Specifications
Security Target Version 1.0 9/29/2014
66
DRBG Key SP800-90a (256
bits)
Generated per SP800-
90A
Stored in plaintext in
volatile memory.
Zeroized on reboot.
DRBG
DRBG V SP800-90a (128
bits)
Generated per SP800-
90A
Stored in plaintext in
volatile memory.
Zeroized on reboot.
DRBG
RNG seed FIPS 186-2 RNG
Seed (512 bits)
Derived using NON-
FIPS approved HW
RNG
Stored in plaintext in
volatile memory.
Zeroized on reboot.
Seed 186-2 General
purpose (x-change
Notice); SHA-1 RNG
RNG seed key FIPS 186-2 RNG
Seed key (512
bits)
Derived using NON-
FIPS approved HW
RNG
Stored in plaintext in
volatile memory.
Zeroized on reboot.
Seed 186-2 General
purpose (x-change
Notice); SHA-1 RNG
Diffie-Hellman
private key
Diffie-Hellman
private key
(160/224 bits)
Generated internally
during Diffie-Hellman
Exchange
Stored in the volatile
memory. Zeroized
after the session is
closed.
Used in establishing
the session key for an
IPSec session
Diffie-Hellman
public key
Diffie-Hellman
public key
(1024/2048 bits)
Note: Key size of
DH Group 1 (768
bits) is not
allowed in FIPS
mode.
Generated internally
during Diffie-Hellman
Exchange
Stored in the volatile
memory. Zeroized
after the session is
closed.
Used in establishing
the session key for an
IPSec session
Diffie-Hellman
shared secret
Diffie-Hellman
shared secret
(1024/2048 bits)
Established during
Diffie-Hellman
Exchange
Stored in plain text in
volatile memory,
Zeroized when
session is closed.
Key agreement in
SSHv2
EC Diffie-
Hellman private
key
Elliptic Curve
Diffie-Hellman
(P-256 and P-
384).
Generated internally
during EC Diffie-
Hellman Exchange
Stored in the volatile
memory. Zeroized
after the session is
closed.
Used in establishing
the session key for an
IPSec session
EC Diffie-
Hellman public
key
Elliptic Curve
Diffie-Hellman
(P-256 and P-
384).
Generated internally
during EC Diffie-
Hellman Exchange
Stored in the volatile
memory. Zeroized
after the session is
closed.
Used in establishing
the session key for an
IPSec session