Cisco CISCO881W-GN-A-K9 Especificaciones descargar pdf (Pagina 19)

Cisco ISR-800 Security Target

1.6.2 Cryptographic Support

The TOE provides cryptography in support of other Cisco ISR-800 security functionality. This

cryptography has been validated for conformance to the requirements of FIPS 140-2 Level 2. See

Table 5 for certificate references.

Table 5 FIPS References

IOS on Router

Router HW Accelerator

AES

#2620

#962, #1115, #1535 and #1648

Triple-DES

#1566

#757, #758 and #812

SHS

#2182

#933, 934 and #1038

HMAC

#1606

#537, #538 and #627

RSA

#1338

N/A

ECDSA

#450

N/A

DRBG

#401

N/A

The TOE provides cryptography in support of VPN connections and remote administrative

management via SSHv2. The cryptographic services provided by the TOE are described in Table

below.

Table 6 TOE Provided Cryptography

Cryptographic Method

Use within the TOE

Internet Key Exchange

Used to establish initial IPsec session.

Secure Shell Establishment

Used to establish initial SSH session.

RSA/DSA Signature Services

Used in IPsec session establishment.

Used in SSH session establishment.

X.509 certificate signing

SP 800-90 RBG

Used in IPsec session establishment.

Used in SSH session establishment.

SHS

Used to provide IPsec traffic integrity verification

Used to provide SSH traffic integrity verification

Used for keyed-hash message authentication

AES

Used to encrypt IPsec session traffic.

Used to encrypt SSH session traffic.

RSA

Used in IKE protocols peer authentication

Used to provide cryptographic signature services

ECC

Used to provide cryptographic signature services

Used as the Key exchange method for SSH

1 2 ... 14 15 16 17 18 19 20 21 22 23 24 ... 63 64

Comentarios a estos manuales

Sin comentarios

Cisco CISCO881W-GN-A-K9 Especificaciones Pagina 19

Comentarios a estos manuales

Relacionado con productos y manuales para Redes Cisco CISCO881W-GN-A-K9