Advanced Encryption Standard Algorithm Validation List

Last Update: 12/19/2014

The page provides technical information about implementations that have been validated as conforming to the Advanced Encryption Standard (AES) Algorithm, as specified in Federal Information Processing Standard Publication 197, Advanced Encryption Standard.

The list below describes implementations which have been validated as correctly implementing the AES algorithm, using the tests found in The Advanced Encryption Standard Algorithm Validation Suite (AESAVS). This testing is performed by NVLAP accredited Cryptographic And Security Testing (CST) Laboratories..

The implementations below consist of software, firmware, hardware, and any combination thereof. The National Institute of Standards and Technology (NIST) has made every attempt to provide complete and accurate information about the implementations described in this document. However, due to the possibility of changes made within individual companies, NIST cannot guarantee that this document reflects the current status of each product. It is the responsibility of the vendor to notify NIST of any necessary changes to its entry in the following list.


This list is ordered in reverse numerical order, by validation number. Thus, the more recent validations are located closer to the top of the list. The column after the Validation Date column contains information indicating what modes and features for these modes has been successfully tested.

For the original modes of operation (ECB, CBC, CFB, OFB), this information consists of the modes of operation tested (e.g., ECB, CBC, CFB, OFB), states (encryption(e) and/or decryption(d)), and key sizes (128-bit, 192-bit, and/or 256-bit) for which the implementation was validated. For Counter (CTR) mode, the counter source (internal(int) and/or external(ext)) is also indicated.

For the authenticate encryption mode of operation CCM, this information consists of the following:

Legend for Description Field

Key Sizes Tested 128, 192, 256
Associated Data Length Range Tested Minimum - Maximum, 2^16

The values listed indicate the formatting of the Associated Data cases that were tested (Refer to Appendix A.2.2 of SP800-38C):

* If Minimum = 0, the formatting case where Associated Data Length (Alen) = 0 is tested.
* If values ranging from 1 to 32 are listed, the formatting case where 0 < Alen < 2^16 - 2^8 is tested.
* If 2^16 is listed, the formatting case where 2^8 < Alen < 2^32 is tested.

Payload Length Range Tested Minimum - Maximum
Nonce Length(s) tested 7, 8, 9, 10, 11, 12, 13
Tag Length(s) tested 4, 6, 8, 10, 12, 14, 16

Legend for Description Field

KW AE, AD Authenticated encryption and/or authenticated decryption
AES-128, AES-192, AES-256 AES function
FW, INV CIPHk is AES forward transformation or AES inverse transformation
Len1, [Len2, Len3, Len4, Len5] Tested plaintext lengths
Example 1: KW (AE, AD, AES-128, AES-256, FWD, INV, 128, 256, 192, 384, 4096)

Example 2: KW (AE, AES-128, FWD, 128)

Legend for Description Field

KWP AE, AD Authenticated encryption and/or authenticated decryption
AES-128, AES-192, AES-256 AES function
FW, INV CIPHK is AES forward transformation or AES inverse transformation
Len1, [Len2, Len3, Len4, Len5] Tested plaintext lengths
Example 1: KWP (AE, AD, AES-128, AES-256, FWD, INV, 128, 256, 192, 384, 2048)

Example 2: KWP (AE, AD, AES-256, FWD, 128, 256)

For the AES-GCM/GMAC mode of operation, validated implementations must obtain assurance from the vendor that the implementation satisfies the arithmetic requirements of the algorithm.
Three categories of PT and AAD lengths are tested if supported. These include:
1. zero-length
2. lengths that are a non-zero multiple of 128, and
3. lengths that are a non multiple of 128.

All PT and AAD lengths tested by an IUT are listed. The lengths listed represent the categories of PT and AAD tested for the IUT. The actual length tests also represents the PT/AAD length scenarios tested by the IUT. The 9 possible scenarios of PT/AAD lengths include:

If an IV is generated internally, the laboratory must affirm that the IV is constructed using one of the methods in NIST SP800-38D, Section 8.2.1 or Section 8.2.2. The information for each AES-GCM/GMAC validation consists of the following information:

Legend for Description Field

Key Sizes Tested 128, 192, 256
States Tested Encrypt (e) and/or Decrypt (d)
Tag Lengths Supported 128, 120, 112, 104, 96, 64, 32
PT Lengths tested Values tested (See explanation above. Values were tested in combination with AAD lengths)
AAD Lengths tested Values tested (See explanation above. Values were tested in combination with PT lengths)
GMAC Supported/Not Supported
96BitIV Supported/Not Supported
IV Generated Internally (using Section 8.2.1/ Section 8.2.2)/Externally
IV Lengths Tested Values tested

For the CMAC authentication mode of operation, this information consists of the key sizes (128-bit, 192-bit, and/or 256-bit) (KS 128,192,256) for which the implementation was validated.

For the AES-XTS mode of operation, validated implemenations must obtain assurance from the vendor that the implementation satisfies the following requirement in addition to the arithmetic requirements of the algorithm: "The length of Data units for any instance of an implementation of XTS-AES SHALL NOT exceed 2^20 blocks." The information for each AES-XTS valition consists of the following information:

Legend for Description Field

Key Sizes Tested 128, 256
States Tested Encrypt (e) and/or Decrypt (d)
Block Sizes Supported Full Blocks (f) and/or Partial Blocks (p)

Advanced Encryption Standard (AES) Algorithm Validated Implementations

Validation
No.
Vendor Implementation
Operational
Environment
Val.
Date
Modes/States/Key sizes/
Description/Notes
3170 Cobham Tactical Communications & Surveillance (Cobham TCS)
The Cobham Centre - Solent
Fusion 2, 1100 Parkway
Solent Business Park
Whiteley, Hampshire PO15 7AB
United Kingdom

-Graham Foord
TEL: +44 (0) 1489 566760
FAX: +44 (0) 1489 880538

-Neil McSparron
TEL: +44 (0) 1489 566760
FAX: +44 (0) 1489 880538

Cobham NETNode AES Encryption Module

Version 5.4 (Firmware)
Freescale ColdFire Microprocessor (MCF54453) 12/19/2014 CBC ( e/d; 128 , 256 );

"Cobham’s NETNode AES Encryption module is used in the Cobham NETNode IP Mesh radio products to provide secure AES Encryption over the NETNode high capacity ad-hoc multi-radio mesh network."

3169 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

-Daniel Hayes
TEL: 613-225-9381 x7643
FAX: 613-225-9951

Fortinet FortiOS FIPS Cryptographic Library

Version 5.0.10 (Firmware)
ARM v5 Compatible; Intel Atom; Intel Celeron; Intel i3-540 Dual Core; Intel i5-750 Quad Core; Intel Xeon 12/19/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the firmware implementation of the Fortinet FortiOS FIPS Cryptographic Library v5.0 running on Intel x86 compatible processors."

