Ciena 3926 Platform

Certificate #4654

Webpage information ?

Status active
Validation dates 14.11.2023
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Multi-Chip Stand Alone
Caveat When operated in FIPS mode. When operated as per the Security Policy. No assurance of minimum security of keys and bit strings that are externally loaded, or of keys and CSPs established with externally loaded bit strings
Exceptions
  • Mitigation of Other Attacks: N/A
Description The Product is Ciena SAOS 3926 Service Access and Aggregation Platform. It uses MACSec for traffic encryption/decryption. It provides routing/switching functionalities for various use cases including enterprise, mobility, and converged network architectures. With Ethernet, MPLS, IP, and SR capabilities, the product supports emerging networks.
Version (Hardware) 3926
Version (Firmware) Ciena Service Aware Operating System (SAOS 10.7.0)
Vendor Ciena Corporation
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.

Security policy ?

Symmetric Algorithms
AES, RC4, DES, 3DES, TDEA, HMAC, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512, CMAC
Asymmetric Algorithms
ECDSA, ECC, DH, Diffie-Hellman, DSA
Hash functions
SHA-1, SHA1, SHA-256, SHA-384, SHA-224, SHA-512, SHA512, SHA224, SHA256, SHA384, MD5
Protocols
SSH, TLS, TLS 1.2
Randomness
DRBG
Elliptic Curves
P-384, P-521, P-256, P-224, K-233, Curve25519
Block cipher modes
ECB, CBC, CTR, GCM, CCM

JavaCard API constants
ED25519
Trusted Execution Environments
SSC

Security level
Level 2

Standards
FIPS 140-2, FIPS 197, FIPS 198-1, FIPS 180-4, FIPS 186-4, FIPS 202, SP 800-38D, SP 800-38B, SP 800-90A, SP 800-135, SP 800-108, SP 800-133, SP 800-52, SP 800-38C, SP 800-56A, PKCS1, PKCS#1, PKCS#5, PKCS#12, RFC 5288

File metadata

Title Microsoft Word - 2023_2 CLEAN_FINAL_3_30_2022_SP_Ciena_3_28_2022_V2_jmV2.docx
Author Admin
Creation date D:20231110183506-08'00'
Modification date D:20231110183506-08'00'
Pages 15
Creator PScript5.dll Version 5.2.2
Producer GPL Ghostscript 8.64

Heuristics ?

No heuristics are available for this certificate.

References ?

No references are available for this certificate.

Updates ?

  • 02.01.2024 The certificate was first processed.
    New certificate

    A new FIPS 140 certificate with the product name was processed.

