Certificate 1197 - nShield F3 6000e, nShield F3 1500e, nShield F3 500e, nShield F3 10e, nShield F3 6000e for nShield Connect, nShield F3 1500e for nShield Connect and nShield F3 500e for nShield Connect
intCertNum 1197
strVendorName Thales - nCipher
strURL http://www.nCipher.com
strAddress1 92 Montvale Ave
strAddress2 Suite 4500
strAddress3
strCity Stoneham
strStateProv MA
strPostalCode 02180
strCountry 02180
strContact sales@ncipher.com
strEmail sales@ncipher.com
strPhone 800-NCIPHER
strFax 781-994-4001
strContact2
strEmail2
strFax2
strPhone2
intCertNum 1197
strModuleName nShield F3 6000e, nShield F3 1500e, nShield F3 500e, nShield F3 10e, nShield F3 6000e for
nShield Connect, nShield F3 1500e for nShield
Connect and nShield F3 500e for nShield Connect
strPartNumber Hardware Versions: nC4033E-6K0, nC4033E-1K5, nC4033E-500, nC4033E-030, nC4033E-6K0N, nC4033E-1K5N and nC4033E-500N, Build Standard N;
Firmware Versions: 2.38.4-3 and 2.38.7-3
memModuleNotes When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf][txt]
strPURL http://www.ncipher.com/en/Products/Hardware Security Modules/nShield.aspx
strModuleType Hardware
strValidationDate 10/06/2009;12/08/2009;02/17/2010
intOverallLevel 3
memIndividualLevelNotes
strFIPSAlgorithms AES (Certs. #994 and #397);
AES GCM (Cert. #994, vendor affirmed);
Triple-DES (Certs. #775 and #435);
Triple-DES MAC (Cert. #775, vendor affirmed);
DSA (Cert. #341);
ECDSA (Cert. #121);
SHS (Cert. #960);
HMAC (Cert. #560);
RSA (Cert. #478);
RNG (Cert. #564)
strOtherAlgorithms ARC FOUR;
Aria;
Camellia;
CAST 6;
DES;
MD5;
SEED;
HMAC-MD5, HMAC-Tiger, HMAC-RIPEMD160;
RIPEMD 160;
Tiger;
El-Gamal;
KCDSA;
HAS 160;
AES (Cert. #994, key wrapping;
key establishment methodology provides between 128 and 256 bits of encryption strength);
Diffie-Hellman (key agreement: key establishment methodology provides between 112and 256 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
EC Diffie-Hellman (key agreement: key establishment methodology provides 192 bits of encryption strength);
RSA (key wrapping;
key establishment methodology provides between 112 and 256 bits of encryption strength;
non-compliant less than 112 bits of encryption strength), ECMQV (key agreement: key establishment methodology provides between 112 and 256 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
NDRNG;
DSA (FIPS 186-3;
non-compliant);
ECDSA (FIPS 186-3;
non-compliant)
strConfiguration Multi-chip embedded
memModuleDescription The nCipher modules: nShield F3 6000e, Shield F3 1500e, nShield F3 500e, nShield 10e, nShield F3 6000e for nShield Connect, nShield F3 1500e for nShield
Connect and nShield F3 500e for nShield Connect family of secure e-commerce HSM's are multi-tasking hardware modules that is optimized for performing modular arithmetic on very large integers. The nCipher modules are FIPS 140-2 level 3 embedded devices. The units are identical in operation and only vary in the processing speed.
intModuleCount 1
memAdditionalNotes 12/08/09: Added modules nShield F3 6000e for nShield Connect, nShield F3 1500e for nShield Connect and nShield F3 500e for nShield Connect and updated Security Policy.
02/17/10: Added firmware v2.38.7-3 and updated Security Policy.
strFirstValidtionDate 10/06/09 00:00:00
strLabName DOMUS
strValidationYear 2009