3168 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

-Daniel Hayes
TEL: 613-225-9381 x7643
FAX: 613-225-9951

Fortinet FortiASIC CP8 Cryptographic Library

Part # CP8
N/A 12/19/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the firmware implementation of the Fortinet FortiASIC CP8 Cryptographic Library v5.0 running on Intel x86 compatible processors."

3167 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

-Daniel Hayes
TEL: 613-225-9381 x7643
FAX: 613-225-9951

Fortinet FortiASIC CP7 Cryptographic Library

Part # CP7
N/A 12/19/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the firmware implementation of the Fortinet FortiASIC CP7 Cryptographic Library v5.0 running on Intel x86 compatible processors."

3166 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

-Daniel Hayes
TEL: 613-225-9381 x7643
FAX: 613-225-9951

Fortinet FortiASIC CP6 Cryptographic Library

Part # CP6
N/A 12/19/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the firmware implementation of the Fortinet FortiASIC CP6 Cryptographic Library v5.0 running on Intel x86 compatible processors."

3165 Barracuda Networks
3175 Winchester Road
Campbell, CA 95008
USA

-Andrea Cannon
TEL: 703-743-9068

Barracuda Cryptographic Software Module

Version 1.0.1.8
Intel Xeon, Intel Xeon with AES-NI, AMD Opteron, AMD Opteron with AES-NI w/ Barracuda OS v2.3.4 12/19/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 512 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Barracuda Cryptographic Software Module is a cryptographic software library that provides fundamental cryptographic functions for applications in Barracuda security products that use Barracuda OS v2.3.4 and require FIPS 140-2 approved cryptographic functions."

3164 Qualcomm Technologies, Inc.
5775 Morehouse Dr
San Diego, CA 92121
USA

-Lu Xiao
TEL: 858-651-5477

QTI Cryptographic Module on Crypto 5 Core V5.3.0.

Part # Snapdragon 810
N/A 12/19/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); CTR ( int/ext; 256 )

CCM (KS: 128 , 256 ) (Assoc. Data Len Range: 1 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 16 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"This cryptographic module implements block ciphers including AES and Triple DES in multiple modes, hash algorithms including SHA-1 and SHA-256, and Message Authentication Codes including HMAC and CMAC."

3163 Samsung Electronics Co., Ltd.
416, Maetan 3-Dong Youngton Gu
Suwon, Gyeonggi 152-848
South Korea

-Abraham Joseph Kang
TEL: +1-408-324-3678
FAX: +1-408-324-3640

-Bumhan Kim
TEL: +82-10-4800-6711

Samsung SCrypto

Version 1.0
Samsung Electronics Exynos 5 w/ Trustonic Tbase 301 secure OS 12/19/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

"Provide general purpose cryptographic services to TrustZone applications on the mobile platform for the protection of data in transit."

3162 Digital Security Controls, a Division of Tyco Safety Products Canada Ltd.
3301 Langstaff Road
Concord, Ontario L4K 4L2
Canada

-MR. DAN NITA
TEL: 1-905-760-3000#2706
FAX: 1-905-760-3020

3G/CDMA Cellular Alarm Communicator 3G8080/3G808I/CD8080/CD8080I

Version SW Ver. 183 (Firmware)
ADC-20 ATMEL AVR32 12/19/2014 CBC ( e/d; 128 );

"The 3G8080/3G8080I/CD8080/CD8080I 3G/CDMA Cellular Alarm Communicator provides constantly supervised and encrypted line security communications over Cellular Network (Internet or Intranet) for security/intrusion applications (as required per UL365, UL1610 standard)."

3161 Digital Security Controls, a Division of Tyco Safety Products Canada Ltd.
3301 Langstaff Road
Concord, Ontario L4K 4L2
Canada

-DAN NITA
TEL: 1-905-760-3000#2706
FAX: 1-905-760-3020

3G Cellular Alarm Communicator 3G4010/3G4000CF

Version SW Ver 4.0 (Firmware)
Hardware: UA673 Rev. 02 12/19/2014 ECB ( e/d; 128 );

"The 3G4010/3G4010CF 3G Cellular Alarm Communicator provides constantly supervised and encrypted line security communications over Cellular Network (Internet or Intranet) for security/intrusion applications (as required per UL365, UL1610 standard)."

3160 Applied Micro Circuits Corporation
1 Hines Rd.
Unit 204
Kanata, ON K2K 0A5
Canada

-Matt Brown
TEL: 613-254-6728

SafeXcel-IP-160

Part # HW4.0.3
N/A 12/19/2014 ECB ( e only; 128 , 256 ); CTR ( int only; 128 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 256 , 192 , 320 ) ; AAD Lengths tested: ( 128 , 256 , 192 , 320 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"SafeXcel-IP-160 is the IEEE 802.1AE MAC Security (MACsec) cryptographic engine for the AppliedMicro X-Weave product family. The engine processes a continuous stream of Ethernet packets at 10 Gbps, 40 Gbps, or 100 Gbps data rates."

3159 Trend Micro Inc.
40 Hines Road
Suite 200
Ottawa, ON K2K 2M5
Canada

-Marion Chase
TEL: 613-599-4505 x 2306
FAX: 613-599-8191

-Marion Mora
TEL: 613-599-4505 x 2346
FAX: 613-599-8191

Trend Micro Cryptographic Module - Deep Security Manager

Version 9.5
Intel Pentium 4 w/ Microsoft Windows 2008 R2 (64-bit) 12/19/2014 CBC ( e/d; 256 );

"Trend Micro Cryptographic Module provides FIPS 140-2 algorithm services for the Deep Security Manager centralized management component used to configure security policy and deploy protection to enforcement components."

3158 SK hynix memory solutions
3103 N 1st St
San Jose, CA 95134
United States

-Junlin Lu
TEL: 408-514-3815

-Hongsoon Kwon
TEL: 408-514-3598

SKHMS Crypto Module

Part # 1.0
N/A 12/12/2014 ECB ( e/d; 128 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"SKHMS Crypto Module is an AES hardware encryption/decryption engine."

3157 wolfSSL Inc.
10016 Edmonds Way
Suite C-300
Edmonds, WA 98020
USA

-Todd Ouska
TEL: 503-679-1859

-Larry Stefonic
TEL: 206-369-4800

wolfCrypt

Version 3.6
Intel Core i7 w/ Linux 3.13 64-bit 12/12/2014 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"wolfCrypt module is a comprehensive suite of FIPS Approved algorithms. All key sizes and modes have been implemented to allow flexibility and efficiency."

