Motorola GGM 8000 Gateway Security Policy Document Version 1.10 Revision Date: 5/6/2011 Copyright © Motorola Solutions, Inc. 2011. May be reproduced only in its original entirety [without revision]. Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 TABLE OF CONTENTS 1. MODULE OVERVIEW.......................................................................................................................................... 3 2. SECURITY LEVEL ................................................................................................................................................ 4 3. MODES OF OPERATION ..................................................................................................................................... 5 4. PORTS AND INTERFACES.................................................................................................................................. 8 5. IDENTIFICATION AND AUTHENTICATION POLICY ................................................................................. 9 6. ACCESS CONTROL POLICY ............................................................................................................................ 11 7. OPERATIONAL ENVIRONMENT .................................................................................................................... 16 8. SECURITY RULES .............................................................................................................................................. 17 9. CRYPTO-OFFICER GUIDANCE ...................................................................................................................... 18 10. PHYSICAL SECURITY POLICY..................................................................................................................... 19 11. MITIGATION OF OTHER ATTACKS POLICY ........................................................................................... 20 12. DEFINITIONS AND ACRONYMS ................................................................................................................... 21 Page 2 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 1. Module Overview The Motorola GGM 8000 Gateway is a modular purpose-built gateway that can easily be configured to support a variety of public safety network applications. The Motorola GGM 8000 Gateway is a multi-chip standalone cryptographic module encased in a commercial grade metal case made of cold rolled steel. The Motorola GGM 8000 Gateway cryptographic boundary is the gateway’s enclosure which includes all components, and one of the power supply options (AC or DC) identified in Table 1b. Figure 1 illustrates the cryptographic boundary of the Motorola GGM 8000 Gateway. In the photo, there is a slot that can hold an optional expansion module for increased device connectivity. The optional expansion module is not included within the Motorola GGM 8000 Gateway cryptographic boundary. The FIPS validated firmware version is XS-16.0.1.44. Note: A FIPS label kit can be ordered by using part number CLN1854A, Rev. B. Configuration GGM 8000 Base Unit GGM 8000 Encryption Module FW Version HW P/N Version P/N Version 1 CLN1841A Rev B CLN8492D Rev B XS-16.0.1.44 Table 1a. – Motorola GGM 8000 Gateway Version Numbers Configuration GGM 8000 AC Power GGM 8000 DC Power Supply Supply HW P/N Revision HW P/N Revision 1 CLN1850A C CLN1849A C Table 1b. – Motorola GGM 8000 Gateway Power Supply Options Figure 1 – Motorola GGM 8000 Gateway Cryptographic Module Boundary Page 3 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 2. Security Level The Motorola GGM 8000 Gateway Level cryptographic module meets the overall requirements applicable to Level 2 security of FIPS 140-2.Security Requirements Section Cryptographic Module Specification 3 Module Ports and Interfaces 2 Roles, Services, and Authentication 2 Finite State Model 2 Physical Security 2 Operational Environment N/A Cryptographic Key Management 2 EMI/EMC 2 Self-Tests 2 Design Assurance 3 Mitigation of Other Attacks N/A Table 2 – Module Security Level Specification Page 4 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 3. Modes of Operation Approved mode of operation In FIPS mode, the cryptographic module supports the following FIPS Approved algorithms as follows: Hardware Implementations  Triple-DES– CBC mode (112 or 168 