Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: Level 3
- Mitigation of Other Attacks: N/A
Description
VaultIP is a Silicon IP Security Module with a secure asset store protecting all valuable assets on your device. It is a stand-alone Root of Trust that offers key management and crypto functions needed for platform and application security. VaultIP offers all security services to manage your device securely through its lifecycle. These include Secure Debug, Secure Provisioning, HUK and Identity protection and secure authentication services. Secure Boot and Communication protocols such as TLS can leverage VaultIP to secure the boot process and protect private communication keys.
FIPS Algorithms
| AES |
Certs. #C1224 and #C1242 |
| CKG |
vendor affirmed |
| CVL |
Cert. #C1224 |
| DRBG |
Cert. #C1224 |
| ECDSA |
Cert. #C1224 |
| ENT |
P |
| HMAC |
Cert. #C1224 |
| KBKDF |
Cert. #C1224 |
| KDA |
vendor affirmed |
| KTS |
AES Cert. #C1224; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
AES Cert. #C1224 and AES Cert. #C1224; key establishment methodology provides 256 bits of encryption strength |
| RSA |
Cert. #C1224 |
| SHS |
Cert. #C1224 |
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C1224 with SP 800-56C, vendor affirmed, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength)
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