3156 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-James Reardon
TEL: (651) 628-2700
FAX: (651) 628-2701

McAfee NSP NS Crypto Lib

Version 2.0.5 (Firmware)
Intel Xeon E5 12/12/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"Cryptographic services for the McAfee NSP Intrusion Prevention appliances"

3155 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-James Reardon
TEL: (651) 628-2700
FAX: (651) 628-2701

McAfee NSP M Crypto Lib

Version 2.0.5 (Firmware)
Broadcom XLR 12/12/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"Cryptographic services for the McAfee NSP Intrusion Prevention appliances"

3154 Blue Coat Systems, Inc.
420 N. Mary Avenue
Sunnyvale, California 94085-4121
USA

-Diana Robinson
TEL: 845-454-6397

-Nick Goble
TEL: 978-318-7544

Blue Coat SSL Visibility Appliance Crypto Library

Version 1.0.1
Intel X3450 Quad Core w/ Linux x86_64; Intel E5620 Quad Core w/ Linux x86_64; Intel E5645 Hex Core w/ Linux x86_64 12/12/2014 CBC ( e/d; 128 , 256 ); CFB128 ( e/d; 128 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 ) ; AAD Lengths tested: ( 512 , 1024 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

"The Blue Coat SSL Visibility Appliance decrypts multiple streams of SSL content to provide IDS/IPS, logging, forensics, and data loss prevention. This preserves complete network traffic histories necessary for compliance/threat analysis and enables SSL inspection capabilities that close the security loophole created by SSL."

3153 AirSig Inc.
Floor 4, Willow House, Cricket Square
P. O. Box 2804
Grand Cayman, n/a KY1-1112
Cayman Islands

-Roland Wang
TEL: +886-2-2655-3320
FAX: +886-2-2655-3321

AirSig Password Wallet

Version 4.8
ARMv7 w/ Android KitKat 4.4.4 12/12/2014 ECB ( e/d; 256 );

"Powered by AirSig air signature technology, AirSig Password Wallet saves user''s ID, password, and any private data in it. The private data is protected by AirSig''s unique multi-dimensional Air Signature technology and AES-256 encryption."

3152 Red Hat, Inc.
1801 Varsity Drive
Raleigh, NC 27606
USA

-Ann-Marie Rubin
TEL: 978 392 1000

Linux Kernel crypto API (ibm-64-gen)

Version 2.6.32-504.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 11 (Tag Length(s): 8 12 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 120 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Linux kernel crypto API implementation providing cryptographic services to software components executing as part of the Linux kernel - this tests covers the generic C implementations of various ciphers on Intel x86 64 bit IBM hardware."

3151 Red Hat, Inc.
1801 Varsity Drive
Raleigh, NC 27606
USA

-Ann-Marie Rubin
TEL: 978 392 1000

Linux Kernel crypto API (hp-64-gen)

Version 2.6.32-504.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 11 (Tag Length(s): 8 12 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 120 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Linux kernel crypto API implementation providing cryptographic services to software components executing as part of the Linux kernel - this tests covers the generic C implementations of various ciphers on Intel x86 64 bit HP hardware."

3150 Red Hat, Inc.
1801 Varsity Drive
Raleigh, NC 27606
USA

-Ann-Marie Rubin
TEL: 978 392 1000

Linux Kernel crypto API (ibm-64-aesni-blkasm)

Version 2.6.32-504.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 120 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Linux kernel crypto API implementation providing cryptographic services to software components executing as part of the Linux kernel - this tests covers the AES-NI implementation (aes-aesni) and the PCLMULQDQ-NI implementation (ghash) on Intel x86 64 bit IBM hardware."

3149 Red Hat, Inc.
1801 Varsity Drive
Raleigh, NC 27606
USA

-Ann-Marie Rubin
TEL: 978 392 1000

Linux Kernel crypto API (ibm-64-aesni)

Version 2.6.32-504.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 11 (Tag Length(s): 8 12 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 120 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Linux kernel crypto API implementation providing cryptographic services to software components executing as part of the Linux kernel - this tests covers the AES-NI implementation (aes-aesni) and the PCLMULQDQ-NI implementation (ghash) on Intel x86 64 bit IBM hardware."

3148 Red Hat, Inc.
1801 Varsity Drive
Raleigh, NC 27606
USA

-Ann-Marie Rubin
TEL: 978 392 1000

Linux Kernel crypto API (ibm-64-aesasm)

Version 2.6.32-504.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 11 (Tag Length(s): 8 12 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 120 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Linux kernel crypto API implementation providing cryptographic services to software components executing as part of the Linux kernel - this tests covers the assembler AES implementation (aes-asm) on Intel x86 64 bit IBM hardware."

3147 Red Hat, Inc.
1801 Varsity Drive
Raleigh, NC 27606
USA

-Ann-Marie Rubin
TEL: 978 392 1000

Linux Kernel crypto API (hp-64-aesni-blkasm)

Version 2.6.32-504.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 120 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Linux kernel crypto API implementation providing cryptographic services to software components executing as part of the Linux kernel - this tests covers the AES-NI implementation (aes-aesni) and the PCLMULQDQ-NI implementation (ghash) on Intel x86 64 bit HP hardware."

3146 Red Hat, Inc.
1801 Varsity Drive
Raleigh, NC 27606
USA

-Ann-Marie Rubin
TEL: 978 392 1000

Linux Kernel crypto API (hp-64-aesni)

Version 2.6.32-504.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 11 (Tag Length(s): 8 12 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 120 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Linux kernel crypto API implementation providing cryptographic services to software components executing as part of the Linux kernel - this tests covers the AES-NI implementation (aes-aesni) and the PCLMULQDQ-NI implementation (ghash) on Intel x86 64 bit HP hardware."

3145 Red Hat, Inc.
1801 Varsity Drive
Raleigh, NC 27606
USA

-Ann-Marie Rubin
TEL: 978 392 1000

Linux Kernel crypto API (hp-64-aesasm)

Version 2.6.32-504.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 11 (Tag Length(s): 8 12 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 120 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Linux kernel crypto API implementation providing cryptographic services to software components executing as part of the Linux kernel - this tests covers the assembler AES implementation (aes-asm) on Intel x86 64 bit HP hardware."

3144 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade MLXe MR2

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC 7448, RISC, 1700 MHz 12/5/2014 CFB128 ( e/d; 128 );

"Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade MLXe Series provides industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS, and MPLS Virtual Private Networks (VPNs)."

