SECUDE AG. FinallySecure Enterprise Cryptographic Module. FIPS 140-2 Security Policy



Similar documents
Accellion Secure File Transfer Cryptographic Module Security Policy Document Version 1.0. Accellion, Inc.

Pulse Secure, LLC. January 9, 2015

SecureDoc Disk Encryption Cryptographic Engine

Secure File Transfer Appliance Security Policy Document Version 1.9. Accellion, Inc.

SNAPcell Security Policy Document Version 1.7. Snapshield

SkyRecon Cryptographic Module (SCM)

Kaseya US Sales, LLC Virtual System Administrator Cryptographic Module Software Version: 1.0

Security Policy. Trapeze Networks

FIPS Non-Proprietary Security Policy. IBM Internet Security Systems SiteProtector Cryptographic Module (Version 1.0)

Nortel Networks, Inc. VPN Client Software (Software Version: 7_11.101) FIPS Non-Proprietary Security Policy

FIPS Security Policy LogRhythm Log Manager

Secure Network Communications FIPS Non Proprietary Security Policy

FIPS Non- Proprietary Security Policy. McAfee SIEM Cryptographic Module, Version 1.0

SECURE USB FLASH DRIVE. Non-Proprietary Security Policy

VASCO Data Security International, Inc. DIGIPASS GO-7. FIPS Non-Proprietary Cryptographic Module Security Policy

FIPS Non Proprietary Security Policy: Kingston Technology DataTraveler DT4000 Series USB Flash Drive

Symantec Corporation Symantec Enterprise Vault Cryptographic Module Software Version:

FIPS Security Policy. for Motorola, Inc. Motorola Wireless Fusion on Windows CE Cryptographic Module

FIPS Level 1 Security Policy for Cisco Secure ACS FIPS Module

Windows Server 2008 R2 Boot Manager Security Policy For FIPS Validation

Northrop Grumman M5 Network Security SCS Linux Kernel Cryptographic Services. FIPS Security Policy Version

FIPS Security Policy LogRhythm or Windows System Monitor Agent

13135 Lee Jackson Memorial Hwy., Suite 220 Fairfax, VA United States of America

VMware, Inc. VMware Java JCE (Java Cryptographic Extension) Module

HP LTO-6 Tape Drive Level 1 Security Policy

Symantec Mobility: Suite Server Cryptographic Module

FIPS Security Policy 3Com Embedded Firewall PCI Cards

Security Policy: Key Management Facility Crypto Card (KMF CC)

OpenSSL FIPS Security Policy Version 1.2.4

JUNOS-FIPS-L2 Cryptographic Module Security Policy Document Version 1.3

MOTOROLA ACCOMPLI 009 PERSONAL COMMUNICATOR MODULE OVERVIEW SCOPE OF DOCUMENT. Security Policy REV 1.2, 10/2002

Security Policy for FIPS Validation

NitroGuard Intrusion Prevention System Version and Security Policy

FIPS Non Proprietary Security Policy: IBM Internet Security Systems Proventia GX Series Security

FIPS Non Proprietary Security Policy: IBM Internet Security Systems Proventia GX Series Security

Security Policy, DLP Cinema, Series 2 Enigma Link Decryptor

Network Security Services (NSS) Cryptographic Module Version

FIPS Security Policy

MOTOROLA MESSAGING SERVER SERVER AND MOTOROLA MYMAIL DESKTOP PLUS MODULE OVERVIEW. Security Policy REV 1.3, 10/2002

FIPS Documentation: Security Policy 05/06/ :21 AM. Windows CE and Windows Mobile Operating System. Abstract

1C - FIPS Cisco VPN Client Security Policy

RSA BSAFE. Crypto-C Micro Edition for MFP SW Platform (psos) Security Policy. Version , October 22, 2012

FIPS Non-Proprietary Security Policy. FIPS Security Level: 2 Document Version: 0.9

Seagate Secure Enterprise Self-Encrypting Drives FIPS 140 Module FIPS Security Policy

Protection Profile for Full Disk Encryption

TANDBERG MXP Codec (Firmware Version: F6.0) FIPS Non-Proprietary Security Policy

FIPS SECURITY POLICY FOR

Non-Proprietary Security Policy for the FIPS Level 1 Validated Fortress Secure Client Software Version 3.1

SafeEnterprise TM ATM Encryptor II Model 600 FIPS Level 3 Validation Non-Proprietary Security Policy

OpenSSL FIPS Security Policy Version 1.2.3

Security Builder. Certicom Corp. Security Builder Government Solutions Edition. Windows. FIPS Non-Proprietary Security Policy.

