| intCertNum |
2298 |
| strVendorName |
Ultra Electronics AEP |
| strURL |
http://www.ultra-aep.com |
| strAddress1 |
Knaves Beech Business Centre |
| strAddress2 |
Loud Water |
| strAddress3 |
High Wycombe |
| strCity |
Buckinghamshire |
| strStateProv |
|
| strPostalCode |
HP10 9UT |
| strCountry |
HP10 9UT |
| strContact |
Rob Stubbs |
| strEmail |
rob.stubbs@ultra-aep.com |
| strPhone |
|
| strFax |
|
| strContact2 |
|
| strEmail2 |
|
| strFax2 |
|
| strPhone2 |
|
| intCertNum |
2298 |
| strModuleName |
Advanced Configurable Cryptographic Environment (ACCE) v3 HSM Crypto Module |
| strPartNumber |
Hardware Version: 2870-G1;
Firmware Versions: 2r3 and 2r4 |
| memModuleNotes |
When operated in FIPS mode and when installed, initialized and configured as specified in the Security Policy in Appendix A |
| str140Version |
140-2 |
| _sp_ |
Security Policy [pdf][html][txt] |
| _cert_ |
Certificate [pdf] |
| strPURL |
|
| strModuleType |
Hardware |
| strValidationDate |
01/08/2015; 05/29/2015 |
| intOverallLevel |
4 |
| memIndividualLevelNotes |
-Mitigation of Other Attacks: N/A |
| strFIPSAlgorithms |
SHS (Certs. #2255 and #2782);
HMAC (Certs. #1671 and #2138);
RSA (Cert. #1384);
DSA (Cert. #813);
ECDSA (Cert. #470);
Triple-DES (Cert. #1610);
Triple-DES MAC (Triple-DES Cert. #1610, vendor affirmed);
AES (Cert. #2684);
DRBG (Certs. #434 and #786) |
| strOtherAlgorithms |
NDRNG;
RSA (key wrapping;
key establishment methodology provides between 112 and 150 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
XOR_BASE_AND_DATA KDF (non-compliant);
PBKDF2 (non-compliant);
PKCS#12 KDF (non-compliant);
SPKM KDF (non-compliant);
EC Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 256 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
AES MAC (AES Cert. #2684;
non-compliant);
AES (key wrapping;
key establishment methodology provides between 128 and 256 bits of encryption strength);
Triple-DES (Cert. #1610, key wrapping;
key establishment methodology provides 112 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
SHA-1 KDF (non-compliant);
Triple-DES KDF (Triple-DES Cert. #1610;
non-compliant) |
| strConfiguration |
Multi-chip embedded |
| memModuleDescription |
The Advanced Configurable Cryptographic Environment (ACCE) v3 crypto module offers the next-generation security platform for managing cryptographic keys and protecting sensitive applications. It is used in the Keyper Plus hardware security module (HSM), which is designed for mission-critical applications that demand maximum security. It is ideally suited for companies that need secure key management for PKI certification authorities, registration authorities, OCSP responders, smart card issuers, web servers, DNSSEC and other applications. |
| intModuleCount |
1 |
| memAdditionalNotes |
05/29/15: Added FW 2r4 and updated the security policy. |
| strFirstValidtionDate |
01/08/15 00:00:00 |
| strLabName |
EWA |
| strValidationYear |
2015 |