3143 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade NetIron CES and CER 2000 Series

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC 8544, Power QUICC III, 800 MHz 12/5/2014 CFB128 ( e/d; 128 );

"Brocade cryptographic library used in Brocade IP products implementsa crypto operations in software. The Brocade NetIron CER 2000 Series Ethernet Routers, Brocade NetIron CES 2000 Series Ethernet Switches provides wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS, and MPLS VPNs."

3142 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 7450

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Dual-core ARM Cortex A9 1Ghz 12/5/2014 CFB128 ( e/d; 128 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade ICX 7450 stackable switch delivers the performance, flexibility, and acalability required for enterprise Gigabit Ethernet (Gbe) access deployment."

3141 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade SX800/SX1600 Series

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale P3041E, 1.5GHz 12/5/2014 CFB128 ( e/d; 128 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The FastIron SX Series extends control from the network edge to the core with intelligent network services, such as Quality of Service (QoS) and provides a scalable, secure, low-latenvy, and fault-tolerant IP services solution for 1GbE and 10 GbE enterprise deployment."

3140 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 7750

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale P2041, 1.5GHz 12/5/2014 CFB128 ( e/d; 128 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. the Brocade ICX 7750 is an Ethernet switch for campus LAN aggregation and classic Ethernet data center Top Rack (ToR) enviroment."

3139 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade FCX 624/648 and ICX 6610 Series

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC8544E, 800 MHz 12/5/2014 CFB128 ( e/d; 128 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade ICX6610 delivers wire-speed, nonblocking performance across all ports to support latency-sensitive performance. The Brocade FCX Series offers a comprehensive line of switches with specific models optimized for campus and data center deployment."

3138 Security First Corporation
29811 Santa Margarita Parkway
Suite 600
Rancho Santa Margarita, CA 92688
USA

-Rick Orsini
TEL: 949-858-7525
FAX: 949-858-7092

Secure Parser Library

Version 4.7.0.29
Intel Core i5 on VMWare ESXi 4.1.0 w/ Microsoft Windows Server 2008 64-bit; Intel Core i7 on QEMU w/ Microsoft Windows Server 2012 64-bit; Intel Core i5 with AES-NI w/ Red Hat Enterprise Linux 6 64-bit; Intel Core i5 on QEMU w/ Suse Linux Enterprise Server 11 SP3 64-bit; IBM Power7 w/ AIX 7.1 64-bit; Intel Core i7 on QEMU with AES-NI, disabled w/ Windows 7 32-bit; Intel Core i7 on QEMU, AES-NI w/ Windows 7 32-bit; Intel Core i5 with AES-NI disabled w/ Windows 7 64-bit; Intel Core i5 with AES-NI w/ Windows 7 64-bit; AMD A4-500 with AES-NI disabled w/ Windows 8 64-bit; AMD A4-500 with AES-NI w/ Windows 8 64-bit; Intel Core i5 without AES-NI w/ Red Hat Enterprise Linux 6 64-bit 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 200 , 320 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 200 , 320 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Supported
RNG: Val# 1335

"The Secure Parser Library is a suite of general security routines using FIPS Approved algorithms for its cryptography. An AES key size of 256 bits and equivalent key sizes for all other algorithms are supported by the library."

3137 Red Cocoa II
8200 Cody Drive
Suite G-2
Lincoln, NE 68512
USA

-Andy Lenhart
TEL: (402) 467-1086

-Mark Nispel
TEL: (402) 467-1086

AES Component

Version b29ec43e6da139530a0693e06807308766abad86 (Firmware)
ST Micro STM32 F4 Series 12/5/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 256 ); OFB ( e/d; 256 );

"AES Component implements 256-bit key ECB/OFB/CBC encrypt and decrypt and 128-bit key ECB encrypt/decrypt."

3136 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

McAfee Linux libgcrypt Cryptographic Engine

Version 1.6.2
Xeon E5540 w/ MLOS v2.2.3 running on VMware ESXi5.0 hypervisor 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

3135 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

McAfee Linux libgcrypt Cryptographic Engine

Version 1.6.2 (Firmware)
Celeron; Core i3; Xeon E5540 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

3134 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade FCX 624/648 and ICX 6610 Series

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC8544E, 800 MHz 12/5/2014 CFB128 ( e/d; 128 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade ICX6610 delivers wire-speed, nonblocking performance across all ports to support latency-sensitive performance. The Brocade FCX Series offers a comprehensive line of switches with specific models optimized for campus and data center deployment."

3133 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 6450 and ICX 6450 C-12 Series

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
ARM ARMv5TE, 800 MHz 12/5/2014 CFB128 ( e/d; 128 );

"The Brocade cryptographic library used in brocade IP Products implements crypto operations in software. Brocade ICX6450 switches deliver enterprise-class stackable switching at an entry-level price."

3132 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade FIPS Crypto Library (FPGA BLITZER)
N/A 12/5/2014 ECB ( e only; 256 );

GCM (KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 256 , 1024 ) ; AAD Lengths tested: ( 64 , 64 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The Brocade FPGAv141106"

3131 IBM Corporation
80 Bishop Drive, Unit B
Fredericton, New Brunswick E3C 1B2
Canada

-Peter Clark
TEL: (416) 478-0224

-Chris LeMesurier
TEL: (416) 478-0224

Cryptographic Security Kernel

Version 1.0
Intel Xeon w/ RHEL 6 12/5/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The IBM Cryptographic Security Kernel is a multi-algorithm library providing general-purpose cryptographic services. The module provides a single, FIPS-Approved API for cryptography allowing for centralized FIPS mode status, logging, and reporting."

3130 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0408
FAX: 408-333-8101

Brocade FIPS Crypto Library

Version FOS 7.4.0 (Firmware)
CN6880 12/5/2014 CBC ( e/d; 256 );

GCM (KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 104 , 408 ) ; AAD Lengths tested: ( 0 , 128 , 384 , 160 , 720 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Supported
DRBG: Val# 635

"Brocade cryptographic library is used in Brocade FOS based switches to implement the cryptographic related modules."

3129 Syn-Tech Systems, Inc
100 Four Points Way
Tallahassee, Florida 32305
USA

-Brian Pietrodangelo
TEL: 800.888.9136

-Mark Butsch
TEL: 800.888.9136

ProFlex01-R2 CCM

Version 1.1 (Firmware)
Part # LS Research ProFlex01-R2 P/N 450-0140
ProFlex01-R2 11/21/2014

CCM (KS: 128 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 13 (Tag Length(s): 8

"CCM implementation within the ProFlex01-R2 module"

3128 Syn-Tech Systems, Inc
100 Four Points Way
Tallahassee, Florida 32305
USA

-Brian Pietrodangelo
TEL: 800.888.9136

-Mark Butsch
TEL: 800.888.9136

ProFlex01-R2 AES

Part # LS Research ProFlex01-R2 P/N 450-0140
N/A 11/21/2014 ECB ( e only; 128 );

"AES implementation within the ProFlex01-R2 module."