Windows 7 BitLocker Drive Encryption Security Policy For FIPS Validation

USB Portable Storage Device: Security Problem Definition Summary

YubiKey Integration for Full Disk Encryption

FIPS Security Policy

Security Policy for Oracle Advanced Security Option Cryptographic Module

OpenSSL FIPS Security Policy Version 1.2.2

Cisco Telepresence C40, C60, and C90 Codecs (Firmware Version: TC5.0.2) (Hardware Version: v1) FIPS Non-Proprietary Security Policy

Secure Computing Corporation Secure Firewall (Sidewinder) 2150E (Hardware Version: 2150 with SecureOS v )

Full Drive Encryption Security Problem Definition - Encryption Engine

Windows Server 2003 Enhanced Cryptographic Provider (RSAENH)

Windows Server 2003 Enhanced Cryptographic Provider (RSAENH)

HEWLETT PACKARD TIPPINGPOINT. FIPS NON PROPRIETARY SECURITY POLICY HP TippingPoint Security Management System

USB Portable Storage Device: Security Problem Definition Summary

FIPS Security Policy for WatchGuard XTM

FIPS SECURITY POLICY

FIPS SECURITY POLICY

How To Protect Your Computer From Attack

OpenSSL FIPS Security Policy Version 1.1.1b

A COMPARISON OF THE SECURITY REQUIREMENTS FOR CRYPTOGRAPHIC MODULES IN FIPS AND FIPS 140-2

Cisco Catalyst 3560-X and 3750-X Switches FIPS Level 2 Non-Proprietary Security Policy

Microsoft Windows Common Criteria Evaluation

The Misuse of RC4 in Microsoft Word and Excel

PA-200, PA-500, PA-2000 Series, PA-3000 Series, PA-4000 Series, PA-5000 Series and PA-7050 Firewalls Security Policy

Certification Report

UM0586 User manual. STM32 Cryptographic Library. Introduction

FIPS Non-Proprietary Security Policy. FIPS Security Level: 2 Document Version: Winterson Road Linthicum, MD 21090

Blue Coat Systems, Inc. Secure Web Gateway Virtual Appliance-V100 Software Version: FIPS Non-Proprietary Security Policy

Microsoft Windows Server 2008 R2 Cryptographic Primitives Library (bcryptprimitives.dll) Security Policy Document

Athena Smartcard Inc. IDProtect Key with LASER PKI FIPS Cryptographic Module Security Policy. Document Version: 1.0 Date: April 25, 2012

SMPTE Standards Transition Issues for NIST/FIPS Requirements v1.1

Certicom Security for Government Suppliers developing client-side products to meet the US Government FIPS security requirement

KeyStone Architecture Security Accelerator (SA) User Guide

Non-Proprietary Security Policy for the FIPS Level 2 Validated Fortress Secure Bridge

Certification Report

Security Technical. Overview. BlackBerry Enterprise Service 10. BlackBerry Device Service Solution Version: 10.2

GuardianEdge Data Protection Framework with GuardianEdge Hard Disk Encryption and GuardianEdge Removable Storage Encryption 3.0.

