IMB FIPS 140-2 Level 3 Validation Non-Proprietary Security Policy Version 1.0 CRT.TD.001198.DRM Page 1 Version 1.0 Doremi Cinema LLC Table of Contents 1 INTRODUCTION ..................................................................................................................... 3 1.1 PURPOSE .......................................................................................................................... 3 1.2 REFERENCES..................................................................................................................... 3 2 IMB OVERVIEW ...................................................................................................................... 4 3 FIPS 140-2 MODE OF OPERATION ...................................................................................... 7 3.1 APPROVED ALGORITHMS .................................................................................................... 7 3.2 NON-APPROVED ALGORITHMS ............................................................................................ 8 4 SECURITY LEVELS................................................................................................................ 9 5 MODULE INTERFACES ....................................................................................................... 10 6 CRITICAL SECURITY PARAMETERS ................................................................................ 11 6.1 SECRET AND PRIVATE KEYS AND OTHER CSPS ................................................................ 11 6.2 PUBLIC KEYS ................................................................................................................... 12 7 ROLES AND SERVICES ...................................................................................................... 13 7.1 PCI USER SERVICES........................................................................................................ 13 7.2 SMS USER SERVICES ...................................................................................................... 15 7.3 SAS USER SERVICES ...................................................................................................... 17 7.4 SOS (CRYPTO-OFFICER) USER SERVICES ........................................................................ 18 7.5 UN-AUTHENTICATED SERVICES ......................................................................................... 19 7.6 AUTHENTICATION STRENGTH ............................................................................................ 20 8 PHYSICAL SECURITY ......................................................................................................... 21 9 OPERATIONAL ENVIRONMENT ......................................................................................... 22 10 SELF-TESTS ......................................................................................................................... 22 11 MITIGATION OF OTHER ATTACKS.................................................................................... 23 12 SECURITY RULES ............................................................................................................... 23 13 ACRONYMS .......................................................................................................................... 24 14 DOCUMENT REVISION HISTORY....................................................................................... 26 CRT.TD.001198.DRM Page 2 Version 1.0 Doremi Cinema LLC 1 Introduction 1.1 Purpose This document is a non-proprietary Cryptographic Module Security Policy for the Doremi Cinema LLC IMB. It describes how this module meets all the requirements specified in the FIPS 140-2 for security Level 3. This Policy forms a part of the submission package provided to the testing lab. FIPS 140-2 (Federal Information Processing Standards Publication 140-2) specifies the security requirements for a cryptographic module protecting sensitive information. Based on four security levels for cryptographic modules this standard identifies requirements in eleven sections. For more information about the standard, visit: http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf. 1.2 References This Security Policy describes how this module complies with the eleven sections of the standard. • For more information on the FIPS 140-2 standard and validation program, please refer to the NIST website at http://csrc.nist.gov/cryptval/. • For more information about Doremi Cinema LLC solutions, please