3127 Syn-Tech Systems, Inc
100 Four Points Way
Tallahassee, Florida 32305
USA

-Brian Pietrodangelo
TEL: 800.888.9136

-Mark Butsch
TEL: 800.888.9136

ProFlex01-R2 CCM

Version 1.1 (Firmware)
Part # LS Research ProFlex01-R2 P/N 450-0139
ProFlex01-R2 11/21/2014

CCM (KS: 128 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 13 (Tag Length(s): 8
AES Val#3126

"CCM implementation within the ProFlex01-R2 module"

3126 Syn-Tech Systems, Inc
100 Four Points Way
Tallahassee, Florida 32305
USA

-Brian Pietrodangelo
TEL: 800.888.9136

-Mark Butsch
TEL: 800.888.9136

ProFlex01-R2 AES

Part # LS Research ProFlex01-R2 P/N 450-0139
N/A 11/21/2014 ECB ( e only; 128 );

"AES implementation within the ProFlex01-R2 module."

3124 EROAD, Inc.
Level 3
260 Oteha Valley Road
Albany, North Shore 0632
Auckland, * *
New Zealand

-Bruce Wilson
TEL: +64 9 927 4700
FAX: +64 9 927 4701

The EROAD Cryptographic Library

Version 1.0 (Firmware)
Part # MK70FN1M0VMJ12
MK70FN1M0VMJ12 11/21/2014 ECB ( e only; 128 );

"The EROAD Cryptographic Module is the heart of EROAD''s advanced GNSS based transport technology. It is a secure, high performance, cryptographic processing engine and has been designed to meet FIPS-140-2 at Security Level 3. It is used within the EROAD product suite to provide trusted cryptographic security services."

3123 INSIDE Secure
Eerikinkatu 28
Helsinki, 00180
Finland

-Serge Haumont
TEL: +358 40 5808548

-Marko Nippula
TEL: +358 40 7629394

SafeZone FIPS Cryptographic Module

Version 1.1
Part # n
Intel Atom Z3740 with AES-NI w/ 64 bit library w/ Ubuntu Linux (kernel 3.13); Intel Atom Z2560 w/ 32 bit library w/ Android 4.2; Intel Atom Z3740 with AES-NI w/ 32 bit library w/ Ubuntu Linux (kernel 3.13); Intel Atom Z3740 without AES-NI w/ 64 bit library w/ Ubuntu Linux (kernel 3.13); ARMv6 w/ Raspbian Linux (kernel 3.10); ARMv7 w/ iOS 7.1; ARM64 with ARMv8 Crypto Extensions w/ iOS 7.1; iOS 7.1 w/ iOS 7.1; ARMv7-a w/ 11/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 11 13 (Tag Length(s): 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 )
IV Generated: ( Internally (using Section 8.2.1 / 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 65536 , 8 , 1016 ) ; AAD Lengths tested: ( 0 , 65534 , 8 , 1016 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Supported
DRBG: Val# 634

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))
KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 4096 ) KWP ( AE , AD , AES-128 , AES-192 , 256 , FWD , 8 , 72 , 32 , 96 , 4096

"SafeZone FIPS Cryptographic Module is a FIPS 140-2 Security Level 1 validated software cryptographic module from INSIDE Secure. This compact and portable module provides the most commonly needed cryptographic primitives for a large variety of applications, including but not limited to DAR, DRM, TLS, and VPN."

3122 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-8000
FAX: 408-333-8101

Brocade Vyatta Network OS OpenSSL Cryptographic module

Version 1.0
Intel Xeon CPU X5560 @ 2.80GHz w/ Brocade Vyatta Series 3500 Network OS 3.2.1R1 11/14/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 8 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 8 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 8 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"Built for Network Functions Virtualixation (NFV), Brocade Vyatta 5650 and 5630 vRouters are the first virtual routers capable of providing advance routing in software without sacrificing the reliability and performance of hardware networking solutions."

12/09/14: Updated implementation information;

3121 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic modes, i7 32bit)

Version 5.0
Intel i7 w/ OSX 10.10 11/14/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) ) KS: XTS_256( (e/d) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS compiled for 32bit word size."

3120 RSA, The Security Division of EMC
174 Middlesex Turnpike
Bedford, MA 01730
USA

-Sandy Carielli
TEL: 781-515-7510

RSA BSAFE Crypto-C Micro Edition (ME)

Version 3.0.0.23
ARM Cortex A7 Dual Core w/ Linaro Linux (kernel 3.10.33) 11/14/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"RSA BSAFE® Crypto-C ME software is designed to help protect sensitive data as it is stored using strong encryption techniques to provide a persistent level of protection. The software supports a wide range of industry standard encryption algorithms offering developers the flexibility to choose the appropriate option to meet their requirements."

3119 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (AES-NI and AVX+SSSE3 for SHA) 64 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/14/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 64bit word size."

3118 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Langley Rock
TEL: 613.221.5068
FAX: 613.723.5079

-Laurie Mack
TEL: 613.221.5065
FAX: 613.723.5079

ProtectServer Internal Express Cryptographic Library

Version 5 (Firmware)
AMCC 440EPx Power PC (PPC440EPx) Embedded Processor 11/7/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The SafeNet PSI-E cryptographic library provides a wide range of cryptographic functions."

3117 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

McAfee Linux OpenSSL

Version 1.0.1
Xeon E5540 w/ MLOS v2.2.3 running on VMware ESXi 5.0 hypervisor 11/7/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"McAfee Linux cryptographic modules provide cryptographic services for McAfee Linux and security appliance products built upon this platform. McAfee Linux is an operating system built with a focus on the needs of security appliances."

3116 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

McAfee Linux OpenSSL

Version 1.0.1 (Firmware)
Celeron; Core i3; Xeon E5540 11/7/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Supported

"McAfee Linux cryptographic modules provide cryptographic services for McAfee Linux and security appliance products built upon this platform. McAfee Linux is an operating system built with a focus on the needs of security appliances."

