Cisco Catalyst 9115AXI/AXE, 9120AXI/AXE/AXP, 9130AXI/AXE and 9105AXI/AXW Wireless LAN Access Points

Certificate #4278

Webpage information

Status active
Validation dates 15.08.2022
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Multi-Chip Stand Alone
Caveat When installed, initialized and configured as specified in the Section 3 of Security Policy.
Exceptions
  • Mitigation of Other Attacks: N/A
Description Cisco Catalyst Series Wireless Access Points provide highly secure and reliable wireless connections for both indoor and outdoor environments.
Version (Hardware) 9115AXI, 9115AXE, 9120AXI, 9120AXE, 9120AXP, 9130AXI, 9130AXE, 9105AXI and 9105AXW with FIPS Kit: AIR-AP-FIPSKIT=
Version (Firmware) AireOS 8.10MR3 and IOS-XE 17.3
Vendor Cisco Systems, Inc.
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, AES-256, HMAC, HMAC-SHA-256, HMAC-SHA-224, HMAC-SHA-512
Asymmetric Algorithms
RSA 2048, ECDH, ECDSA, ECC, DH, Diffie-Hellman
Hash functions
SHA-1, SHA1, SHA-256, SHA-512, SHA-224, SHA-384, SHA256, SHA384, SHA512
Schemes
Key Agreement
Protocols
SSH, TLS, TLSv1.2, DTLS, IKEv2
Randomness
DRBG
Elliptic Curves
P-256, P-384, P-521
Block cipher modes
CBC, CTR, GCM

Trusted Execution Environments
SSC
Vendor
Cisco Systems, Inc, Cisco, Cisco Systems

Security level
Level 2, Level 1, level 2

Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 186-4, SP 800-90A, SP 800-133, SP 800-135, SP 800-52, PKCS1, RFC 5288

File metadata

Author Nick Goble
Creation date D:20220215151008-05'00'
Modification date D:20220215151008-05'00'
Pages 44
Creator Microsoft® Word for Microsoft 365
Producer Microsoft® Word for Microsoft 365

