This page was not yet optimized for use on mobile
devices.
Cisco 2901, 2911, 2921, 2951, 3925, 3925E, 3945, 3945E and VG350 Integrated Services Routers (ISRs)
Certificate #2152
Webpage information
Security policy
Symmetric Algorithms
AES, RC4, DES, Triple-DES, HMACAsymmetric Algorithms
ECDH, ECDSA, DH, Diffie-HellmanHash functions
SHA-1, SHA-512, MD5Schemes
Key ExchangeProtocols
SSH, SSL, TLS, TLSv1.0, IKE, IPsec, VPNRandomness
DRBG, RNGBlock cipher modes
GCMVendor
Cisco Systems, Inc, Cisco, Cisco SystemsSecurity level
Level 2, Level 1, level 2Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 140, SP 800-90, SP 800-90a, PKCS#1File metadata
| Title | Microsoft Word - ISR eval 1 SP Chng Ltr.docx |
|---|---|
| Author | noltinge |
| Creation date | D:20140804144726-04'00' |
| Modification date | D:20140804144726-04'00' |
| Pages | 27 |
| Creator | PScript5.dll Version 5.2.2 |
| Producer | Acrobat Distiller 11.0 (Windows) |
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.CPE matches
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2152,
"dgst": "7e8250dfc4ecb839",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"HMAC#538",
"HMAC#627",
"Triple-DES#812",
"AES#803",
"AES#963",
"AES#1115",
"CVL#231",
"SHS#934",
"Triple-DES#1037",
"DRBG#401",
"Triple-DES#1566",
"AES#1536",
"SHS#1038",
"SHS#2208",
"AES#2620",
"SHS#2182",
"HMAC#443",
"ECDSA#450",
"HMAC#1606",
"SHS#801",
"RSA#1347",
"RSA#1338",
"Triple-DES#758"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:cisco:2951:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:2921:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:3945e:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:3945:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:2911:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:2901:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:3925e:-:*:*:*:*:*:*:*",
"cpe:2.3:h:cisco:3925:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"15.2"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDH": {
"ECDH": 7
},
"ECDSA": {
"ECDSA": 5
}
},
"FF": {
"DH": {
"DH": 8,
"Diffie-Hellman": 14
}
}
},
"certification_process": {},
"cipher_mode": {
"GCM": {
"GCM": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {},
"crypto_protocol": {
"IKE": {
"IKE": 27
},
"IPsec": {
"IPsec": 4
},
"SSH": {
"SSH": 18
},
"TLS": {
"SSL": {
"SSL": 5
},
"TLS": {
"TLS": 20,
"TLSv1.0": 3
}
},
"VPN": {
"VPN": 11
}
},
"crypto_scheme": {
"KEX": {
"Key Exchange": 2
}
},
"device_model": {},
"ecc_curve": {},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1037": 1,
"#1038": 1,
"#1115": 1,
"#1338": 2,
"#1347": 1,
"#1536": 1,
"#1566": 1,
"#1606": 1,
"#2182": 1,
"#231": 1,
"#2620": 1,
"#401": 1,
"#450": 1,
"#538": 1,
"#627": 1,
"#812": 1,
"#934": 1,
"#963": 1
}
},
"fips_certlike": {
"Certlike": {
"#2208 HMAC": 1,
"AES #2620": 1,
"AES (128": 2,
"CVL #231": 1,
"DES 3": 1,
"DRBG #401": 1,
"HMAC #1606": 2,
"HMAC 3": 2,
"HMAC-SHA-1": 16,
"PKCS#1": 1,
"RSA #1338": 1,
"RSA 2": 1,
"RSA PKCS#1": 1,
"SHA( 1": 1,
"SHA( 256": 1,
"SHA(1": 2,
"SHA-1": 2,
"SHA-512 2": 1,
"SHS #2182": 1
}
},
"fips_security_level": {
"Level": {
"Level 1": 2,
"Level 2": 5,
"level 2": 1
}
},
"hash_function": {
"MD": {
"MD5": {
"MD5": 2
}
},
"SHA": {
"SHA1": {
"SHA-1": 2
},
"SHA2": {
"SHA-512": 1
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 6
},
"RNG": {
"RNG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140": 2,
"FIPS 140-2": 26,
"FIPS PUB 140-2": 1
},
"NIST": {
"SP 800-90": 4,
"SP 800-90a": 4
},
"PKCS": {
"PKCS#1": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 9
},
"RC": {
"RC4": 2
}
},
"DES": {
"3DES": {
"Triple-DES": 8
},
"DES": {
"DES": 3
}
},
"constructions": {
"MAC": {
"HMAC": 4
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {
"Cisco": {
"Cisco": 34,
"Cisco Systems": 2,
"Cisco Systems, Inc": 27
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "noltinge",
"/CreationDate": "D:20140804144726-04\u002700\u0027",
"/Creator": "PScript5.dll Version 5.2.2",
"/ModDate": "D:20140804144726-04\u002700\u0027",
"/Producer": "Acrobat Distiller 11.0 (Windows)",
"/Title": "Microsoft Word - ISR eval 1 SP Chng Ltr.docx",
"pdf_file_size_bytes": 1150776,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 27
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "e898e51f8099271d1eb5fd2fb16841a0b272c9a6fd1f9e644c3a8ea448765d04",
"policy_txt_hash": "43958b6d3ed0ad3d04baeb0da15ff679ec5800283eafe2fc6ced454c4daa962f"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode with tamper evident labels and security devices installed as indicated in the Security Policy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertList0041.pdf",
"date_sunset": null,
"description": "The Cisco Integrated Services Routers (ISRs) are routing platforms that provide comprehensive security services including VPN for small businesses, enterprise small branch and teleworkers. The platforms are architected to enable the next phase of branch-office evolution, providing rich media collaboration and virtualization to the branch while offering a wide-range of connectivity options.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 3",
"Design Assurance: Level 3",
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "IOS 15.2(4)M6A",
"historical_reason": "Moved to historical list due to sunsetting",
"hw_versions": "2901 [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, A], 2911 [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, B], 2921 [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, C], 2951 [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, D], [3925, 3925E, 3945, 3945E and VG350] [1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, E], PVDM2-8 [1], PVDM2-16 [2], PVDM2-32 [3], PVDM2-48 [4], PVDM2-64 [5], PVDM3-16 [6], PVDM3-32 [7], PVDM3-64 [8], PVDM3-128 [9], PVDM3-192 [10], PVDM3-256 [11], FIPS-SHIELD-2901= [A], FIPS-SHIELD-2911= [B], FIPS-SHIELD-2921= [C], FIPS-SHIELD-2951= [D] and FIPS-SHIELD-3900= [E] with [FIPS Kit (CISCO-FIPS-KIT=), Revision -B0]",
"level": 2,
"mentioned_certs": {},
"module_name": "Cisco 2901, 2911, 2921, 2951, 3925, 3925E, 3945, 3945E and VG350 Integrated Services Routers (ISRs)",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2014-05-13",
"lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2014-08-06",
"lab": "Leidos Accredited Testing \u0026 Evaluation (AT\u0026E) Lab",
"validation_type": "Update"
}
],
"vendor": "Cisco Systems, Inc.",
"vendor_url": "http://www.cisco.com"
}
}