This page was not yet optimized for use on mobile
devices.
2621XM and 2651XM Modular Access Routers with AIM-VPN/EP
Certificate #438
Webpage information
Security policy
Symmetric Algorithms
AES, DES, 3DES, TDES, HMACAsymmetric Algorithms
DH, Diffie-HellmanHash functions
SHA-1, MD4, MD5Schemes
Key ExchangeProtocols
SSH, SSL, IKERandomness
PRNGVendor
Cisco Systems, Inc, Cisco Systems, CiscoSecurity level
Level 2, level 1Standards
FIPS 140-2File metadata
| Title | 1B - Cisco 2621XM-2651XM FIPS 140-2 Security Policy |
|---|---|
| Author | nsilva |
| Creation date | D:20040602143001Z |
| Modification date | D:20040615173408-04'00' |
| Pages | 21 |
| Creator | PDFCreator Version 0.8.0 |
| Producer | AFPL Ghostscript 8.11 |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 438,
"dgst": "18d37c950a3e810d",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"Triple-DES#32",
"HMAC-SHA-1#26",
"RSA#1",
"AES#46",
"SHA-1#38",
"Triple-DES#156",
"SHA-1#26",
"Triple-DES MAC#156"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:cisco:2651xm:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:2621xm:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"1.0",
"12.3"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"FF": {
"DH": {
"DH": 4,
"Diffie-Hellman": 5
}
}
},
"certification_process": {},
"cipher_mode": {},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 11
},
"SSH": {
"SSH": 7
},
"TLS": {
"SSL": {
"SSL": 2
}
}
},
"crypto_scheme": {
"KEX": {
"Key Exchange": 4
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#22": 1
}
},
"fips_certlike": {
"Certlike": {
"HMAC 3": 2,
"HMAC SHA-1": 2,
"HMAC-SHA- 1": 2,
"HMAC-SHA-1": 2,
"SHA-1": 6
}
},
"fips_security_level": {
"Level": {
"Level 2": 5,
"level 1": 1
}
},
"hash_function": {
"MD": {
"MD4": {
"MD4": 2
},
"MD5": {
"MD5": 5
}
},
"SHA": {
"SHA1": {
"SHA-1": 6
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"PRNG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 16
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 3
}
},
"DES": {
"3DES": {
"3DES": 3,
"TDES": 2
},
"DES": {
"DES": 6
}
},
"constructions": {
"MAC": {
"HMAC": 5
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Cisco": {
"Cisco": 25,
"Cisco Systems": 4,
"Cisco Systems, Inc": 21
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "nsilva",
"/CreationDate": "D:20040602143001Z",
"/Creator": "PDFCreator Version 0.8.0",
"/ModDate": "D:20040615173408-04\u002700\u0027",
"/Producer": "AFPL Ghostscript 8.11",
"/Title": "1B - Cisco 2621XM-2651XM FIPS 140-2 Security Policy",
"pdf_file_size_bytes": 368316,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 21
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "e9991f59c24ee2b93bd87f3c1e5325df33cd3f28b648d9661408ebd446cd228a",
"policy_txt_hash": "00e15c1cd98073ccb6bace11c1c0ddf445d088e23d96671d7c0051aa1557bb19"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt438.pdf",
"date_sunset": null,
"description": "The Cisco Modular Access Routers are routers that provides data protection on a network providing packet encryption. The modules perform all of the functions typical of a router. In addition to the normal routing functions, the modules also provide packet encryption. The modules are capable of encrypting traffic between one or more modules: providing a secure connection at the packet level.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": null,
"fw_versions": "IOS 12.3(3d)",
"historical_reason": "Moved to historical list due to sunsetting",
"hw_versions": "2621XM and 2651XM with AIM-VPN/EP Version 1.0 and Board Version B0",
"level": 2,
"mentioned_certs": {},
"module_name": "2621XM and 2651XM Modular Access Routers with AIM-VPN/EP",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2004-06-16",
"lab": "SAIC-VA",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2005-05-24",
"lab": "",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2010-05-28",
"lab": "",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2012-02-23",
"lab": "",
"validation_type": "Update"
}
],
"vendor": "Cisco Systems, Inc.",
"vendor_url": "http://www.cisco.com"
}
}