Cisco Cisco Web Security Appliance S170 사용자 가이드
68
I R O N P O R T A S Y N C O S 6 . 5 F O R W E B U S E R G U I D E
F I P S M A N A G E M E N T O V E R V I E W
Some organizations require stricter standards for protecting sensitive, but unclassified, data.
The Federal Information Processing Standards (FIPS) 140 is a publicly announced standard
developed jointly by the United States and Canadian federal governments specifying
requirements for cryptographic modules that are used by all government agencies to protect
sensitive but unclassified information. The Cisco IronPort S670 Web Security appliance is
offered with a Hardware Security Module (HSM) card that is FIPS 140-2 level 2 certified. The
HSM card is a type of secure cryptoprocessor targeted at managing digital keys for server
applications.
The Federal Information Processing Standards (FIPS) 140 is a publicly announced standard
developed jointly by the United States and Canadian federal governments specifying
requirements for cryptographic modules that are used by all government agencies to protect
sensitive but unclassified information. The Cisco IronPort S670 Web Security appliance is
offered with a Hardware Security Module (HSM) card that is FIPS 140-2 level 2 certified. The
HSM card is a type of secure cryptoprocessor targeted at managing digital keys for server
applications.
When the Cisco IronPort S670 Web Security appliance includes the HSM card and uses
AsyncOS for Web 6.5, it offloads cryptographic operations to the HSM card in a FIPS
compliant manner. The HSM card is responsible for the storage and protection of the
cryptographic keys.
AsyncOS for Web 6.5, it offloads cryptographic operations to the HSM card in a FIPS
compliant manner. The HSM card is responsible for the storage and protection of the
cryptographic keys.
FIPS compliance is achieved by use of the CAVIUM Nitrox XL NFBE (HSM), FIPS certificate
#1360.
#1360.