Certificate 670 - nShield 4000 [1], nShield 2000 [2], nShield 2000 for netHSM [3], nShield 800 [4], nShield 500 [5], nShield 500 for netHSM [6] and nShield Plus [7]

intCertNum 670 strVendorName nCipher Corporation Ltd. strURL http://www.ncipher.com/cryptographic_hardware/hard strAddress1 92 Montvale Ave. strAddress2 Suite 4500 strAddress3 strCity Stoneham strStateProv MA strPostalCode 02180 strCountry 02180 strContact sales@ncipher.com strEmail sales@ncipher.com strPhone 800-NCIPHER strFax 781-994-4001 strContact2 strEmail2 strFax2 strPhone2 intCertNum 670 strModuleName nShield 4000 [1], nShield 2000 [2], nShield 2000 for netHSM [3], nShield 800 [4], nShield 500 [5], nShield 500 for netHSM [6] and nShield Plus [7] strPartNumber Hardware Versions: nC4033P-4K0 [1], nC4033P-2K0 [2], nC4033P-2K0N [3], nC4033P-800 [4], nC4133P-500 [5], nC4133P-500N [6] and nC4033P-50 [7], Build Standards L & N; Firmware Versions: 2.22.6-2, 2.22.34-2 and 2.22.43-2 memModuleNotes When operated in FIPS mode and initialized to Overall Level 2 per Security Policy str140Version 140-2 _sp_ Security Policy   [pdf][html][txt] _cert_ Certificate   [pdf][txt] strPURL strModuleType Hardware strValidationDate 05/11/2006;06/14/2006;12/20/2006;04/29/2008;06/24/2008 intOverallLevel 2 memIndividualLevelNotes -Roles, Services, and Authentication: Level 3;-Physical Security: Level 3 +EFP/EFT;-Cryptographic Key Management: Level 3;-EMI/EMC: Level 3;-Design Assurance: Level 3 strFIPSAlgorithms AES (Cert. #258); Triple-DES (Cert. #339); Triple-DES MAC (Cert. #339, vendor affirmed); DSA (Cert. #136); ECDSA (Cert. #2); SHS (Cert. #333); HMAC (Cert. #68); RSA (Cert. #68); RNG (Cert. #91) strOtherAlgorithms ARC FOUR; CAST5; CAST 6; DES; DES MAC; MD2; MD5; SEED; HMAC (MD2, MD5, and RIPEMD160); RIPEMD 160; El-Gamal; Blowfish; Twofish; Serpent; KCDSA; HSA 160; Diffie-Hellman (key agreement, key establishment methodology provides 112 bits to 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement, key establishment methodology provides 192 bits of encryption strength); RSA (key wrapping, key establishment methodology provides 112 bits to 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength) strConfiguration Multi-chip embedded memModuleDescription The nCipher modules: nCipher 4000 PCI, nShield 800 PCI, and nShield Plus PCI family of secure e-commerce HSM's are multi-tasking hardware modules that is optimized for performing modular arithmetic on very large integers. The nCipher modules are FIPS 140-2 level 2 embedded devices. The units are identical in operation and only vary in the processing speed. intModuleCount 1 memAdditionalNotes 06/14/06: Added module nShield 2000, changed module name nCipher 4000 to nShield 4000, added new firmware version number and updated security policy. 12/20/2006: Added new models, changed model numbers, changed build standard, added new firmware version and updated Security Policy 04/29/08: Corrected firmware versions - last digit change from 3 to 2. 06/24/08: Added Build Standard N and updated Security Policy. strFirstValidtionDate 05/11/06 00:00:00 strLabName DOMUS strValidationYear 2006