Physical Security, Operational Environment

Non-Proprietary Security Policy, Version 1.0

June 15, 2007

Service

Secured call on IP network

Secured call on ISDN

Description

Placing secured call on IP network via LAN port

Placing secured call on ISDN via BRI/PRI port

Input

Command and calling information

Output

Connection established

CSP and Access Control

Diffie-Hellman key pairs – Read

IP Encryption Key – Read/Write

Diffie-Hellman key pairs – Read

ISDN Encryption Key

– Read/Write

1.4.3Authentication

The modules were not tested for role-based or identity-based authentication requirement as level 1 modules. However, the modules authenticate Crypto-Officer with x.509 certificate during TLS handshake. The users do not authenticate themselves to the module.

1.5 Physical Security

The VSX 3000, VSX 5000, and VSX 7000s are multi-chip standalone cryptographic modules. The modules’ hardware is composed of production-grade components and the modules are entirely enclosed in solid metal cases. These cases enclose all of the modules’ internal components and serve as the cryptographic boundaries for the modules.

The VSX systems were tested and found conformant to the Electromagnetic Interference/Electromagnetic Compatibility (EMI/EMC) requirements specified by 47 Code of Federal Regulations, Part 15, Subpart B, Unintentional Radiators, Digital Devices, Class A (i.e., for business use).

1.6 Operational Environment

The operational environment requirements do not apply to the VSX 3000, VSX 5000, and VSX 7000s. The modules do not provide a general purpose Operating System (OS) and only allow the updating of image components after checking a Digital Signature Algorithm (DSA) signature on new software images.

1.7 Cryptographic Key Management

The VSX modules implement the following FIPS-approved algorithms:

∙AES (CBC, OFB) - key sizes 128, 192, 256 (Cert #431)

∙FIPS 186-2 Appendix 3.1 PRNG (Cert #224)

∙Secure Hashing Algorithm (SHA-1) – Byte oriented (Cert #50 1)

∙TDES (CBC) 1, 2, 3 keying options (Cert #460)

∙DSA (verify) 1024 bits (Cert #178)

Additionally, the module utilizes the following non-FIPS-approved algorithm implementation:

∙Diffie-Hellman (key agreement, key establishment methodology provides 80-bits of encryption strength)

∙RSA (key wrapping, key establishment methodology provides 80-bits of encryption strength)

∙Hardware Random Number Generator (RNG) – for seeding the FI PS-approved deterministic RNG

The module supports the following critical security parameters:

Table 9 - List of Cryptographic Keys, Cryptographic Key Components, and CSPs

Key	Key Type	Generation /
		Input

Polycom VSX 3000, VSX 5000, and VSX 7000s

Output

Storage

Zeroization

Use

Page 17 of 23

VSX 7000s, VSX 3000, VSX 5000 specifications

The Polycom VSX series comprises several high-quality video conferencing systems, notably the VSX 3000, VSX 7000s, and VSX 5000. Each model is designed to enhance communication in various settings, offering unique features, technologies, and characteristics tailored to meet diverse user needs.

The Polycom VSX 3000 is a compact, all-in-one video conferencing system ideal for smaller meeting rooms or personal offices. It features a sleek design with an integrated 15-inch LCD display, which provides an immersive visual experience. The VSX 3000 supports a maximum resolution of 640x480 at 30 frames per second, ensuring clear video quality. The system includes a built-in camera with 85-degree field of view, allowing for effective communication among participants. The VSX 3000 supports H.323 and SIP protocols, ensuring compatibility with various networks and systems. Additionally, it incorporates Polycom's Lost Packet Recovery technology, optimizing video quality even in challenging network conditions.

In contrast, the Polycom VSX 7000s is designed for more extensive video conferencing setups. This system features a modular design, allowing users to customize their setups with additional cameras, microphones, and displays. The VSX 7000s supports a higher resolution of up to 1024x768 pixels, providing more detailed visuals. One of the standout features of this model is its ability to integrate with content-sharing applications, enabling users to share documents and presentations seamlessly during meetings. The VSX 7000s also boasts advanced audio features, including StereoSurround technology, which enhances the auditory experience by providing spatial audio that mimics face-to-face interactions.

Lastly, the Polycom VSX 5000 is a versatile video conferencing solution that caters to mid-to-large conference rooms. It offers high-definition video quality with a resolution of up to 1280x720, ensuring clear and crisp visuals. The system supports multiple video outputs, allowing users to connect to various displays. The VSX 5000 is equipped with the advanced Polycom Content Management system, facilitating easy control of shared content and applications during meetings. With its versatile connectivity options, the VSX 5000 is capable of connecting to various video conferencing networks, enhancing its usability across different platforms.

In summary, the Polycom VSX series offers a range of video conferencing solutions that cater to varying needs, from compact setups for small offices with the VSX 3000 to versatile solutions for larger meeting environments with the VSX 7000s and VSX 5000. Each model integrates advanced technologies and features designed to ensure clear video, robust audio, and seamless connectivity, making them ideal choices for enhancing communication and collaboration in today's digital world.