Certificate 2663 - PA-200, PA-500, PA-2000 Series, PA-3000 Series, PA-4000 Series, PA-5000 Series and PA-7050 Firewalls
intCertNum 2663
strVendorName Palo Alto Networks
strURL http://www.paloaltonetworks.com
strAddress1 4401 Great America Parkway
strAddress2
strAddress3
strCity Santa Clara
strStateProv CA
strPostalCode 95054
strCountry 95054
strContact Jake Bajic
strEmail jbajic@paloaltonetworks.com
strPhone 408-753-4000
strFax
strContact2 Amir Shahhosseini
strEmail2 ashahhosse@paloaltonetworks.com
strFax2
strPhone2 408-753-4000
intCertNum 2663
strModuleName PA-200, PA-500, PA-2000 Series, PA-3000 Series, PA-4000 Series, PA-5000 Series and PA-7050 Firewalls
strPartNumber Hardware Versions: PA-200 P/N 910-000015-00E Rev. E [1], PA-500 P/N 910-000006-00O Rev. O [2], PA-500-2GB P/N 910-000094-00O Rev. O [2], PA-2020 P/N 910-000004-00Z Rev. Z [3], PA-2050 P/N 910-000003-00Z Rev. Z [3], PA-3020 P/N 910-000017-00J Rev. J [4], PA-3050 P/N 910-000016-00J Rev. J [4], PA-4020 P/N 910-000002-00AB Rev. AB [5], PA-4050 P/N 910-000001-00AB Rev. AB [5], PA-4060 P/N 910-000005-00S Rev. S [5], PA-5020 P/N 910-000010-00F Rev. F [6], PA-5050 P/N 910-000009-00F Rev. F [6], PA-5060 P/N 910-000008-00F Rev. F [6] and PA-7050 P/N 910-000102-00B with 910-000028-00B Rev. B [7];
FIPS Kit P/Ns: 920-000084-00A Rev. A [1], 920-000005-00A Rev. A [2], 920-000004-00A Rev. A [3], 920-000081-00A Rev. A [4], 920-000003-00A Rev. A [5], 920-000037-00A Rev. A [6] and 920-000112-00A Rev. A [7];
Firmware Version: 6.0.13
memModuleNotes When operated in FIPS mode and with the tamper evident seals and opacity shields installed as indicated in the Security Policy
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL
strModuleType Hardware
strValidationDate 06/20/2016;06/23/2016
intOverallLevel 2
memIndividualLevelNotes -Cryptographic Module Specification: Level 3;-Roles, Services, and Authentication: Level 3;-Design Assurance: Level 3;-Mitigation of Other Attacks: N/A;-Operational Environment: N/A
strFIPSAlgorithms AES (Certs. #3931 and #3932);
RSA (Certs. #2008 and #2009);
HMAC (Certs. #2554 and #2555);
DRBG (Certs. #1140 and 1141);
SHS (Certs. #3241 and #3242);
CVL (Certs. #782 and 783)
strOtherAlgorithms Diffie-Hellman (key agreement: key establishment methodology provides 112 bits of encryption strength);
RSA (key wrapping;
key establishment methodology provides 112 bits of encryption strength);
NDRNG;
MD5;
RC4;
Camellia;
RC2;
SEED;
DES
strConfiguration Multi-Chip Stand Alone
memModuleDescription The Palo Alto Networks PA-200, PA-500, PA-2000 Series, PA-3000 Series, PA-4000 Series, PA-5000 Series and PA-7050 firewalls are multi-chip standalone modules that provide network security by enabling enterprises to see and control applications, users, and content using three unique identification technologies: App-ID, User-ID, and Content-ID. These identification technologies enable enterprises to create business-relevant security polices - safely enabling organizations to adopt new applications.
intModuleCount 14
memAdditionalNotes
strFirstValidtionDate 06/20/16 00:00:00
strLabName InfoGard
strValidationYear 2016