This page was not yet optimized for use on mobile
devices.
Huawei S12700 Series Switches
Certificate #2910
Webpage information
Security policy
Symmetric Algorithms
AES-256, AES-128, AES, RC4, DES, Triple-DES, HMAC, HMAC-SHA-256Asymmetric Algorithms
RSA 2048, ECDSA, DH, Diffie-Hellman, DSAHash functions
SHA-1, SHA256, SHA-256, SHA-384, SHA-512, SHA-2, MD5Schemes
Key Exchange, Key exchange, Key AgreementProtocols
SSH, SSHv2, SSHv1, TLS, IPsec, VPNRandomness
DRBG, RNGLibraries
OpenSSLElliptic Curves
P-256, P-384, P-521Block cipher modes
CBC, CTRTLS cipher suites
TLS_RSA_WITH_AES_256_SHA, TLS_RSA_WITH_AES_128_SHA, TLS_DHE_RSA_WITH_AES_256_SHA, TLS_DHE_DSS_WITH_AES_256_SHA, TLS_DHE_RSA_WITH_AES_128_SHA, TLS_DHE_DSS_WITH_AES_128_SHA, TLS_RSA_WITH_DES_CBC_SHA, TLS_RSA_WITH_RC4_128_MD5, TLS_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_NULL_MD5, TLS_RSA_WITH_NULL_SHAVendor
Broadcom, Huawei, Huawei Technologies CoStandards
FIPS 140-2, FIPS 197, FIPS 186-4, FIPS 198-1, FIPS 180-4, SP 800-38A, SP 800-38F, SP 800-135, SP 800-67, SP 800-90A, SP 800-90, RFC 4303, RFC 6379, RFC 4511, RFC 2865, RFC 4254, RFC 5246, X.509File metadata
| Title | Microsoft Word - 422f - JN3871_Huawei_12700 Series_Switch_Security_Policy.docx |
|---|---|
| Author | rshelby |
| Creation date | D:20170512085447-07'00' |
| Modification date | D:20170512085447-07'00' |
| Pages | 38 |
| Creator | PScript5.dll Version 5.2.2 |
| Producer | Acrobat Distiller 11.0 (Windows) |
References
Outgoing- 49 - historical - LAN Rover VPN Gateway (LRVG) V6.59
- 51 - revoked - Clickstamp
- 43 - historical - Turbo Crypto Card (TCC), v09, 14.04
- 48 - historical - FORTEZZA Crypto Card
- 42 - historical - Segmented NetFortress™ GVPN-S
- 44 - revoked - Aegis MR-K I and II System/Scan Radios VHF range: 136-174 MHz UHF range: 378-500 MHz 800 range: 806-870 MHz
Heuristics
Automated inference - use with caution
All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.CPE matches
References
Loading...
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 2910,
"dgst": "d5aa5e4ae9fc0469",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"RSA#2380",
"CVL#1107",
"DSA#1175",
"ECDSA#1057",
"KTS#2372",
"KTS#2924",
"AES#4400",
"HMAC#2924",
"DRBG#1418",
"Triple-DES#2372",
"SHS#3627"
]
},
"cpe_matches": {
"_type": "Set",
"elements": [
"cpe:2.3:h:huawei:s12700:-:*:*:*:*:*:*:*"
]
},
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"3",
"02114180",
"02114480",
"4057",
"113016",
"02114178"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": {
"_type": "Set",
"elements": [
"44",
"51",
"48",
"49",
"43",
"42"
]
},
"indirectly_referenced_by": null,
"indirectly_referencing": {
"_type": "Set",
"elements": [
"44",
"51",
"48",
"49",
"43",
"42"
]
}
},
"policy_prunned_references": {
"_type": "Set",
"elements": [
"44",
"51",
"48",
"49",
"43",
"42"
]
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECDSA": {
"ECDSA": 5
}
},
"FF": {
"DH": {
"DH": 16,
"Diffie-Hellman": 6
},
"DSA": {
"DSA": 18
}
},
"RSA": {
"RSA 2048": 1
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 2
},
"CTR": {
"CTR": 1
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"OpenSSL": {
"OpenSSL": 3
}
},
"crypto_protocol": {
"IPsec": {
"IPsec": 2
},
"SSH": {
"SSH": 36,
"SSHv1": 1,
"SSHv2": 4
},
"TLS": {
"TLS": {
"TLS": 34
}
},
"VPN": {
"VPN": 1
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 1
},
"KEX": {
"Key Exchange": 1,
"Key exchange": 1
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-256": 6,
"P-384": 6,
"P-521": 6
}
},
"eval_facility": {},
"fips_cert_id": {
"Cert": {
"#1": 3,
"#1057": 1,
"#1175": 1,
"#1418": 2,
"#16": 1,
"#17": 1,
"#18": 1,
"#19": 1,
"#22": 1,
"#23": 1,
"#2372": 1,
"#2380": 1,
"#26": 1,
"#27": 1,
"#28": 1,
"#29": 1,
"#2924": 3,
"#30": 1,
"#31": 1,
"#36": 1,
"#3627": 1,
"#37": 1,
"#38": 2,
"#39": 2,
"#42": 1,
"#43": 1,
"#44": 1,
"#4400": 1,
"#48": 1,
"#49": 1,
"#51": 1
}
},
"fips_certlike": {
"Certlike": {
"AES (#4400": 1,
"AES-128": 7,
"AES-256": 10,
"DRBG (#1418": 1,
"DRBG (Cert. #1418": 1,
"DRBG5": 1,
"DSA (#1175": 1,
"DSA (2048": 5,
"HMAC (#2924": 1,
