Lenel Onguard Access Control Communication Server Non-Proprietary Security
Lenel Onguard Access Control Communication Server Non-Proprietary Security
Lenel Onguard Access Control Communication Server Non-Proprietary Security
Communication Server
Revision History
Revision History
1.1 8-15-2011 R Pethick Updates from initial revision 1.0 adding newer
versions of OnGuard.
1.2 12-30-2011 R Pethick Updated 6.1 Roles and Services and Table 4 in
Section 6.2
1.4 07-09-2013 R. Martinez General updates after input from NIST during
listing of COBRA.
1.5 7/31/13 R .Martinez Input from NIST. Added “encrypt & decrypt” to
8.4.A.a.i
1.6 10/01/13 R. Martinez Added Dell Models per NIST request to Table 1
2.0 08/11/2015 M. OBrien Changed legal entity name from Lenel to UTC
Fire & Security Americas Corporation, Inc.
Page 2 of 13
Lenel OnGuard Communication Server Security Policy
TABLE OF CONTENTS
Page 3 of 13
Lenel OnGuard Communication Server Security Policy
1. Module Overview
The Lenel OnGuard Access Control “Communication Server” cryptographic module is a
software only multi-chip standalone cryptographic module. The Communication Server module's
primary purpose is to provide secure communications with external access control devices. The
module is part of the Lenel advanced access control and alarm monitoring system. The Lenel
advanced access control and alarm monitoring system is built on an open architecture platform,
offers unlimited scalability, database segmentation, fault tolerance, and biometrics and smart
card support. The Lenel advanced access control and alarm monitoring system is fully
customizable, and can be seamlessly integrated into the OnGuard total security solution.
The physical cryptographic boundary is defined as the outer perimeter of the general purpose
computing platform (GPC) running Windows Server 2008, Windows 7, Windows Server 2012,
or Windows 8 on which the software only module executes.
The logical cryptographic module encompasses the following runtime components:
Microsoft Enhanced Cryptographic Provider RSAENH.DLL. This is a previously
validated FIPS 140-2 module (Cert. #1330, #1010, and #1894)
Mercury SCPD_NET.DLL
Dell OptiPlex 760 Reference:
Windows Server 2008 CMVP Cert.
Intel Core2 E8400 #1010
Page 4 of 13
Lenel OnGuard Communication Server Security Policy
Physical Cryptographic Module Boundary (GPC Hardware)
Microsoft Operating System
Logical Cryptographic
Module Boundary Lenel
Lenel’s ISC
FIPS Key Generator
Application Communication
Server
Lenel’s
FIPS Mode
Microsoft’s
Configuration Utility RSAENH.dll
Application
Mercury’s
scpd_net.dll
Dell OptiPlex
7010
2. Security Level
The Lenel OnGuard Access Control cryptographic module meets the overall requirements
applicable to Level 1 security of FIPS 140-2.
Table 2 - Module Security Level Specification
Security Requirements Section Level
Cryptographic Module Specification 1
Module Ports and Interfaces 1
Roles, Services and Authentication 1
Finite State Model 1
Physical Security N/A
Operational Environment 1
Cryptographic Key Management 1
EMI/EMC 3
Self-Tests 1
Design Assurance 3
Mitigation of Other Attacks N/A
Page 5 of 13
Lenel OnGuard Communication Server Security Policy
3. Modes of Operation
3.1 FIPS Approved Mode of Operation
In FIPS mode, the cryptographic module supports or uses the following algorithms:
AES ECB and CBC with 128-bit keys for encryption using Scpd_net.dll (AES
Certificates #1650 and #3088).
NIST recommended RNG based on ANSI X9.31 Appendix A.2.4 using the AES
algorithm (RNG Certificates #882 and #1313)
The following algorithms are provided by RSAENH.DLL validated to FIPS 140-2 under Cert.
#1330, #1010 or #1894
FIPS 140-2 Cert. #1330
RSA Cert. #557
SHA Cert. #1081
RNG (SP 800-90, vendor affirmed)
Page 6 of 13
Lenel OnGuard Communication Server Security Policy
The Lenel Communication Server uses the RC2 algorithm for encrypting and decrypting data
from the database. This data is treated as plain text as far as this module is concerned.
Page 7 of 13
Lenel OnGuard Communication Server Security Policy
User Role: This role is assumed to provide the operator access to cryptographic services,
status information, and self-tests service. The user role is assumed by the selection of a
User allocated service.
Page 8 of 13
Lenel OnGuard Communication Server Security Policy
Page 9 of 13
Lenel OnGuard Communication Server Security Policy
RSA Software Public Key - 1024 bits: This key is the RSA public key that is used to
validate the software integrity.
Cryptographic Keys and CSPs Access Operation
Role
Enter = E, Generate = G, Output= O, Read = R, Zeroize = Z
Service
Seed Value
CO User Master Key1 Master Key 2 Session Key Seed Key (M)
(M)
X Alternating Bypass
Enable/Disable
X Show Status
X Self‐Tests R R
X Zeroize Z Z Z Z Z
Page 10 of 13
Lenel OnGuard Communication Server Security Policy
X Remote Procedure
Call
X COM Interface
Method
X Database Interaction
7. Operational Environment
The FIPS 140-2 Area 6 Operational Environment requirements are applicable because the
cryptographic module contains a modifiable operational environment. The following operating
systems were used during the FIPS 140-2 operational testing:
8. Security Rules
The cryptographic module’s design corresponds to the cryptographic module’s security rules.
This section documents the security rules for the cryptographic module to implement the security
requirements of this FIPS 140-2 Level 1 module.
1. The cryptographic module shall provide two distinct operator roles. These are the User
role, and the Cryptographic-Officer role.
2. The module does not support operator authentication.
3. The cryptographic module shall encrypt message traffic using the AES algorithm.
4. The cryptographic module shall perform FIPS 140-2 required self-tests
A. Power up Self-Tests:
a. Cryptographic Algorithm Tests:
i. AES (encrypt and decrypt) Known Answer Tests (KATs).
ii. ANSI x9.31 RNG Known Answer Test.
b. Software Integrity Test
i. RSA 1024 with SHA-1 signature verification.
c. Critical Functions Tests: Configuration Parameter Integrity test
B. Conditional Self-Tests:
a. Continuous Random Number Generator (RNG) test:
Page 11 of 13
Lenel OnGuard Communication Server Security Policy
Page 12 of 13
Lenel OnGuard Communication Server Security Policy
11. References
The UTC Fire & Security Americas Corporation, Inc. Lenel website: http://www.lenel.com
Security Policy for FIPS 140-2 Validation Microsoft Windows 8 Microsoft Windows Server
2012 Microsoft Windows RT Microsoft Surface Windows RT Microsoft Surface Windows 8 Pro
Microsoft Windows Phone 8 Enhanced Cryptographic Provider (RSAENH.DLL)
Page 13 of 13