bit) for IPsec and FRF.17 encryption (Cert. #685)  AES - CBC mode(128, 192, 256 bit) for IPsec and FRF.17 encryption (Cert. #803)  HMAC-SHA-1 for IPsec and FRF.17 authentication (Cert. #443)  SHA-1 for message hash (Cert. #801) Firmware Implementations  Triple-DES – CBC mode (112 and 168 bit) for IKE and SSHv2 encryption (Cert. #989)  AES – CBC (128, 192, 256 bit), ECB (128), and CFB (128) modes for IKE and SSHv2 encryption (Cert. #1469)  HMAC-SHA-1 for IKE and SSHv2 authentication (Cert. #864)  SHA-1 for message hash (Cert. #1329)  RSA PKCS#1 v1.5 1024 bit – for public/private signature generation and verification. (Cert. #718)  DSA 1024 bit – for public/private key pair generation and digital signatures (Cert. #465)  ANSI X9.31 Deterministic Random Number Generator (RNG) (Cert. #803) The Motorola GGM 8000 Gateway supports the commercially available IKE and Diffie-Hellman protocols for key establishment, IPsec (ESP) and FRF.17 protocols to provide data confidentiality using FIPS Approved encryption and authentication algorithms, and SSHv2 for secure remote access. Allowed Algorithms  Diffie-Hellman (Groups 2, 5, and 14): (allowed for key agreement per Annex D) (key agreement; key establishment methodology provides 80 to 112 bits of encryption strength)  Hardware non-deterministic RNG (NDRNG): Provides seed for Approved RNG Non-FIPS approved algorithms The cryptographic module provides non-FIPS Approved algorithms as follows:  DES for encryption/decryption  Non approved SW RNG: Provides random numbers for networking functions  Diffie-Hellman (Group 1) - 768 bit  MD5: for hashing (Provides interoperability within supported protocols)  HMAC-MD5 Entering FIPS Mode To enter FIPS mode, the Crypto-Officer must follow the procedure outlined in Table 3 below. For details on individual gateway commands, use the online help facility or review the Enterprise OS Software User Guide and the Enterprise OS Software Reference Guide. Step Description Page 5 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 Step Description Configure the parameters for the IKE negotiations using the IKEProfile command. For FIPS 1. mode, only the following values are allowed: Diffie-Hellman Group (Group 2, Group 5, or Group 14), Encryption Algorithm (AES or TDES), Hash Algorithm (SHA), and Authentication Method (PreSharedKey). Manually establish via the local console port the pre-shared key (PSK) to be used for the IKE 2. protocol using: ADD –CRYPTO FipsPreSharedKey If IPsec is used, configure IPsec transform lists using the ADD –CRYPTO TransformLIst 3. command. For FIPS mode, only the following values are allowed: Encryption Transform (ESP- TDES, or ESP-AES) and Authentication Transform (ESP-SHA). If FRF.17 is used, configure FRF.17 transform lists using the ADD –CRYPTO TransformLIst 4. command. For FIPS mode, only the following values are allowed: Encryption Transform (FRF- TDES, or FRF-AES) and Authentication Transform (FRF-SHA). For each port for which encryption is required, bind a dynamic policy to the ports using: 5. ADD [!] –CRYPTO DynamicPOLicy [] [] [] To be in FIPS mode, the selector list and transform list names must be defined as in previous steps. For each port for which encryption is required, enable encryption on that port using: 6. SETDefault [!] –CRYPTO CONTrol = Enabled 7. DSA-2048 sized keys must not be used in FIPS mode. This implementation has not been tested. FIPS-140-2 mode achieved. 8. Table 3 – FIPS Approved mode configuration To obtain the FIPS Mode Indicator, use the following command: SHOW –CRYPTO CONFiguration This command shows a detailed summary of the cryptographic configuration. By reviewing the results of this command, as discussed in the following steps, the Crypto-Officer verifies that the gateway is in FIPS mode. Step 1: Look at the IKEProfile section of the cryptographic configuration summary output to verify that FIPS-Approved algorithms have been selected for IKE negotiations (AES or TDES for encryption, and SHA as the hash algorithm), Diffie-Hellman groups 2, 5, or 14 have been selected and that pre-shared key has been selected as the authentication method. Summary output should look similar to the following: Page 6 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 CRYPTO IKEProfile: Priority Authentication Method Encrypt Alg Hash Alg DH Group Lifetime 1 