Page 6

FI 7.4.00a Non-Proprietary Security Policy

Version 0.

Brocade Communications Systems, Inc.

Page 6 of 35

Introduction

Brocade® ICXTM 6430 and 6450 switches provide enterprise-class stackable LAN switching solutions to meet the

growing demands of campus networks. Designed for small to medium-size enterprises, branch offices, and

distributed campuses, these intelligent, scalable edge switches deliver enterprise-class functionality without

compromising performance and reliability.

Overview

The FIPS140-2 validation includes the eight hardware devices presented in Table 2 running the firmware

version presented in Table 1, referred collectively for the remainder of this document as ICX 6430/6450

device (cryptographic module, or simply the module). Each ICX 6430/6450 device is a fixed-port switch, which

is a multi-chip standalone cryptographic module. Four models are available in both the ICX 6430 series and

ICX 6450 series. The power supplies and fan tray assemblies are part of the cryptographic boundary and

cannot be replaced in the field. The cryptographic boundary for each ICX 6430 or ICX 6450 device is

represented by the opaque enclosure (including the power supply, fan tray and bezels) with removable cover.

For each module to operate in a FIPS approved mode of operation, the tamper evident seals, supplied in FIPS

Kit (Part Number: Brocade XBR-000195) must be installed, as defined in Appendix A.

2.1

FastIron Firmware

The ICX 6430 series and ICX 6450 series (listed in Table 2 ICX 6430 and ICX 6450 Switch Family Part

Numbers) run the same firmware version that includes the cryptographic functionality described in Section 4

Table 1 Firmware Version

Firmware Version

FI 7.4.00a

2.2

ICX 6430 and ICX 6450 Series

Table 2 ICX 6430 and ICX 6450 Switch Family Part Numbers

SKU

MFG Part Number

Brief Description

ICX 6430-24

80-1006002-02

24-port 1G Switch, 4 x 1G SFP Uplink/Stacking Ports

ICX 6430-24P

80-1006000-02

24-port 1G Switch PoE+ 390W, 4 x 1G SFP

Uplink/Stacking Ports

ICX 6430-48

80-1006003-02

48-port 1G Switch, 4 x 1G SFP Uplink/Stacking Ports

ICX 6430-48P

80-1006001-02

48-port 1G Switch PoE+ 390W, 4 x 1G SFP

Uplink/Stacking Ports

ICX 6450-24

80-1005997-02

24-port 1G Switch, 2x1G SFP+ (upgradable to 10G) &

2x1G/10G SFP+ Uplink/Stacking Ports

ICX 6450-24P

80-1005996-02

24-port 1G Switch PoE+ 390W, 2x1G SFP+ (upgradable

to 10G) & 2x1G/10G SFP+ Uplink/Stacking Ports

ICX 6450-48

80-1005999-03

48-port 1G Switch, 2x1G SFP+ (upgradable to 10G) &

2x1G/10G SFP+ Uplink/Stacking Ports

ICX 6450-48P

80-1005998-02

48-port 1G Switch PoE+ 780W, 2x1G SFP+ (upgradable

to 10G) & 2x1G/10G SFP+ Uplink/Stacking Ports

#1 to #8

above with

XBR-000195

FIPS Kit containing tamper evident labels to be affixed

to the module per Appendix A: Tamper Label Application

in this document.