Cisco 3825 Series Politique de sécurité non propriétaire - Page 22

Parcourez en ligne ou téléchargez le pdf Politique de sécurité non propriétaire pour {nom_de_la_catégorie} Cisco 3825 Series. Cisco 3825 Series 30 pages. Integrated services routers
Également pour Cisco 3825 Series : Installation et mise à niveau (20 pages), Manuel de démarrage rapide (38 pages), Manuel de démarrage rapide (40 pages)

Cisco 3825 Series Politique de sécurité non propriétaire
Cisco 3825 and Cisco 3845 Routers
implemented by the software. An example of self-tests run at power-up is a cryptographic known answer
test (KAT) on each of the FIPS-approved cryptographic algorithms and on the Diffie-Hellman algorithm.
Examples of tests performed at startup are a software integrity test using an EDC, and a set of Statistical
Random Number Generator (RNG) tests. Examples of tests run periodically or conditionally include: a
bypass mode test performed conditionally prior to executing IPSec, and a continuous random number
generator test. If any of the self-tests fail, the router transitions into an error state. In the error state, all
secure data transmission is halted and the router outputs status information indicating the failure.
Examples of the errors that cause the system to transition to an error state:
Self-tests performed by the IOS image
IOS Self Tests
Self-tests performed by Safenet
Safenet Self Tests
Cisco 3825 and Cisco 3845 Integrated Services Routers FIPS 140-2 Non Proprietary Security Policy
22
IOS image integrity checksum failed
Microprocessor overheats and burns out
Known answer test failed
NVRAM module malfunction.
Temperature high warning
POST tests
AES Known Answer Test
Software/firmware test
Power up bypass test
RNG Known Answer Test
Diffie Hellman test
HMAC-SHA-1 Known Answer Test
SHA-1 Known Answer Test
DES Known Answer Test
3DES Known Answer Test
Conditional tests
Conditional bypass test
Continuous random number generation test
POST tests
AES Known Answer Test
DES Known Answer Test
3DES Known Answer Test
HMAC-SHA-1 Known Answer Test
SHA-1 Known Answer Test
OL-8662-01