PreSharedKey AES/256 SHA Group2 1 dy 2 PreSharedKey AES/256 SHA Group2 1 dy Step 2: For each port for which encryption is required, verify that the dynamic policy points to a transform list that uses FIPS-Approved algorithms (AES or TDES for encryption, and SHA as the hash algorithm), as shown in the following example: CRYPTO DynamicPOLicy: dp1 Priority 1 PortList: !V1 DpolCont: Enabled Mode: Tunnel Lifetime: GlobalLifeTime (8 hr) PFS: GlobalPFS (NoPFS) SelectorLIst: s1 TransformLIst: t1 Preconnect: Yes, Peer IP: 10.1.233.165 CRYPTO TransformLIst: t1 In use by 1 policy 1 ESP-AES/256 ESP-SHA In this example, the dynamic policy named dp1 points to a transform list t1. The transform list t1 uses FIPS-Approved algorithms AES/256 and SHA. Step 3: For each port for which encryption is required, look at the summary output to verify that encryption has been enabled on the required ports, as shown in the following example: CRYPTO CONFiguration: Port !V1 CONTrol = Enabled Port !V102 CONTrol = Enabled Upon successful completion of these three steps, the Crypto-Officer has shown the FIPS Mode Indicator and verified that the gateway is in FIPS mode. Page 7 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 4. Ports and Interfaces Table 4 below provides a listing of the physical ports and logical interfaces for the Motorola GGM 8000 Gateway. The Motorola GGM 8000 Gateway base unit provides four 10/100 Mbps Ethernet interfaces, two T1/E1 interfaces and a console port. The Motorola GGM 8000 Gateway incorporates an optional expansion module that accommodates a variety of interfaces for both analog and WAN connectivity. The expansion module is not part of the cryptographic boundary. Page 8 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 Physical Port Qty Logical interface Interface Card Comments definition Ethernet 4 Data input, data output, Part of the Motorola LAN ports that provide status output, control GGM 8000 Gateway connection to Ethernet LANs input base system using either 10BASE-T, 100BASE-TX, or 1 Gigabit Ethernet T1/E1 2 Data input, data output, Part of the GGM 8000 T1/E1 interfaces that status output, control Gateway base system supports T1/E1 CSU/DSU input, power output Console 1 Status output, control Part of the GGM 8000 RS-232 interface input Gateway base system USB 1 None Part of the GGM 8000 Not functional Gateway base system Backplane interface Data input, data output, Optional FlexWAN High-speed multifunction status output, control module supported in one serial interfaces that provide Supports expansion input, power output of the I/O slots on the connection to industry- module containing expansion module standard V.35, Data optional interface cards Communications Equipment (expansion module not (DCE) or Data Terminal part of cryptographic Equipment (DTE) serial boundary) devices Optional module Provides 4 four-wire with supported in the analog E&M relay interfaces to slot on the expansion analog conventional base module as part of the stations analog/V.24 interface kit Optional modules Provide V.24 serial ports that supported in the two I/O communicate at 9600 bps. slots on the expansion module as part of the analog/V.24 interface kit AC power plug 1 AC power input AC power subsystem External AC power input module port -OR- -OR- -OR- -OR- -OR- DC power entry 2 DC Power input DC power subsystem External DC power input connectors module ports LEDs 7 Status Output N.A Provide Module status for traffic and module power. Table 4 – Motorola GGM 8000 Gateway physical ports and logical interfaces 5. Identification and Authentication Policy Assumption of roles The Motorola GGM 8000 Gateway supports four distinct operator roles: Crypto-Officer (Super User), Admin, Network Manager, and User. The roles require operator authentication via Page 9 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 operator name and password when accessing the gateway via any interface. The Motorola GGM 8000 Gateway enforces the separation of roles by providing specific services only to operators who have been authenticated to a role with the required privilege to access those services. An operator must enter a username and its password to log in. Passwords are alphanumeric strings consisting of 7 to 15 characters chosen from the 94 standard keyboard characters. Upon correct authentication, the