visit the following website: http://www.doremicinema.com/ CRT.TD.001198.DRM Page 3 Version 1.0 Doremi Cinema LLC 2 IMB Overview The IMB (Integrated Media Block) is a card that utilizes Doremi’s patented 4K media block technology. The IMB can be installed in a DLP Series-II 4K-ready projector along with Doremi’s external ShowVault™, allowing to perform 4K content playback. The customer can still choose to project in 2K using the IMB. The pictures below present the six IMB hardware models: Front View Rear View Figure 1: Hardware Model IMB-A0 Front View Rear View Figure 2: Hardware Model IMB-E0 CRT.TD.001198.DRM Page 4 Version 1.0 Doremi Cinema LLC Front View Rear View Figure 3: Hardware Model IMB-A1 Front View Rear View Figure 4: Hardware Model IMB-E1 Front View Rear View Figure 5: Hardware Model IMB-A2 CRT.TD.001198.DRM Page 5 Version 1.0 Doremi Cinema LLC Front View Rear View Figure 6: Hardware Model IMB-E2 The IMB has been designed for compliance with FIPS 140-2, Level 3 requirements. CRT.TD.001198.DRM Page 6 Version 1.0 Doremi Cinema LLC 3 FIPS 140-2 Mode of Operation The module only provides a FIPS approved mode of operation. This mode of operation makes use of approved algorithms and also supports non-approved algorithms that are allowed in a FIPS approved mode of operation. In order to verify that the module is in a FIPS approved mode of operation the operator shall ensure that the firmware and hardware are the FIPS approved versions. The versions should match those listed on the validation certificate or found on the cryptographic module validation list webpage (http://csrc.nist.gov/cryptval/140-1/140val- all.htm). The operator shall also ensure that all self tests pass and that the module transitions into operational mode. 3.1 Approved Algorithms The IMB supports the following algorithms approved for use in a FIPS mode of operation:  AES (FPGA implementation) with 128 bit keys for encryption in ECB mode and decryption in CBC mode – see Certificate #532  AES with 128 bit keys for encryption and decryption in CBC mode – see Certificate #1252  AES with 128 bit keys for encryption and decryption in ECB mode – see Certificate #1383  HMAC-SHA1 – see Certificate #731  SHA-1 and SHA-256, used by other algorithms (like HMAC-SHA1, FIPS 186-2 RNG or RSA Digital Signature) – see Certificate #1148  ANSI X9.31 RNG, using TDES-2Keys – see Certificate #696  FIPS 186-2 RNG – see Certificate #693  RSA Key generation and Digital Signature Generation/Verification – see Certificates #600, #601 and #777 CRT.TD.001198.DRM Page 7 Version 1.0 Doremi Cinema LLC 3.2 Non-Approved Algorithms The IMB also supports the following non-approved algorithms that are allowed for use in a FIPS mode of operation:  RSA Decryption (modulus 2048) – used for key unwrapping only, key establishment methodology provides 112 bits of strength  TRNG (RNG Hardware based) – used to seed the approved ANSI X9.31 RNG presented in paragraph 3.1  MD5 used for TLS key establishment  HMAC-MD5 used for TLS key establishment  ECDH - considered as non-security relevant and only used to interoperate with legacy equipment.  TI S-box – considered as non-security relevant data obfuscation (plaintext); only used for status and control. CRT.TD.001198.DRM Page 8 Version 1.0 Doremi Cinema LLC 4 Security Levels The IMB design, development, tests and production has satisfied the requirements to ensure a secure product. It is especially adapted to Digital Cinema security requirements. The IMB, Hardware Models IMB-A0, IMB-E0, IMB-A1, IMB-E1, IMB-A2 and IMB-E2 and firmware versions 5.0.10f, 30.04m-1 and 99.03f, is tested to meet the FIPS security requirements for the levels shown in the following table. These configurations are identified on the FIPS 140-2 validation certificate as follows: (Hardware Versions: IMB-A0, IMB-A1, IMB-A2, IMB-E0, IMB-E1 and IMB-E2; Firmware Versions: (5.0.10f, 30.04m-1 and 99.03f); Hardware) The overall module is tested FIPS 140-2 Security Level 3. Table 1 – FIPS 140-2 Security Level FIPS 140-2 Security Requirements Section Level 1. Cryptographic Module Specification 3 2. Cryptographic Module Ports and Interfaces 3 3. Roles, Services and Authentication 3 4. Finite State Model 3 5. Physical Security 3 6. Operational Environment N/A 7. Cryptographic Key Management 3 8. EMI/EMC 3 9. Self-Tests 3 10. Design Assurance 3 11. Mitigation of Other Attacks N/A FIPS Overall Level 3 CRT.TD.001198.DRM Page 9 Version 1.0 Doremi Cinema LLC 5 Module Interfaces The following table lists the logical interfaces