EasyManua.ls Logo

Cisco 2811

Cisco 2811
30 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
Loading...
Corporate Headquarters:
© 2005 Cisco Systems, Inc. All rights reserved.
Cisco Systems, Inc., 170 West Tasman Drive, San Jose, CA 95134-1706 USA
Cisco 2811 and Cisco 2821 Integrated Services
Router FIPS 140-2 Non Proprietary Security
Policy
Level 2 Validation
Version 1.3
November 23, 2005
Introduction
This document is the non-proprietary Cryptographic Module Security Policy for the Cisco 2811 and
Cisco 2821 Integrated Services Router without an AIM card installed. This security policy describes
how the Cisco 2811 and Cisco 2821 Integrated Services Router (Hardware Version: 2811 or 2821;
Firmware Version: 12.3(11)T03) meet the security requirements of FIPS 140-2, and how to operate the
router enabled in a secure FIPS 140-2 mode. This policy was prepared aspart of the Level 2 FIPS 140-2
validation of the Cisco 2811 or Cisco 2821 Integrated Services Router.
FIPS 140-2 (Federal Information Processing Standards Publication 140-2—Security Requirements for
Cryptographic Modules) details the U.S. Government requirements for cryptographic modules. More
information about the FIPS 140-2 standard and validation program is available on the NIST website at
http://csrc.nist.gov/cryptval/.
This document contains the following sections:
Introduction, page 1
Cisco 2811 and Cisco 2821 Routers, page 2
Secure Operation of the Cisco 2811 or Cisco 2821 router, page 22
Related Documentation, page 23
Obtaining Documentation, page 24
Documentation Feedback, page 25
Cisco Product Security Overview, page 25
Obtaining Technical Assistance, page 26

Table of Contents

Question and Answer IconNeed help?

Do you have a question about the Cisco 2811 and is the answer not in the manual?

Cisco 2811 Specifications

General IconGeneral
Full duplexYes
Networking standards-
Ethernet LAN data rates10, 100 Mbit/s
Supports ISDN connectionNo
SafetyUL 60950, CAN/CSA C22.2 No. 60950, IEC 60950, EN 60950-1, AS/NZS 60950
Flash memory128 MB
Internal memory256 MB
I/O ports2 x USB\\r 2 x 10/100 Base-T
Ethernet LAN (RJ-45) ports2
Storage temperature (T-T)-40 - 70 °C
Firewall securityCisco IOS
Security algorithms128-bit AES, 192-bit AES, 256-bit AES, 3DES, DES
Product colorBlue, Stainless steel
Rack capacity1U
Weight and Dimensions IconWeight and Dimensions
Depth416.6 mm
Width438.2 mm
Height44.5 mm
Weight6400 g

Summary

Introduction

References

Terminology

Document Organization

Cisco 2811 and Cisco 2821 Routers

The Cisco 2811 Cryptographic Module Physical Characteristics

The Cisco 2821 Cryptographic Module Physical Characteristics

Roles and Services

User Services

Services available to the User role, including status and network functions.

Crypto Officer Services

Physical Security

Cryptographic Key Management

Key Zeroization

Self-Tests

Self-tests performed by the IOS image

Lists self-tests implemented by the router's IOS software.

Self-tests performed by NetGX

Lists self-tests performed by the NetGX component of the router.

Secure Operation of the Cisco 2811 or Cisco 2821 router

Initial Setup

Steps for initial setup, including tamper evidence labels and disabling password recovery.

System Initialization and Configuration

Initial configuration steps, including setting the boot field and passwords.

IPSec Requirements and Cryptographic Algorithms

Protocols

Remote Access

Related Documentation

Obtaining Documentation

Documentation Feedback

Cisco Product Security Overview

Reporting Security Problems in Cisco Products

Obtaining Technical Assistance

Cisco Technical Support & Documentation Website

Submitting a Service Request

Definitions of Service Request Severity

Obtaining Additional Publications and Information

Related product manuals