role is selected based on the username of the operator. At the end of a session, the operator must log-out. When a gateway power cycles, sessions are terminated. An operator must reauthenticate to access the gateway. Multiple concurrent operators. Each operator has an independent session with the gateway, either though SSH or via the console. Once authenticated to a role, each operator can access only those services for that role. In this way, separation is maintained between the role and services allowed for each operator. The definition of all supported roles is shown in Table 5 below. Type of Role Authentication Data Description Authentication Crypto-Officer Role-based operator Username and Password. The The owner of the cryptographic (Super User) authentication. module stores operator identity module with full access to services of information internally. the module. Network Role-based operator Username and Password. The A operator of the cryptographic Manager authentication. module stores user identity module with almost full access to information internally. services of the module. Admin Role-based operator Username and Password. The An assistant to the Crypto-Officer authentication. module stores user identity that has read only access to a subset information internally. of module configuration and status indications. User Role-based operator Username and Password. The A user of the cryptographic module authentication. module stores user identity that has read only access to a subset information internally. of module configuration and status indications. Table 5 – Roles and Required Identification and Authentication Authentication Mechanism Strength of Mechanism Username and Password The probability that a random attempt will succeed or a false acceptance will occur is 1/94^7 which is less than 1/1,000,000. After three consecutive unsuccessful login attempts, an operator is locked out for two minutes, ensuring that that the probability is less than one in 100,000 per minute, that random multiple attempts will succeed or a false acceptance will occur. Table 6 – Strengths of Authentication Mechanisms Page 10 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 6. Access Control Policy Authenticated Services  Firmware Update: Load firmware images digitally signed by RSA (1024 bit) algorithm.  Key Entry: Enter Pre-Shared Keys (PSK).  User Management: Add/Delete and manage operator passwords.  Reboot: Force the module to power cycle via a command.  Zeroization: Actively destroy all plaintext CSPs and keys.  Crypto Configuration: Configure IPsec and FRF.17 services.  IKE: Key establishment utilizing the IKE protocol.  IPsec Tunnel Establishment: IPsec protocol.  FRF.17 Tunnel Establishment: Frame Relay Privacy Protocol.  Alternating Bypass: Provide some services with cryptographic processing and some services without cryptographic processing.  SSHv2: For remote access to the gateway.  Network Configuration: Configure networking capabilities.  Enable Ports: Apply a security policy to a port.  File System: Access file system.  Authenticated Show Status: Provide status to an authenticated operator.  Access Control: Provide access control for all operators.  Monitor: Perform various hardware support services. Unauthenticated Services:  Unauthenticated Show Status: Provide the status of the cryptographic module – the status is shown using the LEDs on the front panel.  Power-up Self-tests: Execute the suite of self-tests required by FIPS 140-2 during power- up.  Conditional Self-tests: Execute the self-tests required by FIPS 140-2 when specified operational conditions occur. Page 11 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 Roles and Services Network Manager Crypto-Officer (Super User) Admin User Service Firmware Update X X Key Entry X X User Management X X IKE X X IPsec Tunnel Establishment X X FRF.17 Tunnel Establishment X X SSHv2 X X Reboot X X Zeroization X X Crypto Configuration X X Network Configuration X X Alternating Bypass X X Enable Ports X X File System X X Authenticated Show Status X X X X Unauthenticated Show Status X X X X Power-up Self-tests X X X X Conditional Self-tests X X X X Monitor X Access Control X X X X Table 7 – Services to Roles Mapping Page 12 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 Definition of Critical Security