of the module and how they map to physical ports: Table 2 – FIPS 140-2 Logical Interfaces FIPS 140-2 Logical Interface Module Physical Ports Data Input Interface LVDS connector, PCI-express interface, GPIO connector, SDI dual HD input connectors, HDMI input, LTC (time code) input connector Data Output Interface LVDS connector, PCI-express interface, GPIO connectors, Audio connectors, LTC (time code) output connector, Host Reset connector Control Input Interface LVDS connector, PCI-express interface, Reset connector (on IMB-A0, IMB-A1 and IMB-A2 only), Fan voltage selection connector Status Output Interface LVDS connector, PCI-express interface, Serial Port, Clock output Power Interface PCI-express interface, Battery, Power connectors No maintenance access interface is present. CRT.TD.001198.DRM Page 10 Version 1.0 Doremi Cinema LLC 6 Critical Security Parameters 6.1 Secret and Private Keys and Other CSPs The secret and private keys that exist within the cryptographic module are identified below: 1. Device Master Key – AES key used to protect the Device Private Key, the External Private Key, the CSP Secret Key and the AES Binary Update Key. 2. Device Private Key – Private RSA key used for key wrapping, signatures and TLS. 3. External Private Key – Private RSA key used for key wrapping. 4. Extra Private Key – Private RSA key, used for digital signature generation and TLS client operations. 5. Reset Private Key – Private RSA key used for key wrapping, signatures and TLS. 6. Reset Secret Key – AES key used to protect the Reset Private Key. 7. CSP Secret Key – AES key used to protect the Reset Secret Key, the Doremi HMAC Key, the AES Shared knowledge Key, the AES Wrapping Key and the PCI User Authentication Secrets. 8. AES Wrapping Key – AES key used for AES Key Wrapping. 9. AES Content Encryption Keys – AES keys that protect content. 10. AES Binary Update Key – Used to decrypt binaries being imported into the module. 11. Seed Values – Used to seed the FIPS approved RNGs. 12. AES Shared Knowledge Key – AES key used to secure import/export of CSPs. 13. Doremi HMAC Key – HMAC key used for Firmware Load Test. 14. Content Integrity Keys – HMAC keys used to verify the integrity of HMAC’d content. 15. TLS AES Session Keys – AES keys used for TLS communication. 16. TLS HMAC Sessions Keys – HMAC keys used for TLS communication. 17. TLS PRF Data – Used for TLS session key establishment. 18. TLS Master Secret – Used for TLS session key establishment. 19. TLS Pre-Master Secret – Used for TLS session key establishment. 20. PCI User Authentication Secrets – PCI User Authentication Secrets used by the module (8 characters). CRT.TD.001198.DRM Page 11 Version 1.0 Doremi Cinema LLC 6.2 Public Keys Public keys are not considered as Critical Security Parameters because of their public status. The public keys contained in the module are listed below for consistency: 1. Device Public Key – Public RSA key used for TLS and within Digital Certificate. 2. External Public Key – Public RSA key used within Digital Certificate. 3. Extra Public Key – Public RSA key used for TLS client mode and within digital certificate. 4. Reset Public Key – Public RSA key used for TLS and within Digital Certificate. 5. SMS User Public Key – Public RSA key used for TLS and within Digital Certificate. 6. SAS User Public Key – Public RSA key used for TLS and within Digital Certificate. 7. SOS (Crypto-Officer) User Public Key – Public RSA key used for TLS and within Digital Certificate. 8. Cinema Equipment Public Key(s) – Public RSA key(s) used for TLS and within Digital Certificate. 9. Signers Public Key(s) – Public RSA key(s) used to verify XML files signature and within Digital Certificate. 10. ICP Public Key(s) – Public RSA key(s) used within Digital Certificate for TLS and Digital Signature verification. CRT.TD.001198.DRM Page 12 Version 1.0 Doremi Cinema LLC 7 Roles and Services The cryptographic module supports four distinct operator roles: PCI User, SMS User, SAS User and SOS (Crypto-officer) User. No maintenance role is supported. The services belonging to each user are presented in the following paragraphs. 