Cryptographic Modules, Security Level Enhanced. Endorsed by the Bundesamt für Sicherheit in der Informationstechnik

7906G, 7911G, 7931G, 7941G, 7942G, 7945G, 7961G, 7961GE, 7962G, 7965G, 7970G, 7971G, 7971GE,

How To Use Cmk On An Ipa (Intralinks) On A Pc Or Mac Mac (Apple) On An Iphone Or Ipa On A Mac Or Ipad (Apple Mac) On Pc Or Ipat (Apple

FIPS Non-Proprietary Security Policy. FIPS Security Level: 2 Document Version: 0.7

Certification Report

Blue Coat Systems ProxySG S500 Series

ASA 5505, ASA 5510, ASA 5520, ASA 5540, ASA 5550, ASA , ASA , ASA 5585-X SSP-10, 5585-X SSP-20, 5585-X SSP-40

Transcription:

SECUDE AG FinallySecure Enterprise Cryptographic Module (SW Version: 1.0) FIPS 140-2 Security Policy Document Version 2.4 04/22/2010 Copyright SECUDE AG, 2010. May be reproduced only in its original entirety [without revision].

TABLE OF CONTENTS 1. DOCUMENT INFORMATION...3 2. INTRODUCTION...4 3. MODULE OVERVIEW...4 4. SECURITY LEVEL...6 5. MODES OF OPERATION...7 6. PORTS AND INTERFACES...8 7. IDENTIFICATION AND AUTHENTICATION POLICY...9 8. ACCESS CONTROL POLICY...9 9. OPERATIONAL ENVIRONMENT...12 10. SECURITY RULES...12 11. PHYSICAL SECURITY POLICY...13 12. MITIGATION OF OTHER ATTACKS POLICY...13 13. REFERENCES...14 14. DEFINITIONS AND ACRONYMS...15 Page 2

1. Document Information Change History Version Author Date Description 1.0 Zhe Wang 24.11.2008 Initial draft Min Xie 1.1 Zhe Wang 25.11.2008 Add more contents. 1.2 Zhe Wang 09.12.2008 Modify according to IG comments. Min Xie 1.3 Zhe Wang 16.12.2008 Add reference table, modify according to IG comments. 2.0 Zhe Wang 19.10.2009 Revision to cope with major software version upgrade and crypto-module resize. 2.1 Zhe Wang 19.01.2009 Change title and remove FIPS unrelated authentication and CSPs, minor change to block diagram. 2.2 Zhe Wang 22.03.2010 Block diagram modified. 2.3 Zhe Wang 07.04.2010 Modify according to IG comments after Op test. 2.4 Zhe Wang 22.04.2010 Modify according to IG comments after Op test. Page 3

2. Introduction This non-proprietary cryptographic module security policy describes how the FinallySecure Enterprise Cryptographic Module meets the security requirements of FIPS 140-2, and how to run the cryptographic module in accordance with the requirements of FIPS 140-2. This policy was prepared as part of the Level 1 FIPS 140-2 validation of the FinallySecure Enterprise Cryptographic Module. 3. Module Overview The FinallySecure Enterprise Cryptographic Module (Software Version: 1.0) is a software only, multi-chip standalone cryptographic module that runs on a general purpose computer (GPC). The primary purpose for this module is to provide cryptographic services for SECUDE s Full Disk Encryption software, FinallySecure Enterprise 9.4.0. Cryptographic Boundary The physical boundary of the module is the case of the GPC. The logical boundary of the module contains the dynamic link libraries libeay32.dll and FIPSAlg.dll and disk filter drivers AES.sys and FDENC.sys. The FSE software consists of several logical components that form up or surround the cryptographic boundary, as depicted in Figure 1: General Purpose Computer BIOS Windows 32-bit FSE Applications (Command Dispatcher) Cryptographic Boundary Application Layer Real Mode DEK FIPSAlg.dll (Algorithm wrapper & KATs) Libeay32.dll (FSE Crypto-Lib) OS Layer PBA KEK FSE Disk Filter Driver AES.sys FDENC.sys Driver Layer Kernel and HW drivers Figure 1 - Cryptographic Module Diagram Page 4

Operating Platforms The cryptographic module runs and was operationally tested on the following platforms: Windows 7 (single-user mode) Windows Vista (single-user mode) Windows XP (single-user mode) Page 5

4. Security Level The cryptographic module meets the overall requirements of FIPS 140-2 Security Level 1. Table 1 - Module Security Level Specification Security Requirements Section Level Cryptographic Module Specification 1 Module Ports and Interfaces 1 Roles, Services and Authentication 1 Finite State Model 1 Physical Security N/A Operational Environment 1 Cryptographic Key Management 1 EMI/EMC 1 Self-Tests 1 Design Assurance 1 Mitigation of Other Attacks N/A Page 6