Parameters (CSPs) The following CSPs are contained within the module: Key Description/Usage KEK This is the master key that encrypts persistent CSPs stored within the module. KEK-protected keys include PSK and passwords. Encryption of keys uses AES128ECB IKE Preshared Keys Used to authenticate peer to peer during IKE session SKEYID Generated for IKE Phase 1 by hashing preshared keys with responder/receiver nonce SKEYID_d Phase 1 key used to derive keying material for IKE SAs SKEYID_a Key used for integrity and authentication of the phase 1 exchange SKEYID_e Key used for TDES or AES data encryption of phase 1 exchange Ephemeral DH Phase-1 Generated for IKE Phase 1 key establishment private key (a) Ephemeral DH Phase-2 Phase 2 Diffie-Hellman private keys used in PFS for key renewal private key (a) IPSEC Session Keys 128/192/256-bit AES-CBC and 168-bit TDES keys are used to encrypt and authenticate IPSEC ESP packets FRF.17 Session Keys 168-bit TDES-CBC and 128/192/256-bit AES-CBC keys are used to encrypt and authenticate FRF.17 Mode 2 SSH-RSA Private Key Key used to authenticate oneself to peer SSH-DSA Private Key Key used to authenticate oneself to peer SSH Session Keys 168-bit TDES-CBC and 128/192/256-bit AES-CBC keys are used to encrypt and authenticate SSH packets SSH DH Private Key Generated for SSH key establishment RNG Seed Initial seed for FIPS-Approved RNG RNG Seed Key Initial seed key value for FIPS-Approved RNG Passwords 7 (to 15) character password used to authenticate to the module  Crypto-Officer (Super User)  Network Manager  Admin  User Table 8 – Critical Security Parameters (CSPs) Page 13 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 Definition of Public Keys: The following public keys are contained within the module: Key Description/Usage RSA Firmware Load Key Distributed to module, for firmware authentication SSH-RSA Key Distributed to peer, used for SSH authentication SSH-DSA Key Distributed to peer, used for SSH authentication SSH Known Host Keys Distributed to module, used to authenticate peer IKE DH public key (g^a) Generated for IKE Phase 1 key establishment IKE DH phase-2 public Phase 2 Diffie-Hellman public keys used in PFS for key renewal (if configured) (g^a) key SSH DH Key Generated for SSH key establishment Table 9 – Public Keys Definition of CSPs Modes of Access Table 10 defines the relationship between access to CSPs and the different module services. The modes of access shown in the table are defined as follows:  Read: The data item is read from memory.  Write: The data item is written into memory.  Zeroize: The data item is actively overwritten. Page 14 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 Access Control FRF.17 tunnel Configuration Configuration Authenticated establishment establishment Management Enable Ports Show Status Ipsec tunnel Zeroization File System Firmware Key entry Network Monitor Update Reboot Crypto User SSH CSP IKE KEK R R Z R IKE Pre-shared W R Z W RW R Key SKEYID RW Z Z SKEYID_d RW Z SKEYID_a RW Z SKEYID_e RW Z Ephemeral DH Phase-1 private RW Z key (a) Ephemeral DH Phase-2 private RW Z key (a) IPSEC Session RW R Z Keys FRF.17 Session RW R Z Keys SSH-RSA Private RW Z RW Key SSH-DSA Private RW Z RW Key SSH Session Keys RW Z SSH DH Private RW Z Key Passwords RW Z R RNG Seed RW Z RNG Seed Key RW Z Table 10 – Services to CSP Access mapping Page 15 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 7. Operational Environment The FIPS 140-2 Area 6 Operational Environment requirements are not applicable because the Motorola GGM 8000 Gateway does not contain a modifiable operational environment. Page 16 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 8. Security Rules The cryptographic module’s design corresponds to the cryptographic module’s security rules. This section documents the security rules enforced by the Motorola GGM 8000 Gateway to implement the security requirements of this FIPS 140-2 Level 2 module. 1. The Motorola GGM 8000 Gateway provides four distinct operator roles: Crypto-Officer (Super User), Admin, Network Manager, and User. The Crypto-Officer role uses the Super User account. 2. The Motorola GGM 8000 Gateway encrypts message traffic using the AES or TDES algorithm. 