Internal Security Mechanisms

In the following table, "Unrestricted", "FIPS 140 Level 3", and "Common Criteria CMTS" refer to the Security World mode designation. The cells in these columns detail any restrictions for the corresponding feature in each of the Security World modes. A blank cell means that the feature has no restrictions.

FIPS 140 Level 3: In v3 Security Worlds, in FIPS 140 Level 3 mode, some smaller key sizes are disabled.

Feature	Unrestricted	FIPS 140 Level 3	Common Criteria CMTS
3DES internal security mechanisms (Mech_3DESwSHA1, Mech_3DESwCRC32)	Forbidden
V2 Blobcrypt (AES, RSA & DH ISMs)	Forbidden
V3 Blobcrypt (AES & RSA ISMs)	Mandatory
Share key KDF	Proprietary KDF	NISTKDFmCTRpRijndaelCMACr32

Feature

Unrestricted

FIPS 140 Level 3

Common Criteria CMTS

3DES internal security mechanisms
(Mech_3DESwSHA1,
Mech_3DESwCRC32)

Forbidden

V2 Blobcrypt
(AES, RSA & DH ISMs)

Forbidden

V3 Blobcrypt
(AES & RSA ISMs)

Mandatory

Share key KDF

Proprietary KDF

NISTKDFmCTRpRijndaelCMACr32