7.1 PCI User Services Table 3 below summarizes specific services available to the PCI Users only. Table 3: PCI User Services Services Description CSP(s) and Public Key(s) Type of Possibly Involved access to CSP(s) and Public Key(s) Basic This service allows setting and AES Shared Knowledge Key, Read Configuration getting basic configuration AES Content Encryption Keys parameters. Content Integrity Keys Read/Write Advanced This service allows setting and Device Master Key, Doremi Read Configuration getting advanced configuration HMAC Key, AES Binary Update parameters. Key, External Private Key, CSP Secret Key, AES Shared Knowledge Key, External Public Key AES Content Encryption Keys Read/Write Get Status This service allows getting - - Information status information. GPIO This service allows loading and - - getting GPIO data. Get Advanced This service allows getting Device Master Key, Device Read Information advanced information. Private Key, Reset Private Key, Reset Secret Key, CSP Secret Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre-Master Secret, Device Public Key, Reset Public Key, External Public Key, Extra Public Key, SMS User Public Key, SAS User Public Key, SOS (Crypto-Officer) User Public Key Cinema Equipment Public Key(s) Write CRT.TD.001198.DRM Page 13 Version 1.0 Doremi Cinema LLC Services Description CSP(s) and Public Key(s) Type of Possibly Involved access to CSP(s) and Public Key(s) Basic Operations This service allows performing Device Master Key, Device Read basic operations. Private Key, Extra Private Key, Reset Private Key, Reset Secret Key, CSP Secret Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre- Master Secret, AES Wrapping Key, Device Public Key, Reset Public Key, SMS User Public Key, SAS User Public Key, SOS (Crypto-Officer) User Public Key AES Binary Update Key, AES Write Content Encryption Keys, Content Integrity Keys, Seed Values, Signers Public Key(s), Cinema Equipment Public Key(s), ICP Public Key(s) External Private Key, External Read/Write Public Key CRT.TD.001198.DRM Page 14 Version 1.0 Doremi Cinema LLC 7.2 SMS User Services Table 4 below presents all the services available to the SMS User – Screen Manager. Table 4: SMS User Services Services Description CSP(s) and Public Key(s) Type of Possibly Involved access to CSP(s) and Public Key(s) Get Advanced This service allows getting Device Master Key, Device Read Information advanced information. Private Key, Reset Private Key, Reset Secret Key, CSP Secret Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre-Master Secret, Device Public Key, Reset Public Key, External Public Key, Extra Public Key, SMS User Public Key, SAS User Public Key, SOS (Crypto-Officer) User Public Key Cinema Equipment Public Key(s) Write Basic Operations This service allows performing Device Master Key, Device Read basic operations. Private Key, Extra Private Key, Reset Private Key, Reset Secret Key, CSP Secret Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre- Master Secret, AES Wrapping Key, Device Public Key, Reset Public Key, SMS User Public Key, SAS User Public Key, SOS (Crypto-Officer) User Public Key AES Binary Update Key, AES Write Content Encryption Keys, Seed Values, Signers Public Key(s), Cinema Equipment Public Key(s), ICP Public Key(s) External Private Key, External Read/Write Public Key CRT.TD.001198.DRM Page 15 Version 1.0 Doremi Cinema LLC Services Description CSP(s) and Public Key(s) Type of Possibly Involved access to CSP(s) and Public Key(s) Basic Settings This service allows performing Device Master Key, Device Read some of the module’s settings. Private Key, CSP Secret Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre- Master Secret, Device Public Key, SMS User Public Key, SAS User Public Key, SOS (Crypto-Officer) User Public Key AES Binary Update Key, Doremi Read/Write HMAC Key, Signers Public Key(s) Suite Management This service provides suite Device Master Key, Device Read management operations. Private Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre-Master Secret, Device Public Key, SMS User Public Key, SAS User Public Key, SOS (Crypto-Officer) User Public Key, External Private Key AES Binary Update Key, AES Read/Write Content Encryption Keys, Content Integrity Keys, Signers Public Key(s) CRT.TD.001198.DRM Page 16 Version 1.0 Doremi Cinema LLC 7.3 SAS User Services Table 5 below presents all the services available to the SAS User – Security Agent. Table 5: SAS User Services Services Description CSP(s) and Public Key(s) Type of Possibly Involved access to CSP(s) and Public Key(s) All the services listed in Table 4 for the SMS User are also available for the SAS User. Device Master Key, Device Read Reset Board This service resets the module. Private Key, Reset Private Key, Reset Secret Key, CSP Secret Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre-Master Secret, Device Public Key, Reset Public Key, SAS User Public