Certificate 2099 - Riverbed Cryptographic Security Module
intCertNum 2099
strVendorName Riverbed Technology, Inc.
strURL http://www.riverbed.com
strAddress1 199 Fremont Street
strAddress2
strAddress3
strCity San Francisco
strStateProv CA
strPostalCode 94105
strCountry 94105
strContact Joe Tomasello
strEmail Joe.Tomasello@riverbed.com
strPhone 415-344-5756
strFax
strContact2 Andy Pang
strEmail2 Andy.Pang@riverbed.com
strFax2
strPhone2 415-247-7341
intCertNum 2099
strModuleName Riverbed Cryptographic Security Module
strPartNumber Software Version: 1.0
memModuleNotes When installed, initialized and configured as specified in the Security Policy Section 4 and operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. No assurance of the minimum strength of generated keys
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL
strModuleType Software
strValidationDate 03/07/2014;04/16/2014;09/25/2014;12/15/2015
intOverallLevel 1
memIndividualLevelNotes -Physical Security: N/A ;-Mitigation of Other Attacks: N/A ;;;-Operational Environment: Tested as meeting Level 1 with Tested as meeting Level 1 with RiOS 8.0 x86 32-bit running on Riverbed Steelhead Appliance; RiOS 8.0 x86 64-bit running on Riverbed Steelhead Appliance; RiOS 8.0 x86 64-bit on VMware ESXi 5.1 running on Dell PowerEdge R210II without PAA; RiOS 8.0 x86 64-bit on VMware ESXi 5.1 running on Dell PowerEdge R210II with PAA; Stingray Traffic Manager Virtual Appliance x86 on VMware ESXi 5.1 running on Dell PowerEdge R210II without PAA; Stingray Traffic Manager Virtual Appliance x86 on VMware ESXi 5.1 running on Dell PowerEdge R210II with PAA; RiOS 8.0 x86 64-bit running on Riverbed Steelhead Appliance with PAA; Granite OS 2.0 running on Riverbed Granite Core Appliance; Granite OS 2.0 x86 on VMware ESXi 5.1 running on Dell PowerEdge R210II without PAA; Granite OS 2.0 x86 on VMware ESXi 5.1 running on Dell PowerEdge R210II with PAA; Whitewater OS 3.0 running on Whitewater Appliance without PAA; Whitewater OS 3.0 running on Whitewater Appliance with PAA; Whitewater OS 3.0 on VMware ESXi 5.1 running on Dell PowerEdge R210II without PAA; Whitewater OS 3.0 on VMware ESXi 5.1 running on Dell PowerEdge R210II with PAA; Interceptor OS 4.5 running on Riverbed Interceptor Appliance; RiOS 8.6 32-bit running on Riverbed Steelhead Appliance; RiOS 8.6 64-bit running on Riverbed Steelhead Appliance; RiOS 8.6 64-bit on Vmware ESXi 5.1 running on Dell PowerEdge R210II without PAA; RiOS 8.6 64-bit on Vmware ESXi 5.1 running on Dell PowerEdge R210II with PAA; RiOS 8.6 64-bit running on Riverbed Steelhead Appliance with PAA; Steelhead Mobile Controller 4.6 running on SMC without PAA; Steelhead Mobile Controller 4.6 running on SMC with AES NI; Steelhead Mobile Controller 4.6 on Vmware ESXi 5.1 running on Dell PowerEdge R210II without PAA; Steelhead Mobile Controller 4.6 on Vmware ESXi 5.1 running on Dell PowerEdge R210II with PAA (single-user mode)
strFIPSAlgorithms AES (Cert. #2374);
CVL (Cert. #65);
DRBG (Cert. #310);
DSA (Cert. #745);
ECDSA (Cert. #392);
HMAC (Cert. #1476);
RSA (Cert. #1229);
SHS (Cert. #2046);
Triple-DES (Cert. #1485)
strOtherAlgorithms RSA (encrypt/decrypt);
EC Diffie-Hellman;
RNG (non-compliant);
DRBG (non-compliant)
strConfiguration Multi-chip standalone
memModuleDescription The Riverbed Cryptographic Security Module provides the cryptographic functionality for a variety of Riverbed's platforms including Steelhead and Granite appliances. These network appliances deliver a scalable Wide Area Data Services (WDS) solution, transparently and securely optimizing performance across an enterprise network, and the Stingray software family is used to optimize, secure, and accelerate performance of online applications.
intModuleCount 1
memAdditionalNotes 04/16/14: Added OE Whitewater OS 3.0 running on Whitewater Appliance without AES-NI; Whitewater OS 3.0 running on Whitewater Appliance with AES-NI; Whitewater OS 3.0 on VMware ESXi 5.1 running on Dell PowerEdge R210II without AES-NI; Whitewater OS 3.0 on VMware ESXi 5.1 running on Dell PowerEdge R210II with AES-NI; Interceptor OS 4.5 running on Riverbed Interceptor Appliance and updated security policy.
09/25/14: Added OE RiOS 8.6 32-bit running on Riverbed Steelhead Appliance; RiOS 8.6 64-bit running on Riverbed Steelhead Appliance; RiOS 8.6 64-bit on Vmware ESXi 5.1 running on Dell PowerEdge R210II without AES-NI; RiOS 8.6 64-bit on Vmware ESXi 5.1 running on Dell PowerEdge R210II with AES-NI; RiOS 8.6 64-bit running on Riverbed Steelhead Appliance with AES-NI; Steelhead Mobile Controller 4.6 running on SMC without AES-NI; Steelhead Mobile Controller 4.6 running on SMC with AES NI; Steelhead Mobile Controller 4.6 on Vmware ESXi 5.1 running on Dell PowerEdge R210II without AES-NI; Steelhead Mobile Controller 4.6 on Vmware ESXi 5.1 running on Dell PowerEdge R210II with AES-NI and updated the security policy.
Moved RNG to the non-approved line and updated the SP.
strFirstValidtionDate 03/07/14 00:00:00
strLabName CGI
strValidationYear 2014