Self-Tests, Design Assurance, Key Storage

Non-Proprietary Security Policy, Version 1.0

June 15, 2007

1.7.3Key Storage

The RSA public/private key pair and Integrity Check Key are stored in the modules’ flash drives in plaintext form. The Session Key, IP Encryption Key, ISDN Encryption Key, DH public/private key pair, and PRNG seed are held in volatile memory in plaintext.

1.7.4Key Zeroization

The RSA key pair is zeroized by overwriting the flash image. The Session Key, IP Encryption Key, ISDN Encryption Key, Diffie-Hellman (DH) private/public key pair and PRNG seed are available only temporarily in volatile memory during video calls. These ephemeral keys and CSP are zeroized after the session is closed or whenever power is cycled.

1.8 Self-Tests

The VSX 3000, VSX 5000, and VSX 7000s perform the following self-tests at power-up:

∙Software integrity check using a DSA signature verification

∙Known Answer Tests (KATs)

oAES Known Answer Test (KAT) o Triple-DES KAT

o RSA pairwise consistency check

o FIPS 186-2 Appendix 3.1 PRNG KAT

The cryptographic modules also perform the following conditional self-tests:

∙Continuous RNG for FIPS 186-2 PRNG

∙Continuous RNG for non-approved RNG for entropy gathering

If any of the power-up self-test fails, the modules log the failure, and notification is provided to Crypto Officers through serial traces. Security relevant module functionality is not provided until all self-tests are passed. In case a self-test fails, the logged trace indicates which self-test failed, and the modules display a warning message indicating the required reboot for the system. Since these messages are not available through the Secure Telnet interface before all self-tests have passed, the messages are echoed to any connected monitor screen.

1.9 Design Assurance

Polycom uses automated Configuration Management (CM) of their source code modules, organizing source code into separate version-controlled depots. Polycom uses Accurev’s TimeSafe® Configuration Management System to perform automated source code control. Additionally, Microsoft Visual Source Safe (VSS) version 6.0 is used to provide configuration management for the module’s FIPS documentation. This CM software and Polycom’s process provides access control, versioning, and logging for all module source code and documentation.

Polycom VSX 3000, VSX 5000, and VSX 7000s

Page 19 of 23

VSX 7000s, VSX 3000, VSX 5000 specifications

The Polycom VSX series comprises several high-quality video conferencing systems, notably the VSX 3000, VSX 7000s, and VSX 5000. Each model is designed to enhance communication in various settings, offering unique features, technologies, and characteristics tailored to meet diverse user needs.

The Polycom VSX 3000 is a compact, all-in-one video conferencing system ideal for smaller meeting rooms or personal offices. It features a sleek design with an integrated 15-inch LCD display, which provides an immersive visual experience. The VSX 3000 supports a maximum resolution of 640x480 at 30 frames per second, ensuring clear video quality. The system includes a built-in camera with 85-degree field of view, allowing for effective communication among participants. The VSX 3000 supports H.323 and SIP protocols, ensuring compatibility with various networks and systems. Additionally, it incorporates Polycom's Lost Packet Recovery technology, optimizing video quality even in challenging network conditions.

In contrast, the Polycom VSX 7000s is designed for more extensive video conferencing setups. This system features a modular design, allowing users to customize their setups with additional cameras, microphones, and displays. The VSX 7000s supports a higher resolution of up to 1024x768 pixels, providing more detailed visuals. One of the standout features of this model is its ability to integrate with content-sharing applications, enabling users to share documents and presentations seamlessly during meetings. The VSX 7000s also boasts advanced audio features, including StereoSurround technology, which enhances the auditory experience by providing spatial audio that mimics face-to-face interactions.

Lastly, the Polycom VSX 5000 is a versatile video conferencing solution that caters to mid-to-large conference rooms. It offers high-definition video quality with a resolution of up to 1280x720, ensuring clear and crisp visuals. The system supports multiple video outputs, allowing users to connect to various displays. The VSX 5000 is equipped with the advanced Polycom Content Management system, facilitating easy control of shared content and applications during meetings. With its versatile connectivity options, the VSX 5000 is capable of connecting to various video conferencing networks, enhancing its usability across different platforms.

In summary, the Polycom VSX series offers a range of video conferencing solutions that cater to varying needs, from compact setups for small offices with the VSX 3000 to versatile solutions for larger meeting environments with the VSX 7000s and VSX 5000. Each model integrates advanced technologies and features designed to ensure clear video, robust audio, and seamless connectivity, making them ideal choices for enhancing communication and collaboration in today's digital world.

Polycom VSX 3000, VSX 5000, VSX 7000s Self-Tests, Design Assurance, Key Storage, Key Zeroization

Models: VSX 7000s VSX 3000 VSX 5000