CMVP TESTING
CSC SECURITY TESTING AND CERTIFICATION LABORATORY
REQUEST FOR INFORMATION
7231 PARKWAY DRIVE
HANOVER, MARYLAND 21076
TEL: 443.445.8402
SE
CURITY TESTING AND
LABOR ATORY
CERTIFIC ATION
FAX: 443.445.8202
WWW.CSC.COM/COMMONCRITERIA
This form is a tool used to gather basic product and sponsor information needed to help in
assessing your organizations readiness for testing and to determine the scope of effort. Upon
completion please return to our Security Testing and Certification Laboratory at STCL@csc.com.
Basic Sponsor Information
Company Name:
Company Address:
Contact Name:
Position:
Email:
Phone:
Fax:
NDA Contact Name (if same as above, leave blank):
Email:
Phone:
Fax:
Have you or your organization previously been involved in CMVP (FIPS 140-2) testing?
What is the desired start date for testing?
*A NDA is required between CSC and Sponsor in order to facilitate Common Criteria discussions. If Sponsor would prefer to execute a NDA prior to completion of
this form, please send a request (with point of contact information included) to adoddjones@csc.com. If not, a NDA will be sent directly following completion of
this form.
Requestor Information
If the conformance test is at the request of a customer, please provide the following information.
Who is requesting the certification?
Has the customer requested an overall security level for the model to be tested at? If yes, to which level?
Product Information
What is the product being evaluated?
What is the product type (hardware, software, firmware, combination)?
Please provide a brief listing of the hardware, software, and firmware components of the module:
Is the product single chip, multi-chip embedded (i.e., circuit board), or multi-chip standalone (i.e., a PC)?
If the product is software, on what hardware platforms does it operate? If more than one, what platforms do you plan to
have the module tested on?
If the product is software, under what operating system(s) does it operate?
Scope of Testing
At which security level do you plan (or are required) to test your product?
Cryptographic Module Specification
Level 1
Level 2
Level 3
Level 4
REQUEST FOR INFORMATION: CMVP CONFORMANCE TESTING
Cryptographic Module Ports and Interfaces
Level 1
Level 2
Level 3
Level 4
Roles, Services, and Authentication
Level 1
Level 2
Level 3
Level 4
Level 3
Level 4
Level 3
Level 4
Level 3
Level 4
Level 3
Level 4
Finite State Model
Level 1
Level 2
Physical Security
Level 1
Level 2
Operational Environment
Level 1
Level 2
Cryptographic Key Management
Level 1
Level 2
Electromagnetic Interference/Electromagnetic Compatibility (EMI/EMC)
Level 1
Level 2
Level 3
Level 4
Level 2
Level 3
Level 4
Level 3
Level 4
Level 3
Level 4
Self Tests
Level 1
Design Assurance
Level 1
Level 2
Mitigation of Other Attacks
Level 1
Level 2
Please select the Approved security functions within the module (Refer to FIPS 140-2, Annex A for
further information)
Symmetric Key - Encryption
AES
Triple – DES
Skipjack
Asymmetric Key - Signature
DSS (Digital Signature Standard)
RSA (PKCS#1, V2.1: RSA Cryptography Standard)
DSA, RSA, ECDSA
Message Authentication
Triple – DES MAC
HMAC
Enhanced security DES MAC
CCM Mode for Authentication and Confidentiality
Hashing
Secure Hashing Algorithm (SHA-1, SHA-224, SHA-256, SHA-384 and SHA-512)
Have the modules cited above been validated by the Cryptographic Algorithm Validation Program (CAVP)?
If yes, please provide the certificate numbers:
Comments
Please provide any additional comments that you feel will help the laboratory in determining the
scope of your conformance testing.
Enter comments here