3115 SPYRUS Inc.
1860 Hartog Drive
San Jose, CA 95131-2203
USA

-William Sandberg-Maitland
TEL: 613-298-3416

SPYCOS 3.0

Version N/A (Firmware)
SPYCOS 3.0 11/7/2014 KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 4096 ) AES Val#3028

"SPYCOS 3.0 is a hardware cryptographic module that enables security critical capabilities such as user authentication, message privacy, integrity and secure storage in rugged, tamper-evident QFN and microSD form factors. The SPYCOS 3.0 Module communicates with a host computer via the standard USB interface."

3114 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (AES-NI and AVX+SSSE3 for SHA) 64 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 64bit word size."

3113 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (AES-NI and AVX+SSSE3 for SHA)

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3112 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (AES SSSE3 Assembler AES) 64 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3111 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (Straight Assembler AES) 32 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3110 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (Straight Assembler AES) 64 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3109 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (AES SSSE3 assembler) 32 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3108 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (AES SSSE3 assembler) 32 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3107 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (AES SSSE3 Assembler AES) 64 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3106 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (AES-NI and AVX+SSSE3 for SHA) 32 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3105 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (Straight Assembler AES) 32 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3104 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann Marie Rubin

OpenSSL (Straight Assembler AES) 64 bit

Version 1.0.1e-30.el6_6.4
Intel x86 w/ Red Hat Enterprise Linux 6.6 11/7/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"User space library providing general cryptographic services which can be linked to from any program. The module was tested with 32bit word size."

3102 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (Assembler AES, Xeon)

Version 5.0
Intel Xeon w/ OSX 10.10 11/7/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3101 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES,A8)

Version 5.0
Apple A8 w/ iOS 8 11/7/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3100 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A7)

Version 5.0
Apple A7 w/ iOS 8 11/7/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3099 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A6X)

Version 5.0
Apple A6X w/ iOS 8 11/7/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3098 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A6)

Version 5.0
Apple A6 w/ iOS 8 11/7/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3097 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A5X)

Version 5.0
Apple A5X w/ iOS 8 11/7/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3096 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A5)

Version 5.0
Apple A5 w/ iOS 8 11/7/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3095 Microsemi Corporation
3601 E University Drive
Phoenix, AZ 85034
USA

-Bob Lazaravich
TEL: 602-437-1520

-Ken Paxman
TEL: 602-437-1520

XTS-AES-256-CIPHER.3.0

Version 3.0 (Firmware)
MODELSIM PE 10.0b 10/31/2014 ECB ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"XTS-AES-256-CIPHER.3.0 is a third generation encryption core implementing XTS-AES-256. Microsemi integrates this IP core into products that utilize the low power ARMOR III processor to support hardware based encryption and decryption in its line of solid state drive (SSD) and secure storage products."

3094 Skyhigh Networks
1601 S. De Anza Blvd. Ste. 248
Cupertino, CA 95014
USA

-Kaushik Narayan
TEL: 408 564-0278

Skyhigh Secure Gateway

Version 1
Intel Core i7 w/ Mac OS X-10.9 with JVM 1.7.0.45 10/31/2014 CBC ( e/d; 128 , 256 ); CTR ( ext only; 128 , 256 )

"Cloud Encryption Gateway"

11/06/14: Updated implementation information;

3093 Nuvoton Technology Corporation
No. 4, Creation Rd. III
Hsinchu Science Park, n/a 300
Taiwan, R.O.C.

-Yossi Talmi
TEL: 972-9-9702364
FAX: 972-9-9702001

-Oren Tanami
TEL: 972-9-9702390
FAX: 972-9-9702001

Nuvoton NPCT6xx TPM 1.2 Cryptographic Engine

Part # FB5C85D
N/A 10/31/2014 ECB ( e only; 128 ); CTR ( ext only; 128 )

"Nuvoton TPM (Trusted Platform Module), a TCG 1.2 compliant security processor with embedded firmware"

11/17/14: Updated vendor and implementation information;

3092 Tyco Safety Products Canada Ltd./Kantech Systems
3301 LANGSTAFF RD
CONCORD, ONTARIO L4K 4L2
CANADA

-DAN NITA
TEL: 1-905-760-3000#2706
FAX: 1-905-760-3020

KT-1

Version KT-1 SW Ver. 1.0 (Firmware)
HW: UA660 Rev02 10/31/2014 ECB ( e/d; 128 );

"KT-1 Single Door Electronic Access Control Unit with encrypted line security communication with Monitoring Console (Entra-Pass Ver 6.xx)"

3091 Digital Security Controls, a division of Tyco Safety Products Canada Ltd.
3301 LANGSTAFF RD
CONCORD, ONTARIO L4K 4L2
CANADA

-DAN NITA
TEL: 1-905-760-3000#2706
FAX: 1-905-760-3020

3G Cellular Alarm Communicator 3G4000/3G4000RF

Version SW Ver 4.0 (Firmware)
Hardware: UA674 Rev. 02 10/31/2014 ECB ( e/d; 128 );

"The 3G4000/3G4000RF 3G Cellular Alarm Communicator provides constantly supervised and encrypted line security communications over Cellular Network (Internet or Intranet) for security/intrusion applications (as required per UL365, UL1610 standard)."

3090 OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamstown, MD 27101
USA

-Steve Marquess
TEL: 877-673-6775

OpenSSL FIPS Object Module

Version 2.0.9
Apple A7 (ARMv8) with NEON w/ Apple iOS 7.1 64-bit; Apple A7 (ARMv8) without NEON w/ Apple iOS 7.1 64-bit ;  Arm920Tid (ARMv4) w/ TS-Linux 2.4 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/."

12/04/14: Added new tested information;

3089 Motorola Solutions, Inc.
1301 East Algonquin Road
Schaumburg, IL 60196
USA

-Vaidya Ananthanarayanan
TEL: (847) 576-0263

-Tom Nguyen
TEL: (847) 576-2352

Motorola Solutions µMace AES128

Version R00.00.01_AES_128 (Firmware)
Part # AT58Z04
Motorola µMace AT58Z04 10/31/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 ); OFB ( e/d; 128 ); CTR ( ext only; 128 )

"AES128 implementation for the µMace cryptographic processor used in security modules embedded in Motorola Solutions security products."

3088 Lenel Systems International Inc.
1212 Pittsford Victor Road
Pittsford, NY 14534-3816
USA

-Michael O'Brien
TEL: 585-267-8345
FAX: 585-248-9185

-Robert Pethick
TEL: 585-267-8046
FAX: 585-248-9185

Lenel OnGuard AES128 bit Encryption Mercury Security SCPD_NET.DLL

Version 4.6.1.148
Intel Core i5-3470 w/ VM (Microsoft Windows 8 64-bit); Intel Xeon E5620 w/ VM (Microsoft Windows Server 2012) 10/31/2014 ECB ( e/d; 128 ); CBC ( e only; 128 );

"The Scpd_net.dll provides communication services for the Lenel OnGuard Access Control Communication Server. The Communication Server controls Lenel Intelligent System Controllers including, but not limited to the LNL-2210, LNL-2220, and LNL-3300."