Key, SOS (Crypto-Officer) User Public Key Device Private Key, Device Public Write Key, External Private Key, External Public Key, Extra Private Key, Extra Public Key, Content Integrity Keys, Seed Values, AES Content Encryption Keys, AES Binary Update Key, Signers Public Key(s), ICP Public Key(s) CRT.TD.001198.DRM Page 17 Version 1.0 Doremi Cinema LLC 7.4 SOS (Crypto-Officer) User Services Table 6 below presents all the services available to the SOS (Crypto-Officer) User – Security Officer. Table 6: SOS (Crypto-Officer) User Services Services Description CSP(s) and Public Key(s) Type of Possibly Involved access to CSP(s) and Public Key(s) All the services listed in Table 5 for the SAS User are also available for the SOS (Crypto-Officer) User. This service allows performing Device Master Key, Device Read SOS Configuration specific SOS (Crypto-Officer) Private Key, Reset Private Key, User configuration operations. Reset Secret Key, CSP Secret Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre-Master Secret, AES Wrapping Key, Device Public Key, Reset Public Key, SOS (Crypto-Officer) User Public Key Device Private Key, Device Read/Write Public Key, External Private Key, External Public Key, Extra Private Key, Extra Public Key, SMS User Public Key Device Master Key, Device Read Zeroization This service zeroizes sensitive Private Key, Reset Private Key, data (including all plaintext Reset Secret Key, CSP Secret CSPs) Key, TLS AES Session Keys, TLS HMAC Session Keys, TLS PRF Data, TLS Master Secret, TLS Pre-Master Secret, Device Public Key, Reset Public Key, SOS (Crypto-Officer) User Public Key All plaintext CSPs, Device Public Write Key, External Public Key, Extra Public Key, SMS User Public Key, Signers Public Key(s), ICP Public Key(s) CRT.TD.001198.DRM Page 18 Version 1.0 Doremi Cinema LLC 7.5 Un-authenticated Services The cryptographic module supports the following unauthenticated services: Table 7: Un-authenticated Services Services Description CSP(s) and Type of Public Key(s) access to Possibly CSP(s) and Involved Public Key(s) Get Session Id Exports the current Session Id of the module - - This “service” corresponds to the status Show Status - - information exported automatically through the Serial Port Host Reset Resets the host - - Reset Performs reset operations - - Network Performs non-security relevant network related - - Configuration configuration Video Settings Performs video related settings - - The power recycling of the IMB allows executing the suite of power-up tests required by FIPS 140-2. No other defined service allows executing these power-up tests. It has to be considered as an unauthenticated service as it only requires the IMB to be powered-off and powered-on again. Note that the following unauthenticated service is accessible by connecting to the cryptographic module through ECDH and TI S-box, the use of which is considered non- security relevant data obfuscation from FIPS 140-2 perspective as related to this cryptographic module; this does not provide any security relevant functions and is not used to protect sensitive unclassified data. The I/O therein is obfuscated to support interoperability with existing legacy equipment and is only used to set and retrieve non- security relevant items. Note that this service is considered to be plaintext with respect to FIPS 140-2, and does not use the Approved security functions, disclose, modify, or substitute CSPs or otherwise affect the security of the module: o Network Configuration service CRT.TD.001198.DRM Page 19 Version 1.0 Doremi Cinema LLC 7.6 Authentication Strength The cryptographic module enforces the separation of roles using identity-based operator authentication. The PCI User role is authenticated through the use of “PCI User Authentication Secrets” – known by Doremi Cinema LLC only – associated with the current Session Id. Note that data to be compared to authentication secrets are imported encrypted in the module. SMS, SAS and SOS (Crypto-Officer) User roles are authenticated through the use of 2048 bits RSA Signatures. Note that these authentications rely on the usage of TLS. Table 8: Roles and Required Identification and Authentication Role Type of Authentication Authentication Mechanism PCI User Identity-based operator authentication Authentication Secret Verification SMS User Identity-based operator authentication 2048 bits RSA Signature Verification SAS User Identity-based operator authentication 2048 bits RSA Signature Verification SOS (Crypto- Identity-based operator authentication 2048 bits RSA Signature Verification Officer) User Table 9: Strengths of Authentication Mechanisms Authentication Mechanism Strength of Mechanism Authentication Secret Verification With 256 possible characters and 8-character Authentication Secret, the probability that a random attempt will succeed or a false acceptance will occur is 5.42 x 10ˉ(20) that is less than 1/1,000,000. The probability of successfully authenticating to the module within one minute with a replay delays of 1s is 3.25 x 10ˉ(18) that is less than 1/100,000. 