5. Modes of Operation Approved Mode of Operation The cryptographic module only supports FIPS Approved algorithms as follows: AES - CBC mode; Encrypt/Decrypt; 128, 192, 256-bit (Certificate number 958) SHA-1 (Certificate number 930) HMAC-SHA-1 (Certificate number 534) RNG (Certificate number 541) - The module relies on the implemented random number generator (RNG) that is compliant with ANSI X9.31 Appendix A.2.4. Invocation of Approved Mode of Operation The cryptographic module only supports an Approved mode of operation. The FinallySecure Enterprise Cryptographic Module is installed as part of SECUDE s FinallySecure Enterprise full disk encryption software. Once installed, the module is considered to be running in the FIPS Approved mode of operation. Page 7

6. Ports and Interfaces The physical ports of the FinallySecure Enterprise Cryptographic Module are consistent with those of the General Purpose Computers on which the software is installed. Although data input, data output, control input and status output share physical ports, the information flows for input, output, control and status are kept logically separate through the cryptographic module API. External input/output devices are not applicable to the FinallySecure Enterprise Cryptographic Module. The cryptographic module defines the following logical interfaces: The API function calls of the Disk Filter Driver. Table 2 - FinallySecure Enterprise APIs and Logical Interfaces Logical Interface Mapping to Module API Physical Ports Control Input Interface API function calls to control and initialized the module Keyboard Mouse HIDs Data storage devices External ports (network, USB, etc.) Data Input Interface Data Output Interface API function calls containing parameters with input data or pointers to input data buffers API function calls with output data or pointers to output data buffers. Status Output Interface API function calls with output data or pointers to output data buffers. Power Interface N/A. No power interface is applicable since the module is a software only module running on a General Purpose Computer. Keyboard Mouse HIDs Data storage devices External ports (network, USB, etc.) Data storage devices Display Data storage devices Display PC power interface Page 8

7. Identification and Authentication Policy Assumption of Roles The FinallySecure Enterprise Cryptographic Module only supports a single operator, who assumes both the User and Cryptographic Officer (CO) roles. A Maintenance role is not implemented in FinallySecure Enterprise Cryptographic Module software. Concurrent operations are not supported by the FinallySecure Enterprise Cryptographic Module. All the concurrent operations attempted will be automatically queued for sequential execution. Table 3 - Roles and Required Identification and Authentication Role Type of Authentication Authentication Data Cryptographic Officer/User N/A N/A 8. Access Control Policy Roles and Services Table 4 - Services Authorized for Roles Role Cryptographic Officer/User: Authorized Services Encrypt Partition: This allows the administrator to encrypt partition/partitions. Decrypt Partition: This allows the administrator to decrypt partition/partitions. The FinallySecure Enterprise Cryptographic Module supports the following services which may be performed without assuming an authorized role: Self-tests: This service executes the suite of self-tests required by FIPS 140-2. This service is invoked upon system power-up or at run time. Status query: This returns the encryption/decryption information of all partitions and the status of the cryptographic module. Zeroize: This service zeroizes all plaintext CSPs stored on the GPC hard drive. This service is invoked by uninstalling the module. Unsupported Services The FinallySecure Enterprise Cryptographic Module does not implement bypass capability within the module. Page 9

Service Inputs & Outputs Table 5 - Specification of Service Inputs & Outputs Service Control Input Data Input Data Output Status Output Encrypt Partition Program API Plaintext data Ciphered data Success/fail and DEK Decrypt Partition Program API Ciphered data and DEK Plaintext data Success/fail Status Query Program API None None Status information Self-Tests Program API Known answer None Success/BSOD Zeroize Program API None None Success/fail Definition of Critical Security Parameters (CSPs) The following are CSPs and secret keys that are protected within and around the cryptographic boundary: Data Encryption Keys (DEKs): AES 256-bit keys used to encrypt partitions on the HD. Each partition is encrypted with a unique DEK. Seed Key: Used to initialize RNG. Seed: Used to initialize RNG. Definition of Public Keys The module does not contain any public keys. Definition of CSPs Modes of Access Table 6 defines the relationship between access to CSPs and the different module services. The modes of access shown in the table are defined as follows: Table 6 - CSP Access Rights within Services Service Encrypt Partition Decrypt Partition Status Query Self-Tests Zeroize Cryptographic Keys and CSPs Access Operation Read/Write DEK. Read DEK N/A N/A Zeroize Seed, Seed Key, DEKs Page 10

