Certificate 1742 - nShield F3 6000e [1], nShield F3 1500e [2], nShield F3 500e [3], nShield F3 10e [4], nShield F3 6000e for nShield Connect [5], nShield F3 1500e for nShield Connect [6] and nShield F3 500e for nShield Connect [7]
intCertNum 1742
strVendorName Thales e-Security Inc.
strURL http://www.thales-esecurity.com
strAddress1 900 South Pine Island Road
strAddress2 Suite 710
strAddress3
strCity Plantation
strStateProv FL
strPostalCode 33324
strCountry 33324
strContact sales@thalesesec.com
strEmail sales@thalesesec.com
strPhone 888-744-4976
strFax
strContact2
strEmail2
strFax2
strPhone2
intCertNum 1742
strModuleName nShield F3 6000e [1], nShield F3 1500e [2], nShield F3 500e [3], nShield F3 10e [4], nShield F3 6000e for nShield Connect [5], nShield F3 1500e for nShield Connect [6] and nShield F3 500e for nShield Connect [7]
strPartNumber Hardware Versions: nC4033E-6K0 [1], nC4033E-1K5 [2], nC4033E-500 [3], nC4033E-030 [4], nC4033E-6K0N [5], nC4033E-1K5N [6] and nC4033E-500N [7], Build Standard N;
Firmware Versions: 2.50.16-3, 2.51.10-3, 2.50.35-3 and 2.55.1-3
memModuleNotes When operated in FIPS mode and initialized to Overall Level 3 per Security Policy
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL http://www.thales-esecurity.com/Products/Hardware Security Modules/nShield Connect.aspx
strModuleType Hardware
strValidationDate 06/25/2012;03/08/2013;08/16/2013;11/16/2015
intOverallLevel 3
memIndividualLevelNotes
strFIPSAlgorithms AES (Certs. #397 and #1579);
Triple-DES (Certs. #435 and #1035);
HMAC (Cert. #925);
Triple-DES MAC (Triple-DES Cert. #1035, vendor affirmed);
SHS (Cert. #1398);
DSA (Cert. #487);
ECDSA (Cert. #192);
RSA (Cert. #770 and #1092);
DRBG (Cert. #72);
CVL (Cert. #1)
strOtherAlgorithms ARC4;
Aria;
Camellia;
CAST-6;
DES;
MD5;
SEED;
HMAC-MD5;
HMAC-Tiger;
HMAC-RIPEMD160;
RIPEMD-160;
Tiger;
El-Gamal;
KCDSA;
HAS-160;
AES (Cert. #1579, key wrapping;
key establishment methodology provides between 128 and 256 bits of encryption strength);
Triple-DES (Cert. #1035, key wrapping;
key establishment methodology provides 112 bits of encryption strengh;
non-compliant less than 112 bits of encryption strength);
RSA (key wrapping;
key establishment methodology provides between 112 and 256 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
Diffie-Hellman (CVL Cert. #1, key agreement: key establishment methodology provides between 112 and 256 bits of encryption strengh;
non-compliant less than 112 bits of encryption strength);
EC Diffie-Hellman (CVL Cert. #1, key agreement: key establishment methodology provides between 112 and 256 bits of encryption strengh;
non-compliant less than 112 bits of encryption strength);
ECMQV (key agreement: key establishment methodology provides between 112 and 256 bits of encryption strengh;
non-compliant less than 112 bits of encryption strength)
strConfiguration Multi-chip embedded
memModuleDescription The nShield modules: nShield F3 6000e, nShield F3 1500e, nShield F3 500e, nShield F3 10e, nShield F3 6000e for nShield Connect, nShield F3 1500e for nShield Connect and nShield F3 500e for nShield Connect family of secure e-commerce HSMs are multi-tasking hardware modules that are optimized for performing modular arithmetic on very large integers. The nShield modules are FIPS 140-2 level 3 embedded devices. The units are identical in operation and only vary in the processing speed.
intModuleCount 1
memAdditionalNotes 03/08/2013: added FW 2.51.10-3, updated vendor address and security policy.
08/16/13: added RSA cert #1092 and updated security policy.
Added firmware versions 2.50.35-3 and 2.55.1-3 to remove a bug.
strFirstValidtionDate 06/25/12 00:00:00
strLabName CSC
strValidationYear 2012