Network Security Platform Sensor NS9300 P

Certificate #3163

Webpage information

Status historical
Historical reason SP 800-56Arev3 transition
Validation dates 04.04.2018 , 01.05.2018
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Multi-Chip Stand Alone
Caveat When operated with the tamper evident seals installed as indicated in the Security Policy
Exceptions
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Description Network Security Platform products (formerly known as IntruShield) are Intrusion Prevention Systems (IPS) that protect network infrastructures and endpoints from intrusions such as zero-day, DoS, spyware, VoIP, botnet, malware, phishing, and encrypted attacks with highly accurate, enterprise-class risk-aware intrusion prevention. The Network Security Management system manages the sensor deployments and permits the customer to receive real-time network status updates and alerts, implement customized security policies and incident response plans, and perform forensic analysis of attacks.
Version (Hardware) P/Ns IPS-NS9300 P Version 1.30; FIPS Kit P/N IAC-FIPS-KT2
Version (Firmware) 9.1.17.2
Vendor McAfee, LLC
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, RC4, DES, Triple-DES, HMAC
Asymmetric Algorithms
RSA-2048, RSA 2048, Diffie-Hellman
Hash functions
SHA-1, SHA-256, SHA-512, MD5
Schemes
MAC, Key Exchange
Protocols
SSH, TLS 1.2, TLS v1.2, TLS
Randomness
DRBG
Block cipher modes
ECB, CBC, CTR, GCM
TLS cipher suites
TLS_RSA_WITH_AES_128_GCM_SHA256

Security level
Level 2

Standards
FIPS 140-2, FIPS 186-4, SP 800-133, SP 800-52, SP 800-90A, PKCS #1, RFC 5288

File metadata

Title A. Scope of Document
Author Hanson, Mark
Creation date D:20180330120707-04'00'
Modification date D:20180330120707-04'00'
Pages 23
Creator Microsoft® Word 2016
Producer Microsoft® Word 2016

Heuristics

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 3163,
  "dgst": "e5c31b7a40373b64",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "DRBG#1679",
        "SHS#3962",
        "KTS#3221",
        "CVL#1441",
        "RSA#2639",
        "KTS#4820",
        "HMAC#3221",
        "AES#4820",
        "CVL#1526",
        "RSA#2638",
        "SHS#3960"
      ]
    },
    "cpe_matches": {
      "_type": "Set",
      "elements": [
        "cpe:2.3:a:mcafee:network_security_platform:9.1:*:*:*:*:*:*:*"
      ]
    },
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "9.1.17.2",
        "1.30"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "FF": {
          "DH": {
            "Diffie-Hellman": 2
          }
        },
        "RSA": {
          "RSA 2048": 10,
          "RSA-2048": 2
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 1
        },
        "CTR": {
          "CTR": 5
        },
        "ECB": {
          "ECB": 2
        },
        "GCM": {
          "GCM": 4
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "SSH": {
          "SSH": 22
        },
        "TLS": {
          "TLS": {
            "TLS": 18,
            "TLS 1.2": 4,
            "TLS v1.2": 2
          }
        }
      },
      "crypto_scheme": {
        "KEX": {
          "Key Exchange": 1
        },
        "MAC": {
          "MAC": 1
        }
      },
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1,
          "#1441": 2,
          "#1526": 2,
          "#1679": 2,
          "#2638": 6,
          "#2639": 2,
          "#3221": 5,
          "#3960": 5,
          "#3962": 4,
          "#4820": 6
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES (Cert. #4820": 1,
          "AES 128": 1,
          "AES 128/256": 2,
          "AES 256 (Cert. #1679": 1,
          "DES 4": 1,
          "HMAC (Cert. #3221": 1,
          "HMAC SHA-1": 1,
          "HMAC SHA-1 KAT (Cert. #3221": 1,
          "HMAC SHA-256 KAT (Cert. #3221": 1,
          "HMAC SHA-512 KAT (Cert. #3221": 1,
          "HMAC-256": 2,
          "HMAC-512": 2,
          "PKCS #1": 1,
          "RSA 2048": 10,
          "RSA PKCS #1": 1,
          "SHA- 256": 1,
          "SHA-1": 6,
          "SHA-1 KAT (Cert. #3221": 1,
          "SHA-1 KAT (Cert. #3960": 1,
          "SHA-1 KAT (Cert. #3962": 1,
          "SHA-256": 12,
          "SHA-512": 2,
          "SHA-512 KAT (Cert. #3221": 1,
          "SHA-512 KAT (Cert. #3962": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 2": 2
        }
      },
      "hash_function": {
        "MD": {
          "MD5": {
            "MD5": 6
          }
        },
        "SHA": {
          "SHA1": {
            "SHA-1": 9
          },
          "SHA2": {
            "SHA-256": 12,
            "SHA-512": 4
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 11
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140-2": 9,
          "FIPS 186-4": 2
        },
        "NIST": {
          "SP 800-133": 2,
          "SP 800-52": 1,
          "SP 800-90A": 2
        },
        "PKCS": {
          "PKCS #1": 1
        },
        "RFC": {
          "RFC 5288": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 13
          },
          "RC": {
            "RC4": 2
          }
        },
        "DES": {
          "3DES": {
            "Triple-DES": 3
          },
          "DES": {
            "DES": 3
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 11
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {
        "TLS": {
          "TLS_RSA_WITH_AES_128_GCM_SHA256": 1
        }
      },
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Hanson, Mark",
      "/CreationDate": "D:20180330120707-04\u002700\u0027",
      "/Creator": "Microsoft\u00ae Word 2016",
      "/ModDate": "D:20180330120707-04\u002700\u0027",
      "/Producer": "Microsoft\u00ae Word 2016",
      "/Title": "A. Scope of Document",
      "pdf_file_size_bytes": 1348976,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://kc.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/26000/PD26775/en_US/NSP_9.1_CLI_Guide_revA_en-us.pdf"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 23
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "94e1ed3a4fb41e70fff815130941fce3213b9582a1dc0656f92df963a6e135fc",
    "policy_txt_hash": "51337ead31cd9893ec14cd016c7cc4de57cc5ca1f5a19753d2f21141b2ef9aa8"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When operated with the tamper evident seals installed as indicated in the Security Policy",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/AprilConsolidated2018.pdf",
    "date_sunset": null,
    "description": "Network Security Platform products (formerly known as IntruShield) are Intrusion Prevention Systems (IPS) that protect network infrastructures and endpoints from intrusions such as zero-day, DoS, spyware, VoIP, botnet, malware, phishing, and encrypted attacks with highly accurate, enterprise-class risk-aware intrusion prevention. The Network Security Management system manages the sensor deployments and permits the customer to receive real-time network status updates and alerts, implement customized security policies and incident response plans, and perform forensic analysis of attacks.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Design Assurance: Level 3",
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": "9.1.17.2",
    "historical_reason": "SP 800-56Arev3 transition",
    "hw_versions": "P/Ns IPS-NS9300 P Version 1.30; FIPS Kit P/N IAC-FIPS-KT2",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "Network Security Platform Sensor NS9300 P",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2018-04-04",
        "lab": "Acumen Security",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2018-05-01",
        "lab": "Acumen Security",
        "validation_type": "Update"
      }
    ],
    "vendor": "McAfee, LLC",
    "vendor_url": "http://www.mcafee.com/"
  }
}