Definition of CSPs Storage and Zeroization The FinallySecure Enterprise Cryptographic Module stores the DEK hashed and obfuscated. All the CSPs will be erased (zeroized) during the FinallySecure Enterprise software uninstallation process by the operator who assumes the Cryptographic Officer/User role. Page 11

9. Operational Environment As per FIPS 140-2 Implementation Guidance the FinallySecure Enterprise Cryptographic Module is compliant with the requirements of FIPS 140-2 when operating on the following operating systems on top of 32-bit General Purpose Computer in single user mode: Windows 7 Windows Vista Windows XP 10. Security Rules The FinallySecure Enterprise Cryptographic Module s design corresponds to the cryptographic module s security rules. This section documents the security rules enforced by the cryptographic module to implement the security requirements of the FIPS 140-2 Level 1 module. 1. The cryptographic module shall provide one distinct operator role: the Cryptographic Officer/User. 2. When the module has not been placed in a valid role, the operator shall not have access to any cryptographic services. 3. The cryptographic module shall encrypt and decrypt data using the Approved AES algorithm. 4. The cryptographic module shall perform the following self-tests without operator intervention: A. Power up Self-Tests: 1. Cryptographic algorithm tests: a. AES Known Answer Test b. RNG Known Answer Test c. SHA-1 Known Answer Test d. HMAC Known Answer Test (performed during Software Integrity Test) 2. Software Integrity Test (HMAC-SHA-1) 3. Critical Functions Tests (None) B. Conditional Tests: 1. Continuous RNG Test 5. Prior to each invocation, the internal RNG shall be tested using the conditional test specified in ANSI X9.31 Appendix A.2.4. 6. Any failure of the Power-up Self-tests or Software Integrity Test shall enter the software into the error state and block the Windows OS from common use. 7. Data output shall be strictly inhibited during key generation and self-tests. Page 12

8. Only status output shall be allowed during the error state. 9. Status information shall not contain CSPs or sensitive data that if misused could lead to a compromise of the module. 10. The module shall not support multiple concurrent operators. 11. Physical Security Policy The FinallySecure Enterprise Cryptographic Module is a software only module and therefore does not support any physical security mechanisms. The cryptographic module s physical boundary is the General Purpose Computer (GPC) that the module is installed on. 12. Mitigation of Other Attacks Policy The Mitigation of Other attacks security section of FIPS 140-2 is not applicable to the FinallySecure Enterprise Cryptographic Module. Page 13

13. References Table 7 - References ID Reference 1 FIPS PUB140-2 Security Requirements For Cryptographic Modules 2 FIPS PUB140-2 Derived Test Requirements 3 Implementation Guidance for FIPS 140-2 and the Cryptographic Module Validation Program 4 FIPS PUB 197 Advanced Encryption Standard 5 FIPS PUB 198 The Keyed-Hash Message Authentication Code 6 Approved Random Number Generators for FIPS PUB 140-2 Page 14

14. Definitions and Acronyms Table 8 - Acronyms Acronym AES ANSI API BSOD CO CSP DEK DES ERI FDE FIPS FSE GPC HID HMAC KAT RNG SHA Definition Advanced Encryption Standard American National Standards Institute Application Programming Interface Blue Screen of Death Cryptographic Officer Critical Security Parameter Data Encryption Key Data Encryption Standard Emergency Recovery Information Full Disk Encryption Federal Information Processing Standard FinallySecure Enterprise General Purpose Computer Human Interface Device Keyed-Hash Message Authentication Code Known Answer Test Random Number Generator Secure Hash Algorithm Page 15

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information