Nokia IP265 Security Guide - Page 18

Non FIPS-Approved

Get Nokia IP265 - Security Appliance PDF manuals and user guides View all Nokia IP265 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 18 highlights

To summarize, the modules implement the following FIPS-approved and non FIPS-approved algorithms (see Appendix B - Algorithm Validation Certificate Numbers for the algorithm certificate numbers of the validated FIPS-approved algorithms): Non FIPS-Approved Data encryption: • Data Encryption Standard (DES) in CBC mode (56 bit keys) - according to NIST FIPS PUB 46-3 (withdrawn). • Triple DES (3DES), Keying Option 3 (K3 mode): 1 key Triple DES (non-compliant) - according NIST FIPS PUB 46-3 (withdrawn) and NIST Special Publication 800-67. • CAST - Disabled • DES (40 bits) - Disabled • Arcfour - Disabled • Twofish - Disabled • Blowfish - Disabled Data packet integrity: • HMAC MD5 - Disabled Data hashing: • MD5 - Disabled Digital signatures: • DSA (Public key sizes under 1024-bits, private key sizes under 160-bits) Digital signatures and Key transport: • RSA (Key sizes under 1024-bits) Key agreement / Key establishment: • Diffie-Hellman (Public key sizes under 1024-bits, private key sizes under 160-bits) © Copyright 2005, 2006, 2007 Nokia Page 18 of 43 This document may be freely reproduced and distributed whole and intact including this Copyright Notice.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
To summarize, the modules implement the following FIPS-approved and
non FIPS-approved algorithms (see Appendix B –
Algorithm Validation
Certificate
Numbers for the algorithm certificate numbers of the validated
FIPS-approved algorithms):
Non FIPS-Approved
Data encryption:
Data Encryption Standard (DES) in CBC mode (56 bit keys) –
according to NIST FIPS PUB 46-3 (withdrawn).
Triple DES (3DES), Keying Option 3 (K3 mode): 1 key Triple
DES (non-compliant) – according NIST FIPS PUB 46-3
(withdrawn) and NIST Special Publication 800-67.
CAST - Disabled
DES (40 bits) - Disabled
Arcfour - Disabled
Twofish - Disabled
Blowfish - Disabled
Data packet integrity:
HMAC MD5 - Disabled
Data hashing:
MD5 - Disabled
Digital signatures:
DSA (Public key sizes under 1024-bits, private key sizes under
160-bits)
Digital signatures and Key transport:
RSA (Key sizes under 1024-bits)
Key agreement / Key establishment:
Diffie-Hellman (Public key sizes under 1024-bits, private key
sizes under 160-bits)
© Copyright 2005, 2006, 2007
Nokia
Page 18 of 43
This document may be freely reproduced and distributed whole and intact including this Copyright Notice.