U.S. flag   An unofficial archive of your favorite United States government website
This is an archive
(replace .gov by .rip)

Cryptographic Module Validation Program CMVP

Certificate #3695

Details

Module Name
Cisco Firepower Threat Defense Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
8/5/2025
Validation Dates
08/06/2020
Overall Level
2
Caveat
When operated in FIPS mode and with the tamper evident seals and opacity shield installed as indicated in the Security Policy
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The 1K is a family of three platforms, 1010 for desktop and 1120 and 1140 for rack mount. While the 2K is a family of four threat-focused NGFW security rack mount platforms. These are all next generation security services platforms capable of running multiple (firewall (NGFW), traffic management) security services simultaneously.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #3301, #4905 and #C784
CVL Certs. #1521 and #C784
DRBG Certs. #819, #1735 and #C784
ECDSA Certs. #1254 and #C784
HMAC Certs. #2095, #3272 and #C784
RSA Certs. #2678 and #C784
SHS Certs. #2737, #4012 and #C784
Triple-DES Certs. #1881, #2559 and #C784
Allowed Algorithms
Diffie-Hellman (CVL Certs. #C784 and #1521, key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #C784 and #1521, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
FPR1010[1], FPR1120[2], FPR1140[2], FPR2110[3], FPR2120[3], FPR2130[3] and FPR2140[3] with FIPS Kit (AIR-AP-FIPSKIT=) and Opacity Shield 800-44098-01[1], 800-45098-01[2] and 69-100250-01[3]
Firmware Versions
6.4

Vendor

Cisco Systems, Inc.
170 W Tasman Drive
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Lab

GOSSAMER SECURITY SOLUTIONS INC
NVLAP Code: 200997-0