Cryptographic algorithms on the Extreme
NetIron CER devices
The
Extreme NetIron CER devices in
FIPS mode support the following FIPS 140-2-approved cryptographic algorithms:
- Advanced Encryption Algorithm
(AES) including AES-CBC, AES-CTR, and AES-CFB
-
Secure Hash Algorithm (SHA)
(including all SHA variants the module supports: SHA-1, SHA-256, and
SHA-384)
- Keyed-Hash Message Authentication Code
(HMAC-SHA1, HMAC-SHA256)
- Counter-based Deterministic Random Bit
Generator (DRBG)
-
Rivest Shamir Adleman (RSA)
signature algorithm including RSA2, FIPS 186-4 KeyGen, SigGen, SigVer
- TLS 1.1 and TLS 1.2 KDF SP800-135
- SSH Key exchange algorithm
diffie-hellman-group-exchange-sha256
- SNMPv3 (in authPriv security mode) KDF
SP800-135
- SSHv2 Key Derivation Function (KDF)