3. The Motorola GGM 8000 Gateway performs the following tests: A. Power up Self-tests: 1. Cryptographic algorithm tests: Hardware Implementations: a. AES-CBC Known Answer Test b. Triple-DES-CBC Known Answer Test c. HMAC-SHA-1 Known Answer Test (Includes SHA-1 KAT) Firmware Implementations: a. AES-CBC Known Answer Test b. Triple-DES-CBC Known Answer Test c. HMAC-SHA-1 Known Answer Test (Includes SHA-1 KAT) d. ANSI X9.31 RNG Known Answer Test e. RSA Known Answer Test f. DSA Known Answer Test 2. Firmware Integrity Test (16 bit CRC) B. Conditional Self-tests: a. Continuous Random Number Generator (RNG) test on FIPS-Approved RNG and Hardware NDRNG. b. Firmware load test – RSA signature verification of externally loaded code. c. Alternating bypass tests – when configuring Selector Lists. d. Pair-wise consistency test for public and private key establishment (RSA). e. Manual key entry test. 4. At any time the Motorola GGM 8000 Gateway is in an idle state, the operator can command the gateway to perform the power up self-test by power-cycling or rebooting the gateway. 5. Data output is inhibited during key generation, self-tests, zeroization, and error states. 6. To enter the alternating bypass state, the two required independent internal actions that are required are first, to configure the module for alternating bypass, and second, to verify the integrity of the configuration by running the alternating bypass test. 7. Status information does not contain CSPs or sensitive data that if misused could lead to a compromise of the module. Page 17 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 9. Crypto-Officer Guidance The module is distributed to authorized operators wrapped in plastic with instructions on how to securely install the module. On initial installation, perform the following steps: 1. Power on the module and verify successful completion of power up self-tests from console port or inspection of log file. The following message will appear on the console interface: “power-on self-tests passed”. 2. Authenticate to the module using the default operator acting as the Crypto-Officer with the default password and username. 3. Verify that the Hardware and Firmware P/Ns and version numbers of the module are the FIPS Approved versions. 4. Change the Crypto-Officer and User passwords using the SysPassWord command. 5. Initialize the Key Encryption Key (KEK) with the KEKGenerate command. Account passwords and certain keys are persistent across reboots and are encrypted with the Key Encryption Key (KEK). This key can be reinitialized at any time. 6. DSA-2048 sized keys must not be used in FIPS mode. This implementation has not been tested. The module supports a minimum password length of 7 characters and a maximum length of 15 characters. The Crypto-Officer controls the minimum password length through the PwMinLength parameter: SETDefault -SYS PwMinLength = , where specifies the minimum length. The Zeroization Service should also be invoked to zeroize all CSPs prior to removing a gateway from service for repair. Page 18 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 10. Physical Security Policy Physical Security Mechanisms The Motorola GGM 8000 Gateway is composed of industry standard production-grade components. To meet FIPS 140-2 Level 2 requirements, the Motorola GGM 8000 Gateway must have tamper-evident seals applied as described in this section. It is the responsibility of the Crypto-Officer to maintain the tamper seals. The seals should be inspected for evidence of tamper every three (3) months. If evidence of tamper has been identified, the module should be considered compromised and Customer Service should be contacted for further instructions. The tamper evident seals shall be installed for the module to operate in a FIPS Approved mode of operation. Please see Appendix A for specific instructions on installation of the tamper labels. Note: A FIPS label kit can be ordered by using part number CLN1854A, Rev. B. Page 19 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 11. Mitigation of Other Attacks Policy The Motorola GGM 8000 Gateway has not been designed to mitigate against other attacks outside the scope of FIPS 140-2. Page 20 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 12. Definitions and Acronyms AES – Advanced Encryption Standard CBC – Cipher Block Chaining CLI – Command Line Interface CSP – Critical Security Parameter DH – Diffie-Hellman FRF – Frame Relay