Certificate 1453 - Luna PCI 7000 Cryptographic Module

intCertNum 1453 strVendorName SafeNet, Inc. strURL http://www.safenet-inc.com strAddress1 20 Colonnade Road strAddress2 Suite 200 strAddress3 strCity Nepean strStateProv Ontario strPostalCode K2E 7M6 strCountry K2E 7M6 strContact Terry Fletcher strEmail Terry.Fletcher@safenet-inc.com strPhone 613-221-5009 strFax 613-723-5079 strContact2 strEmail2 strFax2 strPhone2 intCertNum 1453 strModuleName Luna PCI 7000 Cryptographic Module strPartNumber Hardware Version: VBD-03-0100; Firmware Version: 4.8.1 or 4.8.2 memModuleNotes When operated in FIPS mode and configured to Overall Level 2 per Security Policy str140Version 140-2 _sp_ Security Policy   [pdf][html][txt] _cert_ Certificate   [pdf][txt] strPURL strModuleType Hardware strValidationDate 11/22/2010;02/10/2011;12/03/2012 intOverallLevel 2 memIndividualLevelNotes -Physical Security: Level 3;-EMI/EMC: Level 3;-Design Assurance: Level 3 strFIPSAlgorithms AES (Certs. #510 and #1298); Triple-DES (Certs. #520 and #912); Triple-DES MAC (Triple-DES Certs. #520 and #912, vendor affirmed); SHS (Cert. #1190); DSA (Cert. #420); RSA (Cert. #620); ECDSA (Cert. #154); HMAC (Cert. #755); RNG (Cert. #723) strOtherAlgorithms DES; RC2; RC4; RC5; CAST5; RSA X509; SEED; ARIA; MD2; MD5; HAS-160; AES MAC (AES Cert. #510; non-compliant); DES-MAC; RC2-MAC; RC5-MAC; CAST5-MAC; SSL3-MD5-MAC; SSL3-SHA1-MAC; KCDSA; AES (Certs. #510 and #1298, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Triple-DES (Certs. #520 and #912, key wrapping; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Diffie-Hellman (key agreement: key establishment methodology provides 80 bits of encryption strength; non-compliant); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement: key establishment methodology provides 80 bits of encryption strength; non-compliant) strConfiguration Multi-chip embedded memModuleDescription Luna PCI offers dedicated hardware key management to protect sensitive cryptographic keys from attack. The high-security hardware design ensures the integrity and protection of encryption keys throughout their life cycle. All digital signing and verification operations are performed within the HSM to increase performance and maintain security. Luna PCI HSMs provide hardware secured key generation, storage, secure key backup and accelerated encryption in a range of models and configurations offering a wide selection of security, performance and operational capabilities. intModuleCount 1 memAdditionalNotes 02/10/11: Added FW v4.8.2, added AES (Certs. #510 and #1298, key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength); Triple-DES (Certs. #520 and #912, key wrapping; key establishment methodology provides 80 or 112 bits of encryption strength) and updated Security Policy. 12/03/12: Modified module name and added Level 2 caveat. strFirstValidtionDate 11/22/10 00:00:00 strLabName EWA strValidationYear 2010