User manual
AN-80i User Manual
70-00072-01-10 Proprietary Redline Communications © 2011 Page 131 of 152 March 2, 2011
Fig. 55: Security - System Status - FIPS Status
The FIPS Status screen provides a summary of all FIPS related operations, policies, and
parameter settings. The FIPS Mode status selection is available only in FIPS-enabled
systems (see FIPS Mode Out-of-Box Operation).
Fig. 56: Security - FIPS Status - FIPS Mode Active
8.3.6 FIPS Behavior
Certificate and Key Files
When FIPS mode is active, only certificate and key files in the FIPS (fips) table are used
by the AN-80i. The user (usr) table is accessible, but is not used in FIPS mode (see
FIPS Mode Out-of-Box Operation). Certificate and key files can be loaded and viewed
only by using SSH (see SSH for Secure CLI).
Software Upgrade
The FIPS certified software from Redline is supplied as a digitally signed software binary
file (*.sbin). When the AN-80i is running a version of digitally signed software (*.sbin), the
'Upload Software' function is restricted to loading only
digitally signed software binary
files.
Component Integrity Check
At power-up and reboot, the AN-80i performs tests on hardware and software
components to detect tampering. The AN-80i is allowed to start only if all hardware and
firmware components pass the related integrity check and both the active and alternate
software images pass the integrity check. If any integrity test fails, a long reset must be
performed and the factory defaults must be saved to restore operation of the AN-80i.
4Gon www.4Gon.co.uk info@4gon.co.uk Tel: +44 (0)1245 808295 Fax: +44 (0)1245 808299