IBM eServer Cryptographic Coprocessor (4764–001) Security Module

Short Description
This document describes services that the IBM eServer Cryptographic Coprocessor 4764–001 (Hardware P/N 16R0911, 12R6536, 12R8241, 12R8561, 41U0438) (“the module”) with Miniboot software resident in ROM and flash, provides to a population of security officers, users, and the security policy governing access to those services. This policy applies to multiple members of the 47xx product family. We describe multiple firmware revisions running on different hardware releases, highlighting differences where appropriate. Firmware identifiers refer to unambiguously identifiable lead digits of Segment 1 (firmware) hash, a unique value describing card firmware status, returned by card configuration queries. This policy applies to the following firmware identifiers: 2a4e5289, 2096a16d, and c16f4102. Please see Section 10 (p. 28) for validated combinations of hardware and firmware.

Website: csrc.nist.gov | Filesize: 391kb
No of Page(s): 32

Content
…
Predecessors: the 4758 family The first member of the 4758 card family, the original “Model 1” was introduced in August 1997. In November 1998, the foundational hardware and software received the world’s first FIPS 140-1 Security Level 4 validation (validation certificate 35). Subsequently, the Model 13 was introduced, as a variant of the same Model 1 device; the Model 13 received a Security Level 3 FIPS 140-1 validation (validation certificate 81). In 2000, IBM introduced two additional members of this family: the Model 2, and the Model 23. These devices consist of the follow-on “Model 2” device, with differing levels of physical security. Firmware functionality has been extended with outbound authentication, the capability of a card to identify itself to external parties. Table 1 summarizes these variations; base firmware has been validated at Security Level 4 and 3, respectively (validation certificates 116 and 117).
…
The 4764 (PCIXCC) variants The IBM eServer Cryptographic Coprocessor, introduced in 2003, is functionally very similar to the Model 2 4758 with enhanced infrastructure capabilities (in terms of performance, enhanced capabilities of its PCI-X interface, and RAS features). In other terms, just as other members of the 4764 family, the 2a4e5289 firmware (Segment 0–1) is functionally equivalent to a Model 2 4758. Subsequent releases in the 4764 family, unless otherwise noted, remain functionally identical to the original 4764–001 from a firmware perspective. The PCIXCC name indicates that these cards require a PCI-X host. This Security Policy corresponds to the functionality of Segments 0 and 1 of the follow-on coprocessor of the IBM 4758/4764 family, the IBM eServer Cryptographic Coprocessor (specifically model 4764–001, the given hardware and firmware revisions, with Level 4 overall security).
…

Get the file Download here