Table of Contents
Advertisement
Authorized Service
Setup the module in
FIPS mode
2.6 Physical Security
The SV3800/SV3800B/SV3800B-20 is a multichip standalone cryptographic
module enclosed in a hard, opaque metal case that completely encloses the
module's internal components. Ventilation holes provided in the case either do
not provide visibility to areas within the cryptographic boundary, or have
mechanisms in place to obscure the view of the module's internal components.
Tamper evident labels are fitted to provide physical evidence of attempts to
remove the case in order to gain access to the module. Section
Evident Label Management and Application Instructions"
the tamper evident labels.
Tamper evident labels are not required on Netmods or power supplies as these
are outside the cryptographic boundary of the module.
All module components are production grade. The SV3800/SV3800B/SV3800B-
20 has been tested and meets the EMI/EMC requirements specified by 47 Code
of Federal Regulations, Part 15, Subpart B, Unintentional Radiators, Digital
Devices, Class A.
The physical security of the module should be checked on a regular basis, as
detailed in Table 2-11.
2016 Symantec Corporation This document may be freely reproduced & distributed whole & intact including this copyright
notice.
Description
Setup the initial configuration for
Approved mode of operation and
initialize the secure store. See Section
"3.3 Module Initialization"
CSPs
PIN – RX KEK0 - WX KEK1 - WX
Master keys – WX KEK2s - WX
Object encryption keys - WX
.
RSA public key - W
RSA private key - W
Key exchange public keys - W
Key exchange private keys - W
Resigning CA public keys - W
Resigning CA private keys - W
Trusted certificate public keys - W
Operator password(s) - W
"3.2 Tamper
shows the placement of
31
Advertisement
Table of Contents
