Certificate 1030 - Cisco 2811 and Cisco 2821 Integrated Services Routers with AIM-VPN/SSL-2
intCertNum 1030
strVendorName Cisco Systems, Inc.
strURL http://www.cisco.com
strAddress1 170 West Tasman Drive
strAddress2
strAddress3
strCity San Jose
strStateProv CA
strPostalCode 95134
strCountry 95134
strContact Global Certification Team
strEmail certteam@cisco.com
strPhone
strFax
strContact2
strEmail2
strFax2
strPhone2
intCertNum 1030
strModuleName Cisco 2811 and Cisco 2821 Integrated Services Routers with AIM-VPN/SSL-2
strPartNumber Hardware Versions: 2811 and 2821, AIM Version: 1.0, Board Version: 01;
Firmware Versions: 12.4(15)T3[1] and 12.4(15)T10[2]
memModuleNotes When operated in FIPS mode
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf][txt]
strPURL
strModuleType Hardware
strValidationDate 10/07/2008;08/28/2009;10/23/2009;05/28/2010;02/23/2012
intOverallLevel 2
memIndividualLevelNotes
strFIPSAlgorithms AES (Certs. #173, #265, #795 [1] and Cert. #1199 [2]);
HMAC (Certs. #39, #77, #436 [1] and Cert. #696 [2]);
RNG (Certs. #83, #456 [1] and Cert. #663 [2]);
RSA (Certs. #379 [1], #382 [1] and Cert. #576 [2]);
SHS (Certs. #258, #344, #794 [1] and Cert. #1104 [2]);
Triple-DES (Certs. #275, #347, #683 [1] and Cert. #867 [2])
strOtherAlgorithms Diffie-Hellman (key agreement: key establishment methodology provides 80 or 96 bits of encryption strength;
non-compliant);
RSA (key wrapping;
key establishment methodology provides 112 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
MD5;
HMAC-MD5;
RC4;
DES
strConfiguration Multi-chip standalone
memModuleDescription The Cisco 2800 Series features the ability to deliver multiple high-quality simultaneous services at wire speeds up to multiple T1/E1/xDSL connections. The Cisco 2800 Series routers offer embedded encryption acceleration on the motherboard. For additional performance, the Cisco 2811 and 2821 routers feature the ability to optionally add encryption acceleration advanced integration modules (AIM-VPN/SSL-2).
intModuleCount 1
memAdditionalNotes 08/28/09: Get VPN (GDOI) service has been annotated as a FIPS approved service with updated Security Policy.
10/23/09: Added FW v12.4(15)T10, added algorithm certificate references and updated Security Policy.
05/28/10: Updated POC1
02/23/12: Updated security policy.
strFirstValidtionDate 10/07/08 00:00:00
strLabName Leidos
strValidationYear 2008