"HMAC Cert. #2924": 4,
"HMAC- SHA-256": 1,
"HMAC-SHA-1": 4,
"HMAC-SHA-1-96": 2,
"RSA 2048": 1,
"SHA 1": 3,
"SHA-1": 21,
"SHA-1/256": 3,
"SHA-2": 9,
"SHA-256": 11,
"SHA-384": 2,
"SHA-512": 2,
"SHA256": 3,
"SHS (#3627": 1
}
},
"fips_security_level": {},
"hash_function": {
"MD": {
"MD5": {
"MD5": 4
}
},
"SHA": {
"SHA1": {
"SHA-1": 21
},
"SHA2": {
"SHA-2": 9,
"SHA-256": 11,
"SHA-384": 2,
"SHA-512": 2,
"SHA256": 3
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 9
},
"RNG": {
"RNG": 2
}
},
"side_channel_analysis": {},
"standard_id": {
"FIPS": {
"FIPS 140-2": 47,
"FIPS 180-4": 1,
"FIPS 186-4": 3,
"FIPS 197": 1,
"FIPS 198-1": 1
},
"NIST": {
"SP 800-135": 2,
"SP 800-38A": 1,
"SP 800-38F": 2,
"SP 800-67": 1,
"SP 800-90": 1,
"SP 800-90A": 2
},
"RFC": {
"RFC 2865": 1,
"RFC 4254": 1,
"RFC 4303": 1,
"RFC 4511": 1,
"RFC 5246": 1,
"RFC 6379": 1
},
"X509": {
"X.509": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 4,
"AES-128": 7,
"AES-256": 10
},
"RC": {
"RC4": 3
}
},
"DES": {
"3DES": {
"Triple-DES": 7
},
"DES": {
"DES": 3
}
},
"constructions": {
"MAC": {
"HMAC": 7,
"HMAC-SHA-256": 1
}
}
},
"tee_name": {},
"tls_cipher_suite": {
"TLS": {
"TLS_DHE_DSS_WITH_AES_128_SHA": 1,
"TLS_DHE_DSS_WITH_AES_256_SHA": 1,
"TLS_DHE_RSA_WITH_AES_128_SHA": 1,
"TLS_DHE_RSA_WITH_AES_256_SHA": 1,
"TLS_RSA_WITH_AES_128_SHA": 1,
"TLS_RSA_WITH_AES_256_SHA": 1,
"TLS_RSA_WITH_DES_CBC_SHA": 1,
"TLS_RSA_WITH_NULL_MD5": 1,
"TLS_RSA_WITH_NULL_SHA": 1,
"TLS_RSA_WITH_RC4_128_MD5": 1,
"TLS_RSA_WITH_RC4_128_SHA": 1
}
},
"vendor": {
"Broadcom": {
"Broadcom": 1
},
"Huawei": {
"Huawei": 6,
"Huawei Technologies Co": 40
}
},
"vulnerability": {}
},
"policy_metadata": {
"/Author": "rshelby",
"/CreationDate": "D:20170512085447-07\u002700\u0027",
"/Creator": "PScript5.dll Version 5.2.2",
"/ModDate": "D:20170512085447-07\u002700\u0027",
"/Producer": "Acrobat Distiller 11.0 (Windows)",
"/Title": "Microsoft Word - 422f - JN3871_Huawei_12700 Series_Switch_Security_Policy.docx",
"pdf_file_size_bytes": 1013258,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 38
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "27793dabd30915bc2ec0ffb22658547fc5a7a2259b144da9c555de5616bf998e",
"policy_txt_hash": "46df10a2cdcd5e3ed2cf3d56042518870d3f403835997dfc7cddfc011a7c3831"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode and with the tamper evident seals installed as indicated in the Security Policy. The protocol SNMP shall not be used when operated in FIPS mode.",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/FIPS140ConsolidatedCertMay2017.pdf",
"date_sunset": null,
"description": "Huawei S12700 series agile switches are core switches designed for next-generation campus networks. Using a fully programmable switching architecture, the S12700 series allows fast, flexible function customization and supports a smooth evolution to software-defined networking (SDN) The S12700 series uses Huawei Ethernet Network Processor (ENP) and provides native wireless access controller (AC) to help build a wired and wireless converged network. Its uniform user management capabilities deliver refined user and service management.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Roles, Services, and Authentication: Level 3",
"Design Assurance: Level 3",
"Mitigation of Other Attacks: N/A"
],
"fw_versions": "V200R010C00SPC900B900",
"historical_reason": "Moved to historical list due to sunsetting",
"hw_versions": "S12704 P/N 02114480 Version E.3, S12708 P/N 02114178 Version Q.3 and S12712 P/N 02114180 Version P.3 all with MPU P/N 03030RPE, SFU P/N 03030RPF, LPU P/N 03030SGN and Tamper Seals P/N 4057-113016",
"level": 2,
"mentioned_certs": {},
"module_name": "Huawei S12700 Series Switches",
"module_type": "Hardware",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "historical",
"sw_versions": null,
"tested_conf": null,
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2017-05-15",
"lab": "UL Verification Services, Inc.",
"validation_type": "Initial"
}
],
"vendor": "Huawei Technologies Co., Ltd.",
"vendor_url": "http://www.huawei.com"
}
}