Raw data

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4654,
  "dgst": "46c253965501650d",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "RSA#A2492",
        "ECDSA#A2492",
        "AES#A2492",
        "KBKDF#A2492",
        "KAS-SSC#A2492",
        "KTS#A2492",
        "KAS#A2492",
        "DRBG#A2492",
        "HMAC#A2492"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "10.7.0"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 6
          },
          "ECDSA": {
            "ECDSA": 5
          }
        },
        "FF": {
          "DH": {
            "DH": 1,
            "Diffie-Hellman": 4
          },
          "DSA": {
            "DSA": 1
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "CCM": {
          "CCM": 1
        },
        "CTR": {
          "CTR": 3
        },
        "ECB": {
          "ECB": 3
        },
        "GCM": {
          "GCM": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "SSH": {
          "SSH": 32
        },
        "TLS": {
          "TLS": {
            "TLS": 37,
            "TLS 1.2": 2
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {
        "Curve": {
          "Curve25519": 1
        },
        "NIST": {
          "K-233": 1,
          "P-224": 2,
          "P-256": 4,
          "P-384": 2,
          "P-521": 6
        }
      },
      "eval_facility": {},
      "fips_cert_id": {},
      "fips_certlike": {
        "Certlike": {
          "AES 4550": 1,
          "HMAC 256": 2,
          "HMAC-SHA-1": 2,
          "HMAC-SHA-256": 2,
          "HMAC-SHA-384": 2,
          "HMAC-SHA-512 160": 2,
          "PKCS#1": 2,
          "PKCS#12": 2,
          "PKCS#5": 2,
          "PKCS1": 2,
          "SHA- 384": 1,
          "SHA-1": 2,
          "SHA-224": 1,
          "SHA-256": 3,
          "SHA-384": 1,
          "SHA-512": 1,
          "SHA1": 3,
          "SHA224": 2,
          "SHA256": 4,
          "SHA384": 2,
          "SHA512": 4
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 3
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 1
          }
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 2,
            "SHA1": 3
          },
          "SHA2": {
            "SHA-224": 1,
            "SHA-256": 3,
            "SHA-384": 1,
            "SHA-512": 1,
            "SHA224": 2,
            "SHA256": 4,
            "SHA384": 2,
            "SHA512": 4
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {
        "curves": {
          "ED25519": 1
        }
      },
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 13
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 5,
          "FIPS 180-4": 2,
          "FIPS 186-4": 2,
          "FIPS 197": 3,
          "FIPS 198-1": 2,
          "FIPS 202": 1
        },
        "NIST": {
          "SP 800-108": 1,
          "SP 800-133": 1,
          "SP 800-135": 1,
          "SP 800-38B": 2,
          "SP 800-38C": 1,
          "SP 800-38D": 3,
          "SP 800-52": 2,
          "SP 800-56A": 1,
          "SP 800-90A": 2
        },
        "PKCS": {
          "PKCS#1": 1,
          "PKCS#12": 1,
          "PKCS#5": 1,
          "PKCS1": 1
        },
        "RFC": {
          "RFC 5288": 2
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 13
          },
          "RC": {
            "RC4": 1
          }
        },
        "DES": {
          "3DES": {
            "3DES": 1,
            "TDEA": 1
          },
          "DES": {
            "DES": 1
          }
        },
        "constructions": {
          "MAC": {
            "CMAC": 3,
            "HMAC": 9,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-384": 1,
            "HMAC-SHA-512": 1
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SSC": 1
        }
      },
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Admin",
      "/CreationDate": "D:20231110183506-08\u002700\u0027",
      "/Creator": "PScript5.dll Version 5.2.2",
      "/ModDate": "D:20231110183506-08\u002700\u0027",
      "/Producer": "GPL Ghostscript 8.64",
      "/Title": "Microsoft Word - 2023_2 CLEAN_FINAL_3_30_2022_SP_Ciena_3_28_2022_V2_jmV2.docx",
      "pdf_file_size_bytes": 198633,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": []
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 15
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_garbage": false,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_pdf_hash": "0fca4148f2d714cb50116fa7db07a1ace64e7da73ff1fce302fa218560e042a7",
    "policy_txt_hash": "80f339fb3eabb5caf4b8ddb2f3d4b78979b3a89a7c2deebc68ae136251843efc"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated in FIPS mode. When operated as per the Security Policy. No assurance of minimum security of keys and bit strings that are externally loaded, or of keys and CSPs established with externally loaded bit strings",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/November 2023_111223_0648_signed.pdf",
    "date_sunset": "2026-09-21",
    "description": "The Product is Ciena SAOS 3926 Service Access and Aggregation Platform. It uses MACSec for traffic encryption/decryption. It provides routing/switching functionalities for various use cases including enterprise, mobility, and converged network architectures. With Ethernet, MPLS, IP, and SR capabilities, the product supports emerging networks.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": "Ciena Service Aware Operating System (SAOS 10.7.0)",
    "historical_reason": null,
    "hw_versions": "3926",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "Ciena 3926 Platform",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-11-14",
        "lab": "ADVANCED DATA SECURITY LLC",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Ciena Corporation",
    "vendor_url": "http://www.ciena.com"
  }
}