Setting Requirements for Design, Implementation, Validation, and Robustness in Cryptography Equipment

The National Institute of Standards and Technology (NIST) Federal Information Processing Standard FIPS 140-2 for Cryptography is an internationally recognized security certification standard for commercial cryptography. Applicable to both hardware and software based cryptography, the FIPS 140-2 standard sets out the requirements related to design, implementation, validation, and robustness to ensure cryptography equipment operates as expected.

Cryptography refers to the algorithms and protocols used to secure or “hide” data from unauthorized access by means of encrypting and decrypting data. Common cryptography techniques include symmetric-key algorithms such as DES/3DES and AES, as well as public-key algorithms such as RSA. Cryptography key management is also a significant factor in the FIPS 140-2 standard.

Modern cryptography is used today in almost all forms of commerce, such as the financial markets and for internet data security, and in the defense industry for data and communications security.

The FIPS 140-2 standard provides four increasingly higher levels of security, numbered Level 1 thru Level 4, covering a wide range of security applications and environments. Level 1 covers basic security, whereas Level 4 provides the highest level of security. Most commonly, commercial FIPS 140-2 validated products are validated to Levels 2 or 3.

Equipment is evaluated independently and validation is governed by the Cryptographic Module Validation Program (CMVP), a joint venture between the NIST in the United States, and the Communications Security Establishment (CSE) in Canada.

Curtiss-Wright Defense Solutions offers a range of products designed to the FIPS 140-2 standard. Some of these products include:

Vortex 3U VPX Flash Storage Module FIPS 140-2 Validated - certificate #1885
Vortex Compact Network Storage 1/2 ATR network file server
Vortex Data Transport System DZUS network file server
VPX3-685 3U VPX Secure Ethernet Router Common Criteria Certified and FIPS 140-2 Validated - certificate #

Infocenter

Embedded Ethernet - Physical Layer Standards Initially intended to connect computers on local networks, Ethernet applications... MORE> Data Recorder Emulates Fibre Channel Target Drive on a UAV A leading defense Prime Contractor was tasked with upgrading an unmanned airborne... MORE> CNS4 Flexible Data Storage in 3 Dimensions When selecting a rugged secure storage solution you must consider the three... MORE> ISR Pod Upgrade Enables Storage and Network Access of Fibre Channel Data The upgrade of a fixed wing ISR pod with a data recorder capable of storing Fibre... MORE> Shipbuilder Minimizes Obsolescence Risk with Network Attached Storage A large shipbuilding company performed a trade study to determine what DAS and/or... MORE> Flexible, Secure Data-at-Rest Storage for ISR Applications A high capacity 3U VPX storage system with data-at-rest encryption was developed... MORE> Embedded Cisco Networking Solutions for VPX - Powering Converged Tactical Networks This white paper examines embedded defense networking requirements and solutions... MORE> Flexible Recorder for Multi-Platform ISR UAV Application Reduces Program Risk A large DoD prime contractor required a Network Attached Storage (Recorder) device... MORE> Mitigate Program Risk with a Flexible Data Recording and Storage System This white paper discusses how the Compact Network Storage 4-slot (CNS4) file... MORE> VRD1 Video-Centric System Designed for maximum flexibility and to support a variety of video standards, the... MORE>
Connect With Curtiss-Wright

CONTACT SALES

Contact our sales team today to learn more about our products and services.

YOUR LOCATION

PRODUCT INFORMATION

GET SUPPORT

Our support team can help answer your questions - contact us today.

REQUEST TYPE

SELECT BY

SELECT Topic