U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3874

Details

Module Name
Cisco Catalyst 9800-CL Wireless Controller
Standard
FIPS 140-2
Status
Historical
 Historical Reason
SP 800-56Arev3 transition
Overall Level
1
Caveat
When installed, initialized and configured as specified in Section 11 of the Security Policy and operated in FIPS mode.
Security Level Exceptions
  • Roles, Services, and Authentication: Level 3
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Cisco Series Wireless Controllers, are a highly scalable and flexible platform that enables system-wide services for mission-critical wireless networking in medium-sized to large enterprises and campus environments.
Tested Configuration(s)
  • IOS-XE 16.12 on VMware ESXi v6 running on a UCS C220 M5 with Intel Xeon Platinum 8160M (single-user mode)
FIPS Algorithms
AES Certs. #5474, #C1280 and #C1452
CKG vendor affirmed
CVL Certs. #1926, #C1280 and #C1452
DRBG Certs. #2153 and #C1280
ECDSA Certs. #1465 and #C1280
HMAC Certs. #3629, #C1280 and #C1452
KTS AES Cert. #C1280 and HMAC Cert. #C1280; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #C1452; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #C1452 and HMAC Cert. #C1452; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Cert. #2754 and HMAC Cert. #C1452; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #2940 and #C1280
SHS Certs. #4392, #C1280 and #C1452
Triple-DES Certs. #2754 and #C1280
Allowed Algorithms
Diffie-Hellman (CVL Cert. #1280, key agreement; key establishment methodology provides 112 bits of encryption strength); Diffie-Hellman (CVL Cert. #1926 with CVL Cert. #C1452, key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C1280, key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #1926 with CVL Cert. #C1452, key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Software Versions
IOS-XE 16.12

Vendor

Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

Global Certification Team
certteam@cisco.com

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
3/29/2021 Initial ACUMEN SECURITY, LLC