2048 bits RSA Signature Verification It relies on 2048 bits RSA keys known to provide an equivalent of 112 bits of encryption strength. Therefore, a random attempt has an associated probability of fault acceptance of (1/2)^112, which is less than 1/1,000,000. Given the processing capabilities and the clock speed, the number of consecutive attempt that could be launched in a one minute period is extremely limited. An extremely conservative estimate is that the probability of successfully authenticating in a one minute period would be (1/2)^69, which is much less than 1/100,000. CRT.TD.001198.DRM Page 20 Version 1.0 Doremi Cinema LLC 8 Physical Security The IMB is classified as a multiple-chip embedded module for FIPS purposes. It is comprised of production grade components. The physical security mechanism employed by the module includes a hard, opaque and tamper-evident metal enclosure that is monitored 24/7 by tamper detection and response mechanisms; any attempt to remove the metal enclosure results in instantaneous active zeroization of all plaintext CSPs. The module also includes tamper evident epoxy covering each of the mounting hardware for models IMB-A0 and IMB-E0, and tamper evident labels covering each of the mounting hardware for models IMB-A1, IMB-E1, IMB-A2 and IMB-E2 – these labels are installed by the manufacturer. The PCB itself also provides tamper evidence. The tamper evident metal enclosure, tamper- evident epoxy (on hardware models IMB-A0 and IMB-E0) or tamper evident labels (on hardware models IMB-A1, IMB-E1, IMB-A2 and IMB-E2), and tamper evident PCB shall be periodically inspected to ensure that physical security is maintained. The cryptographic boundary is the outer perimeter of the board’s edge and it includes the hard, opaque and tamper-evident metal enclosure covering all security relevant components. All the components that reside outside of the metal enclosure are excluded from FIPS 140-2 requirements. Components excluded from the FIPS 140-2 requirements are not security relevant. The excluded components are the non-security relevant data input and data output, filtering components (capacitors, resistors, inductance), voltage regulators, fuses, traces and signals routed to said components, PCB outside metal enclosure, and connectors. Table 10: Physical Security Inspection Physical Security Recommended Frequency Inspection/Test Guidance Details Mechanism of Inspection/Test Metal enclosure with Upon receiving the module Visually inspect all sides of the metal tamper detection and from the manufacturer, and enclosure for visible evidence of tampering response mechanisms as often as feasible. (e.g. scratches, scrapes, nics, gauges, etc). Check the output of the Show Status service on an on-going basis to confirm that the module has not tampered/zeroized. Tamper evident epoxy Upon receiving the module Visually inspect the epoxy for visible evidence for hardware versions from the manufacturer, and of tampering (e.g. scratches, scrapes, nics, IMB-A0 and IMB-E0 as often as feasible. gauges, etc). Tamper evident labels Upon receiving the module Visually inspect the labels for visible evidence for hardware versions from the manufacturer, and of tampering (e.g. removal, scratches, IMB-A1, IMB-A2, IMB- as often as feasible. scrapes, rips, nics, replacements, gauges, E1 and IMB-E2 etc). Tamper evident PCB Upon receiving the module Visually inspect the PCB for visible evidence from the manufacturer, and of tampering (e.g. scratches, scrapes, nics, as often as feasible. gauges, etc) If any tampering with the module is suspected, please remove the module from service and contact Doremi Cinema LLC Technical Support department immediately at 1-818- 562-1101 or email support@doremicinema.com. CRT.TD.001198.DRM Page 21 Version 1.0 Doremi Cinema LLC 9 Operational Environment The IMB supports a limited operational environment that only allows the loading of trusted, validated, and HMACed binary images