U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3905

Details

Module Name
CN Series Encryptors
Standard
FIPS 140-2
Status
Historical
 Historical Reason
SP 800-56Arev3 transition
Overall Level
3
Caveat
When operated in FIPS mode
Module Type
Hardware
Embodiment
Multi-Chip Stand Alone
Description
The CN4010, CN4020, CN6010, CN6140, CN9100 and CN9120 are high-speed hardware encryption platforms that secure data over twisted-pair and optical Ethernet networks. The modules support line rates from 10Mb/s to 100Gb/s. All models except CN4010 are equipped with pluggable transceivers to support a variety of optical network interfaces. Data privacy is provided by FIPS approved AES algorithms in CFB, CTR and GCM modes. Additional transmission security is provided via TRANSEC (Traffic Flow Security) which can be used to remove patterns in network traffic and prevent traffic analysis attacks.
Tested Configuration(s)
  • N/A
FIPS Algorithms
AES Certs. #C1331, #C1332, #C1333, #C1334, #C1335, #C1336, #C1337, #C1338, #C1342, #C1343, #C1344, #C1345 and #C1346
CKG vendor affirmed
CVL Cert. #C1331
DRBG Cert. #C1331
ECDSA Cert. #C1331
HMAC Cert. #C1331
KAS Cert. #C1331
KBKDF Cert. #C1331
KTS vendor affirmed
KTS AES Cert. #C1331 and HMAC Cert. #C1331; key establishment methodology provides 256 bits of encryption strength
RSA Cert. #C2206
SHS Cert. #C1331
Triple-DES Cert. #C1331
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C1331, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides 112 bits of encryption strength)
Hardware Versions
Senetas Corp. Ltd. CN4000 Series: A4010B (DC) and A4020B (DC); Senetas Corp. Ltd. CN6000 Series: A6010B (AC), A6011B (DC), A6012B (AC/DC), A6140B (AC), A6141B (DC) and A6142B (AC/DC); Senetas Corp. Ltd. CN9000 Series: A9100B (AC), A9101B (DC), A9102B (AC/DC), A9120B (AC), A9121B (DC) and A9122B (AC/DC); Senetas Corp. Ltd. & SafeNet Inc. CN4000 Series: A4010B (DC) and A4020B (DC); Senetas Corp. Ltd. & SafeNet Inc. CN6000 Series: A6010B (AC), A6011B (DC), A6012B (AC/DC), A6140B (AC), A6141B (DC) and A6142B (AC/DC); Senetas Corp. Ltd. & SafeNet Inc. CN9000 Series: A9100B (AC), A9101B (DC), A9102B (AC/DC), A9120B (AC), A9121B (DC) and A9122B (AC/DC); Senetas Corp. Ltd. & Thales CN4000 Series: A4010B (DC) and A4020B (DC); Senetas Corp. Ltd. & Thales CN6000 Series: A6010B (AC), A6011B (DC), A6012B (AC/DC), A6140B (AC), A6141B (DC) and A6142B (AC/DC); Senetas Corp. Ltd. & Thales CN9000 Series: A9100B (AC), A9101B (DC), A9102B (AC/DC), A9120B (AC), A9121B (DC) and A9122B (AC/DC)
Firmware Versions
5.1.1
Product URL
http://www.senetas.com/products/cn-encryptors/

Vendor

Senetas Corporation Ltd., distributed by Thales SA (SafeNet)
312 Kings Way
South Melbourne, Victoria 3205
Australia

John Weston
john.weston@senetas.com
Phone: +61 3 9868 4555
Fax: +61 3 9821 4899
 Laurie Mack
SecurityCertifications@safenet-inc.com
Phone: 613-221-5065
Fax: 613-723-5079

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
4/22/2021 Initial Lightship Security, Inc.