Module Name
Cisco ASA Cryptographic Module
Validation Dates
01/06/2021
Caveat
When operated in FIPS mode. When installed, initialized and configured as specified in Section 3 of the Security Policy
Security Level Exceptions
- Roles, Services, and Authentication: Level 3
- Design Assurance: Level 2
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Embedded
Description
The market-leading Cisco ASA delivering robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA provides comprehensive security, performance, and reliability for network environments.
FIPS Algorithms
| AES |
Certs. #2034, #2035, #4905, #C784 and #C1026 |
| CVL |
Certs. #1521 and #C784 |
| DRBG |
Certs. #197, #1735, #C784 and #C1026 |
| ECDSA |
Certs. #1254 and #C784 |
| HMAC |
Certs. #1233, #3272, #C784 and #C1026 |
| RSA |
Certs. #2678 and #C784 |
| SHS |
Certs. #1780, #4012, #C784 and #C1026 |
| Triple-DES |
Certs. #1311, #2559, #C784 and #C1026 |
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1521 and #C784, key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
FPR4110-ASA-K9, FPR4115-ASA-K9, FPR4120-ASA-K9, FPR4125-ASA-K9, FPR4140-ASA-K9, FPR4145-ASA-K9, FPR4150-ASA-K9, FPR9K-SM-24, FPR9K-SM-36, FPR9K-SM-40, FPR9K-SM-44, FPR9K-SM-48 and FPR9K-SM-56
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
