Certificate 1782 - ProtectServer Internal Express (PSI-e)
intCertNum 1782
strVendorName SafeNet, Inc.
strURL http://www.safenet.com
strAddress1 20 Colonnade Drive
strAddress2 Suite 200
strAddress3
strCity Ottawa
strStateProv Ontario
strPostalCode K2E 7M6
strCountry K2E 7M6
strContact Security and Certifications Team
strEmail SecurityCertifications@safenet-inc.com
strPhone 613-221-5068
strFax 613-723-5079
strContact2
strEmail2
strFax2
strPhone2
intCertNum 1782
strModuleName ProtectServer Internal Express (PSI-e)
strPartNumber Hardware Versions: VBD-04-0302 and VBD-04-0303;
Firmware Versions: 3.20.00, 3.20.01, 3.20.05, 3.20.09 and 3.20.10
memModuleNotes When operated in FIPS mode
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL
strModuleType Hardware
strValidationDate 08/07/2012;11/05/2012;10/16/2014;01/27/2016;07/07/2016
intOverallLevel 3
memIndividualLevelNotes
strFIPSAlgorithms AES (Certs. #1859 and #1860);
DSA (Cert. #579);
ECDSA (Cert. #259);
HMAC (Cert. #1106);
RNG (Cert. #975);
RSA (Cert. #940);
SHS (Cert. #1636);
Triple-DES (Certs. #1206 and #1207);
Triple-DES MAC (Triple-DES Cert. #1206, vendor affirmed)
strOtherAlgorithms AES MAC (AES Cert. #1859;
non-compliant);
ARIA;
CAST-128;
CAST MAC;
DES;
DES MAC;
Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 150 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
ECIES;
EC Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 256 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
IDEA;
IDEA MAC;
MD2;
MD5;
MD5 HMAC;
RC2;
RC2 MAC;
RC4;
RIPEMD-128;
RIPEMD-160;
RMD128 HMAC;
RMD160 HMAC;
RSA (key wrapping;
key establishment methodology provides between 112 and 150 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
SEED;
SEED MAC;
Triple-DES (Certs. #1206 and #1207, key wrapping;
key establishment methodology provides 112 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
AES (Certs. #1859 and #1860, key wrapping;
key establishment methodology provides between 128 and 256 bits of encryption strength)
strConfiguration Multi-chip embedded
memModuleDescription The SafeNet PSI-e is a high-end intelligent PCI adapter card, used either standalone or in the SafeNet PSE appliance, that provides a wide range of cryptographic functions using firmware and dedicated hardware processors. The module provides key management (e.g., generation, storage, deletion, and backup), an
extensive suite of cryptographic mechanisms, and process management including separation between operators. The PSI-e also features non-volatile tamper protected memory for key
storage, a hardware random number generator, and an RTC.
intModuleCount 1
memAdditionalNotes 11/05/12: add FW 3.20.01 and updated security policy.
10/16/14: added FW 3.20.05, updated contact information and updated security policy.
Updated firmware versions.
strFirstValidtionDate 08/07/12 00:00:00
strLabName Leidos
strValidationYear 2012