U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3596

Details

Module Name
Cryptographic Module for BIG-IP ®
Standard
FIPS 140-2
Status
Active
Sunset Date
1/8/2025
Validation Dates
01/09/2020;06/29/2020
Overall Level
1
Caveat
When operated in FIPS Mode
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
Cryptographic library offering various cryptographic mechanisms to BIG-IP Virtual Edition.
Tested Configuration(s)
  • BIG-IP 14.1.0.3 on Hyper-V 10.0 on Windows Server 2019 running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [1]
  • BIG-IP 14.1.0.3 on Hyper-V 10.0 on Windows Server 2019 running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [2]
  • BIG-IP 14.1.0.3 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [1]
  • BIG-IP 14.1.0.3 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [1]
  • BIG-IP 14.1.2 on Hyper-V 10.0 on Windows Server 2019 running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [2]
  • BIG-IP 14.1.2 on Hyper-V 10.0 on Windows Server 2019 running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [2]
  • BIG-IP 14.1.2 on KVM Centos 7.0 running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [2]
  • BIG-IP 14.1.2 on KVM Centos 7.0 running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [2] (single-user mode)
  • BIG-IP 14.1.2 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with an Intel Xeon E5 with PAA [2]
  • BIG-IP 14.1.2 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with an Intel Xeon E5 without PAA [2]
FIPS Algorithms
AES Certs. #C694 and #C695
CVL Cert. #C694
DRBG Certs. #C694 and #C695
ECDSA Cert. #C694
HMAC Certs. #C694 and #C695
KTS AES Certs. #694 and #C695; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Cert. #C694
SHS Certs. #C694 and #C695
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C694; shared secret computation provides 128 or 192 bits of encryption strength); NDRNG
Software Versions
14.1.0.3 [1] and 14.1.2 [2]

Vendor

F5 Networks
401 Elliott Avenue West
Seattle, WA 98119
USA

Maryrita Steinhour
m.steinhour@f5.com
Phone: 206-272-7351
Fax: n/a
 Eric Raisters
E.Raisters@f5.com
Phone: 206-272-7580
Fax: n/a

Related Files

Security Policy
Consolidated Certificate

Lab

ATSEC INFORMATION SECURITY CORP
NVLAP Code: 200658-0