through authenticated service. Doremi Cinema LLC maintains sole possession of the corresponding HMAC key needed to validate the uploaded binary into the IMB. 10 Self-Tests The module performs the following self-tests:  Power Up Self-tests o Firmware Integrity Test (32 bits CRC) o AES Encryption/Decryption known answer tests o HMAC-SHA1 and HMAC-SHA256 known answer test o SHA1 known answer test o RSA Digital Signature Generation/Validation known answer test o RNGs known answer test (ANSI X9.31 RNG and FIPS 186-2 RNG) o Critical Functions Tests:  CRC 32-bit known answer test  RSA Encryption/Decryption Pair-wise Consistency Test  Conditional Tests o Continuous ANSI X9.31 RNG Test o Continuous FIPS 186-2 RNG Test o Continuous TRNG Test (Hardware RNG Test) o Firmware Load Test (HMAC-SHA1) o Pair-wise consistency test (RSA Keys Generation: Digital Signature Generation/Verification; Encryption/Decryption) The bypass test and the manual key entry test are N/A. CRT.TD.001198.DRM Page 22 Version 1.0 Doremi Cinema LLC 11 Mitigation of Other Attacks The IMB does not mitigate any specific attacks beyond the scope of FIPS 140-2 requirements. Table 11: Mitigation of Other Attacks Other Attacks Mitigation Mechanism Specific Limitations N/A N/A N/A 12 Security Rules The cryptographic module’s design corresponds to the module’s security rules. This section documents the security rules enforced by the cryptographic module to implement the security requirements of this FIPS 140-2 Level 3 module. 1. The cryptographic module shall provide four distinct operator roles. These are the PCI User role, the SMS User role, the SAS User role and the SOS (Crypto-Officer) User role. 2. The cryptographic module shall provide identity-based authentication. 3. When the module has not been placed in a valid role, the operator shall not have access to any cryptographic services. 4. Data output shall be inhibited during self-tests and error states. 5. Data output shall be logically disconnected from the internal process performing key generation and zeroization. 6. Status information shall not contain CSPs or sensitive data that if misused could lead to a compromise of the module. 7. The module shall not support a bypass capability or a maintenance interface. 8. The cryptographic module performs the tests as presented in section 10 above. 9. At any time the operator is capable of commanding the module to perform the power-up self-test by a power-cycle. 10. Prior to each use, the ANSI X9.31 DRNG, FIPS 186-2 DRNG, and the hardware based TRNG are tested using the conditional test specified in FIPS 140-2 §4.9.2. 11. The module supports concurrent operators. 12. The module only supports a FIPS mode of operation (i.e. non-FIPS mode is not supported). To determine that the module is running in FIPS mode, invoke the “Get Advanced Information” service and check that the firmware versions are the same as those written in this Security Policy document. Also, check that the hardware version written on the module’s sticker matches the one specified in this Security Policy document. CRT.TD.001198.DRM Page 23 Version 1.0 Doremi Cinema LLC 13 Acronyms Term Definition AES Advanced Encryption Standard Audio Engineering Society – European Broadcasting Union AES-EBU ANSI American National Standards Institute CSP Critical Security Parameter DCI Digital Cinema Initiatives DRNG Deterministic Random Number Generator ECDH Elliptic Curve Diffie-Hellman EMC Electromagnetic Compatibility EMI Electromagnetic Interference FIPS Federal Information Processing Standards FPGA Field-Programmable Gate Array GPI General Purpose Input GPIO General Purpose Input/Output GPO General Purpose Output HD High Definition HMAC Keyed Hash Message Authentication Code KAT Known Answer Test LTC Linear Time-Code N/A Not Applicable NIST National Institute of Standards and Technology OSD On Screen Display PCI Peripheral Component Interconnect PRF Pseudo Random Function RNG Random Number Generator RSA Rivest, Shamir and Adelman RTC Real Time Clock SAS Security Agent System SDI Serial Digital Interface SHA Secure Hash Algorithm CRT.TD.001198.DRM Page 24 Version 1.0 Doremi Cinema LLC Term Definition SMS Screen Management System SOS Security Officer System TDES Triple Data Encryption Standard TLS Transport Layer Security TRNG True Random Number Generator CRT.TD.001198.DRM Page 25 Version 1.0 Doremi Cinema LLC 14 Document Revision History Date Version Description 05/05/2011 1.0 First version CRT.TD.001198.DRM Page 26 Version 1.0 Doremi Cinema LLC