12/09/14: Updated implementation and vendor information;

3087 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (64 bit, AES-NI with generic GCM)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 64bit word size on IBM hardware."

11/18/14: Updated implementation information;
12/16/14: Updated implementation information;

3086 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (64 bit, generic AES with generic GCM)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 64bit word size on IBM hardware."

11/18/14: Update implementaiton information;
12/16/14: Updated implementation information;

3085 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (64 bit)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 64bit word size on IBM hardware."

11/18/14: Updated implementation information;
12/16/14: Updated implementation information;

3084 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (32 bit, AES-NI with generic GCM)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 32bit word size on IBM hardware."

11/18/14: Updated implementation information;
12/16/14: Updated implementation information;

3083 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (32 bit, generic AES with generic GCM)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 32bit word size on IBM hardware."

11/18/14: Updated impelmentation information;
12/16/14: Updated implementation information;

3082 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (32 bit)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 64bit word size on IBM hardware."

11/18/14: Updated implementation information;
12/16/14: Updated implementatioin information;

3081 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (64 bit, AES-NI with generic GCM)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 64bit word size on HP hardware."

11/17/14: Updated implementation information;
12/16/14: Updated implementatioin information;

3080 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (64 bit, generic AES with generic GCM)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 64bit word size on HP hardware."

11/17/14: Updated implementation information;
12/16/14: Updated implementatioin information;

3079 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (64 bit)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 64bit word size on HP hardware."

11/17/14: Updated implementation information;
12/16/14: Updated implementation information;

3078 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (32 bit, AES-NI with generic GCM)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 32bit word size on HP hardware."

11/17/14: Updated implementation information;
12/16/14: Updated implementation information;

3077 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (32 bit, generic AES with generic GCM)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 32bit word size on HP hardware."

11/17/14: Updated implementation information;
12/16/14: Updated implementation information;

3076 Red Hat, Inc.
100 East David Street
Raleigh, NC 27601
USA

-Ann-Marie Rubin

Red Hat NSS Softoken (32 bit)

Version 3.14.3-19.el6
Intel x86 w/ Red Hat Enterprise Linux 6.6 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 248 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"User space library providing general cryptographic services used by the NSS cryptographic library. The module was tested with 64bit word size on HP hardware."

11/17/14: Update implementation information;
12/16/14: Updated implementation information;

3075 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A8 32bit)

Version 5.0
Apple A8 w/ iOS 8 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation compiled for 32bit word size."

3074 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A8)

Version 5.0
Apple A8 w/ iOS 8 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3073 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with generic modes, Xeon)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

3072 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with generic modes, i7)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

3071 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with generic modes, i5)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

3070 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with optimized modes, Xeon)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

3069 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with optimized modes, i7)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

3068 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with optimized modes, i5)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

3067 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (Assembler AES, i7)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3066 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (Assembler AES, i5)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

3065 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic modes, Xeon 32bit)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS compiled for 32bit word size."

3064 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic modes, Xeon)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

3063 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic modes, i7)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

3062 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic modes, i5 32bit)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS compiled for 32bit word size."

3061 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic modes, i5)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

3060 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized modes, Xeon 32bit)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 597

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS compiled for 32bit word size."

3059 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized modes, Xeon)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 596

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

3058 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized modes, i7 32bit)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 595

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS compiled for 32bit word size."

3057 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized modes, i7)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 594

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

3056 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized modes, i5 32bit)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 593

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS compiled for 32bit word size."

3055 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized modes, i5)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 592

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

3054 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, Xeon 32bit)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation compiled for 32bit word size."

3053 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, Xeon)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3052 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i7 32bit)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation compiled for 32bit word size."

3051 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i7)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3050 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i7)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3049 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i5 32bit)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation compiled for 32bit word size."

3048 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i5)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3047 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, Xeon 32bit)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 591

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES compiled for 32bit word size."

3046 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, Xeon)

Version 5.0
Intel Xeon w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 590

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3045 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, i7)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 589

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3044 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, i7 32bit)

Version 5.0
Intel i7 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 588

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES compiled for 32bit word size."

3043 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, i5 32bit)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 587

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES compiled for 32bit word size."

3042 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, i5)

Version 5.0
Intel i5 w/ OSX 10.10 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 586

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3040 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Hardware AES, A6X)

Version 5.0
Apple A6X w/ iOS 8 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES hardware offered by the processor."

3039 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A6X)

Version 5.0
Apple A6X w/ iOS 8 10/31/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3038 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A6X)

Version 5.0
Apple A6X w/ iOS 8 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 585

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3037 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A5X)

Version 5.0
Apple A5X w/ iOS 8 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 584

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3036 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A5)

Version 5.0
Apple A5 w/ iOS 8 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 583

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3035 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A8 32bit)

Version 5.0
Apple A8 w/ iOS 8 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 582

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES compiled for 32bit word size."

3034 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A8)

Version 5.0
Apple A8 w/ iOS 8 10/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 581

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3033 Bomgar Corporation
578 Highland Colony Parkway
Paragon Centre, Suite 300
Ridgeland, MS 39157
USA

-Main Office
TEL: 601-519-0123
FAX: 601-510-9080

-Victor Wolff
TEL: 703-483-5515
FAX: 601-510-9080

Bomgar Cryptographic Engine

Version 1.2.2 (Firmware)
Intel® Xeon 10/16/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The Bomgar Cryptographic Engine provides the cryptographic functionality required by the Bomgar B200, B300, and B400 Remote Support appliances. These appliances allow support professionals to connect securely to remote clients and co-workers via the Internet, providing complete desktop access for remote support."

3032 Intel Corporation
2200 Mission College Blvd
Santa Clara, CA 95054
USA

-Ammon J Christiansen
TEL: (503)-712-4557

-Joel Schuetze
TEL: (503)-264-0923

Rangeley DRNG

Part # RTL1p0
N/A 10/16/2014 ECB ( e only; 128 ); CTR ( int only; 128 )

"Digital Logic Design implementation SP 800-90A AES-CTR-DRBG."

