisco Systems Libreswan Cryptographic Module

Standard

FIPS 140-2

Status

Active

Sunset Date

11/1/2024

Validation Dates

11/02/2019;12/09/2020

Overall Level

Caveat

When operated in FIPS mode with module Cisco Systems NSS Module validated to FIPS 140-2 under Cert. #3554 operating in FIPS mode and Cisco FIPS Object Module validated to FIPS 140-2 under Cert. #2984 in FIPS mode.

Security Level Exceptions

Physical Security: N/A
Mitigation of Other Attacks: N/A

Module Type

Software

Embodiment

Multi-Chip Stand Alone

Description

The Cisco Systems Libreswan Cryptographic Module is a software library implementing the cryptographic algorithms. The module provides key derivation for the IKEv1 and IKEv2 protocols.

Tested Configuration(s)

CentOS Linux 7.4 running on Cisco UCS M4 with Intel Xeon E5-2600
CentOS Linux 7.4 running on Cisco UCS M5 with Intel Xeon Bronze

FIPS Algorithms

CVL	Cert. #C84
HMAC	Certs. #C8 and #C503
SHS	Certs. #C8 and #C503

Allowed Algorithms

N/A

Software Versions

3.20 and 3.25

Vendor

Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Related Files

Security Policy
Consolidated Certificate

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center