Forum FRF.17 – Frame Relay Privacy Implementation Agreement FRPP – Frame Relay Privacy Protocol HMAC – Hash Message Authentication Code IKE – Internet Key Exchange IP – Internet Protocol IPsec – Internet Protocol Security KAT – Known Answer Test KDF – Key Derivation Function KEK – Key Encrypting Key MNR – Motorola Network Router OSPF – Open Shortest Path First PFS – Perfect Forward Secrecy RNG – Random Number Generator SHA – Secure Hash Algorithm SSH – Secure Shell SNMP – Simple Network Management Protocol Tanapa – The part number that is built and stocked for customer orders. Page 21 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 Appendix A GGM 8000 GATEWAY FIPS 140-2 LEVEL 2 TAMPER EVIDENCE LABEL INSTALLATION INSTRUCTIONS These instructions describe how to install FIPS 140‐2 Level 2 tamper evidence labels on the GGM 8000  gateway.   The surface to which the labels will be attached must be at a temperature of at least +10°C (+50°F),  and the surface must be clean and dry. Clean any grease, dirt, oil, or adhesive residue from the  areas to which the labels are to be attached before applying the tamper evidence labels.   1. Wipe the surface with isopropyl alcohol (99% concentration) to remove surface contaminants.  Using a solution with an isopropyl alcohol concentration less than 99% is not acceptable.   2. Do not allow excess alcohol to air dry. Use a clean paper towel or cotton cloth to completely  remove any excess alcohol, thereby removing any residual contaminants.   3. Apply tamper evidence labels 1 and 2 to secure the base module on the front of the chassis.   a. Remove the Kraft liner from the back of label 1 and attach the label as illustrated in  Figure 1: Center the silver portion of the label between the rightmost cooling hole and the  Encrypt, Run, Load, and Test LEDs, with the Motorola logo on the label lined up with the  top of the Load LED. Starting from the short edge of the label that is positioned on the  front panel, affix the label by applying pressure while pushing the label up the front  panel and onto the top cover.   b. Remove the Kraft liner from the back of label 2 and attach the label as illustrated in  Figure 1: Position the Motorola logo edge of the label directly above the top edge of  connector “5B” with the left edge of the clear portion of the label aligned with the edge of  the thumbscrew. Starting from the short edge of the label that is positioned on the front  panel, affix the label by applying pressure while pushing the label up the front panel and  onto the top cover.     Do not push labels 1 and 2 all the way up under the top cover overhang or tuck the labels into the  gap between the front panel and the top cover overhang. As shown in Detail A in Figure 1, the  labels should come out at approximately a 45 degree angle from where they are affixed to the front  panel to where they wrap around and over the top cover.   c. Rub the labels on the top and front of the chassis for 2 seconds to ensure that the labels  have adhered.    Page 22 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 FIGURE 1 APPLYING TAMPER EVIDENCE LABELS 1 AND 2 TO SECURETHE BASE MODULE Page 23 Motorola GGM 8000 Gateway Security Policy Document Version 1.10, Revision Date: 5/6/2011 GGM 8000 GATEWAY FIPS 140-2 LEVEL 2 TAMPER EVIDENCE LABEL INSTALLATION INSTRUCTIONS 4. Apply tamper evidence label 3 to secure the power supply module on the rear of the chassis.   a. Remove the Kraft liner from the back of the label and position the label as illustrated in  Figure 2. Position the Motorola logo edge of the label directly above the mounting screw,  with the right edge of the silver portion of the label aligned with the right edge of the  power supply module. Starting from the short edge of the label that is positioned on the  rear panel, affix the label by applying pressure while pushing the label up the rear panel  and onto the top cover.  b. Rub the label on the top and rear of the chassis for 2 seconds to ensure that the label has  adhered.     FIGURE 2 APPLYING TAMPER EVIDENCE LABEL 3 TO SECURE THE POWER SUPPLY MODULE 5. Secure the unit in a restricted area.   6. Allow the applied labels to cure for at least 4 hours; do not touch the labels during this time.  If you need to re‐apply the tamper evidence labels to the unit, repeat steps 1‐6.       Page 24