Module Name
Palo Alto Networks Cortex XSOAR Module
Validation Dates
02/05/2021
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy.
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Cortex™ XSOAR by Palo Alto Networks is a comprehensive security orchestration, automation and response (SOAR) platform that unifies case management, automation, real-time collaboration and threat intel management to serve security teams across the incident lifecycle.
Tested Configuration(s)
- CentOS 7.7 on Vmware ESXi 6.5 running on Dell R730 Server with Intel Xeon E5 with PAA
- CentOS 7.7 on Vmware ESXi 6.5 running on Dell R730 Server with Intel Xeon E5 without PAA (single-user mode)
- Red Hat 7.7 on Vmware ESXi 6.5 running on Dell R730 Server with Intel Xeon E5 with PAA
- Red Hat 7.7 on Vmware ESXi 6.5 running on Dell R730 Server with Intel Xeon E5 without PAA
FIPS Algorithms
| AES |
Cert. #C1750 |
| DRBG |
Cert. #C1750 |
| ECDSA |
Cert. #C1750 |
| HMAC |
Cert. #C1750 |
| KTS |
AES Cert. #C1750; key establishment methodology provides 128 or 256 bits of encryption strength |
| RSA |
Cert. #C1750 |
| SHS |
Cert. #C1750 |
| Triple-DES |
Cert. #C1750 |
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