Heuristics

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4278,
  "dgst": "a138ab3bd14d1133",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "RSA#C1870",
        "HMAC#C788",
        "SHS#C1915",
        "ECDSA#C1872",
        "SHS#C788",
        "AES#C788",
        "KBKDF#C1872",
        "KTS#C1870",
        "ECDSA#C1870",
        "AES#C1872",
        "KTS#C788",
        "KTS#C1872",
        "KBKDF#C788",
        "DRBG#C788",
        "DRBG#C1872",
        "AES#C1870",
        "SHS#C1870",
        "CVL#C1872",
        "CVL#C788",
        "RSA#C1916",
        "CVL#C1870",
        "HMAC#C1870",
        "RSA#C1872",
        "KBKDF#C1870",
        "RSA#C788",
        "RSA#C1915",
        "ECDSA#C788",
        "SHS#C1916",
        "SHS#C1872",
        "DRBG#C1870",
        "HMAC#C1872"
      ]
    },
    "cpe_matches": {
      "_type": "Set",
      "elements": [
        "cpe:2.3:h:cisco:catalyst_9105axi:-:*:*:*:*:*:*:*",
        "cpe:2.3:h:cisco:catalyst_9130axi:-:*:*:*:*:*:*:*",
        "cpe:2.3:h:cisco:catalyst_9115:-:*:*:*:*:*:*:*",
        "cpe:2.3:h:cisco:catalyst_9115ax:-:*:*:*:*:*:*:*",
        "cpe:2.3:h:cisco:catalyst_9120axi:-:*:*:*:*:*:*:*",
        "cpe:2.3:h:cisco:catalyst_9115axi:-:*:*:*:*:*:*:*"
      ]
    },
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "17.3",
        "8.10"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 1
          },
          "ECDH": {
            "ECDH": 1
          },
          "ECDSA": {
            "ECDSA": 3
          }
        },
        "FF": {
          "DH": {
            "DH": 7,
            "Diffie-Hellman": 12
          }
        },
        "RSA": {
          "RSA 2048": 3
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "CTR": {
          "CTR": 2
        },
        "GCM": {
          "GCM": 5
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "IKE": {
          "IKEv2": 1
        },
        "SSH": {
          "SSH": 1
        },
        "TLS": {
          "DTLS": {
            "DTLS": 30
          },
          "TLS": {
            "TLS": 7,
            "TLSv1.2": 1
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 16,
          "P-384": 16,
          "P-521": 16
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "# C1915": 1,
          "AES-256": 1,
          "AES-GCM 128 and 256": 1,
          "HMAC SHA-1": 3,
          "HMAC SHA-256": 1,
          "HMAC SHA-384": 1,
          "HMAC SHA-512": 1,
          "HMAC- SHA-384": 1,
          "HMAC- SHA1": 2,
          "HMAC- SHA256": 2,
          "HMAC- SHA384": 2,
          "HMAC- SHA512": 1,
          "HMAC-SHA-1": 2,
          "HMAC-SHA-224": 2,
          "HMAC-SHA-256": 2,
          "HMAC-SHA-512": 2,
          "PKCS1": 10,
          "RSA 2048": 3,
          "SHA- 224": 7,
          "SHA- 256": 9,
          "SHA- 384": 2,
          "SHA- 512": 2,
          "SHA-1": 12,
          "SHA-224": 2,
          "SHA-256": 12,
          "SHA-384": 19,
          "SHA-512": 23,
          "SHA1": 2,
          "SHA256": 2,
          "SHA384": 2,
          "SHA512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 1,
          "Level 2": 3,
          "level 2": 1
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 12,
            "SHA1": 2
          },
          "SHA2": {
            "SHA-224": 2,
            "SHA-256": 12,
            "SHA-384": 19,
            "SHA-512": 23,
            "SHA256": 2,
            "SHA384": 2,
            "SHA512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 29
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 16,
          "FIPS 186-4": 1,
          "FIPS PUB 140-2": 1
        },
        "NIST": {
          "SP 800-133": 2,
          "SP 800-135": 2,
          "SP 800-52": 1,
          "SP 800-90A": 17
        },
        "PKCS": {
          "PKCS1": 5
        },
        "RFC": {
          "RFC 5288": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 15,
            "AES-256": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 8,
            "HMAC-SHA-224": 1,
            "HMAC-SHA-256": 1,
            "HMAC-SHA-512": 1
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SSC": 4
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "Cisco": {
          "Cisco": 43,
          "Cisco Systems": 2,
          "Cisco Systems, Inc": 44
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Nick Goble",
      "/CreationDate": "D:20220215151008-05\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20220215151008-05\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "pdf_file_size_bytes": 909750,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://csrc.nist.gov/groups/STM/index.html",
          "http://www.cisco.com/",
          "https://csrc.nist.gov/groups/STM/cmvp/validation.html",
          "https://csrc.nist.gov/projects/cryptographic-algorithm-validation-program/details?product=12722"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 44
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "be6fbccce92ba6112359a1afaad19697efce83684d64deb45beca7ca0492f00c",
    "policy_txt_hash": "b933124afa1c2dc9e5775df0b4f3b9ac5e54f82de7832483535e451839c7fa80"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When installed, initialized and configured as specified in the Section 3 of Security Policy.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/August 2022_010922_0715_signed.pdf",
    "date_sunset": "2026-09-21",
    "description": "Cisco Catalyst Series Wireless Access Points provide highly secure and reliable wireless connections for both indoor and outdoor environments.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": "AireOS 8.10MR3 and IOS-XE 17.3",
    "historical_reason": null,
    "hw_versions": "9115AXI, 9115AXE, 9120AXI, 9120AXE, 9120AXP, 9130AXI, 9130AXE, 9105AXI and 9105AXW with FIPS Kit: AIR-AP-FIPSKIT=",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "Cisco Catalyst 9115AXI/AXE, 9120AXI/AXE/AXP, 9130AXI/AXE and 9105AXI/AXW Wireless LAN Access Points",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2022-08-15",
        "lab": "Acumen Security",
        "validation_type": "Initial"
      }
    ],
    "vendor": "Cisco Systems, Inc.",
    "vendor_url": "http://www.cisco.com"
  }
}