233.AppendixHSM Security PolicyAll information in this Appendix is Copyright 2001 Rainbow Technologies.Rainbow Technologies CryptoSwift ® HSM CryptographicAccelerator FIPS 140-1 Non-Proprietary Cryptographic Module Security PolicyHardware P/N 107316 Firmware version 5.6.27 Ver 25 7/29/01for Level 3Overall Level 4 for Self-Test ValidationScope This document describes the security policy for the HSM cryptographicaccelerator. It is to be used for the FIPS 140-1 validation process. Theboard is designed to attain a level 3 overall validation and a level 4validation in the area of Self-Test. The following table describes thecompliance level for each section of the FIPS 140-1 specification:Cryptographic Modules: Level 3Module Interfaces: Level 3Roles and Services: Level 3Finite State Machine Model: Level 3Physical Security: Level 3Software Security: Level 3Operating System Security: Level N/aCryptographic Key Management: Level 3Cryptographic Algorithms: Level 3EMI/EMC: Level 3Self-Tests: Level 4If changes are made to the design of the HSM, this document should beupdated to incorporate the changes and reviewed by an NVLAP-accreditedCMT lab.Nortel VPN GatewayUser GuideNN46120-104 02.01 Standard14 April 2008Copyright © 2007-2008 Nortel Networks.