3031 N/A N/A N/A 10/16/2014 N/A
3030 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Riddler FPGA

Part # Riddler FPGA
N/A 10/16/2014 ECB ( e only; 256 );

GCM (KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 64 , 96 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported AES Val#3030

"AES-ECB-256; AES-GCM-256"

3029 Certicom Corp.
4701 Tahoe Blvd, Building A
Mississauga, ON L4W 0B5
Canada

-Randy Tsang
TEL: 1-289-261-4189
FAX: 1-905-507-4230

-Ian Laidlaw
TEL: 1-289-261-4277
FAX: 1-905-507-4230

Security Builder® FIPS Core

Version 6.0.2.1
Intel Core i7-2720QM w/ AES-NI w/ Windows 7 Enterprise 64-bit; ARMv7 w/ Windows Phone 8.0; ARMv7 w/ Android 4.4.2; Intel Atom CPU Z2460 w/ Android 4.0.4; ARMv7 w/ iOS version 6.1.4 10/16/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 10 11 12 13 (Tag Length(s): 8 10 12 14 16 )
AES Val#3029

CMAC (Generation ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )
AES Val#3029

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )
PT Lengths Tested: ( 0 , 1024 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#3029

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) )) AES Val#3029

"Security Builder® FIPS Core provides application developers with cryptographics tools to easily integrate encryption, digital signatures and other security mechanisms into C-based apps for FIPS 140-2 and Suite B security. It can also be used with Certicom''s PKI, IPSec SSL and DRM modules."

10/31/14: Updated implementation information;

3028 SPYRUS Inc.
1860 Hartog Dr
San Jose, Ca 95131-2203
USA

-William Sandberg-Maitland
TEL: 613-298-3426

SPYCOS 3.0

Version N/A (Firmware)
SPYCOS 3.0 10/16/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"SPYCOS 3.0 is a hardware cryptographic module that enables security critical capabilities such as user authentication, message privacy, integrity and secure storage in rugged, tamper-evident QFN and microSD form factors. The SPYCOS 3.0 Module communicates with a host computer via the standard USB interface."

3027 Digital Monitoring Products, Inc.
2500 N. Partnership Boulevard
Springfield, MO 65803-8877
USA

-Terry Shelton
TEL: (417) 831-9362
FAX: (417) 831-1325

-Leanna Bremenkamp
TEL: (417) 831-9362
FAX: (417) 831-1325

SCS-VR

Version 1.3.5
Intel® Xeon® E31230 (64-bit) w/ Java virtual machine on Java™ SE Runtime Environment (version 1.6.0_45, 32-bit) 10/16/2014 ECB ( e/d; 256 );

"SCSVR crypto library is an aggregate of FIPS Approved algorithms utilizing 128- and 256-bit key sizes in ECB mode."

3026 Analog Devices, Inc.
One Technology Way
Norwood, MA 02062
USA

-Gabby Yi

Security Packet Engine

Part # ADSP-BF706
N/A 10/16/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Analog Devices Security Packet Engine provides uniform cryptographic capabilities for the ADSP-BF70x Blackfin processor family."

3025 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A7 32bit)

Version 5.0
Apple A7 w/ iOS 8 10/16/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation compiled for 32bit word size."

3024 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A7)

Version 5.0
Apple A7 w/ iOS 8 10/16/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3023 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A6)

Version 5.0
Apple A6 w/ iOS 8 10/16/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3022 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A5X)

Version 5.0
Apple A5X w/ iOS 8 10/16/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3021 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A5)

Version 5.0
Apple A5 w/ iOS 8 10/16/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

3020 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Hardware AES, A6)

Version 5.0
Apple A6 w/ iOS 8 10/16/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES hardware offered by the processor."

3019 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Hardware AES, A5X)

Version 5.0
Apple A5X w/ iOS 8 10/16/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES hardware offered by the processor."

3018 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Hardware AES, A5)

Version 5.0
Apple A5 w/ iOS 8 10/16/2014 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES hardware offered by the processor."

3017 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A7 32bit)

Version 5.0
Apple A7 w/ iOS 8 10/16/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported AES Val#3017
DRBG: Val# 577

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES compiled for 32bit word size."

3016 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A7)

Version 5.0
Apple A7 w/ iOS 8 10/16/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported AES Val#3016
DRBG: Val# 576

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3015 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A6)

Version 5.0
Apple A6 w/ iOS 8 10/16/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported AES Val#3015
DRBG: Val# 575

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

3014 Broadcom Corporation
5300 California Avenue
Irvine, CA 92617
USA

-Mark Litvack
TEL: 408-919-4424

XLP200 series of processors

Part # XLP200 series Revision B0
N/A 10/16/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 , 2^16 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )
AES Val#3014

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full ; Msg Len(s) Min: 128 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 192; Block Size(s): Full ; Msg Len(s) Min: 192 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 256; Block Size(s): Full ; Msg Len(s) Min: 256 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 )
AES Val#3014

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 128 , 1024 , 8 , 1016 ) ; AAD Lengths tested: ( 128 , 1024 , 8 , 1016 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Not_Supported AES Val#3014
DRBG: Val# 574

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) )) AES Val#3014

"The XLP200 series (XLP104, XLP108, XLP204, XLP208) of multi-core processors can deliver an unprecedented 160Gps throughput and 240 million packets-per-second of application performance for next-generation 3G/4G mobile wireless infrastructure, enterprise, storage, security, metro, edge and core network applications."

3013 LG Electronics Inc.
20 Yoido-dong
Youngdungpo-gu
Seoul, n/a 152-721
Republic of Korea

-Joonwoong Kim
TEL: 82 10 2207 1919
FAX: 82 2 6950 2080

Bouncy Castle Cryptographic Library

Version 149
Qualcomm Snapdragon 800 w/ Android 4.4.2 9/30/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 4096 )

"General-purpose cryptographic services available for Android used by LG devices to provide secured services to Java applications via the Bouncy Castle Java Cryptography Extension provider."

10/31/14: Added new tested information;

3012 LG Electronics Inc.
20 Yoido-dong
Youngdungpo-gu
Seoul, n/a 152-721
Republic of Korea

-Joonwoong Kim
TEL: 82 10 2207 1919
FAX: 82 2 6950 2080

Kernel Cryptography

Version 3.4.0 Saber-tooth Squirl
Qualcomm Snapdragon 800 w/ Android 4.4.2 9/30/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"General-purpose cryptographic services within the Linux kernel used by LG devices to provide secured services."

3011 LG Electronics Inc.
20 Yoido-dong
Youngdungpo-gu
Seoul, n/a 152-721
Republic of Korea

-Joonwoong Kim
TEL: 82 10 2207 1919
FAX: 82 2 6950 2080

OpenSSL Cryptographic Library

Version 1.0.1e
Qualcomm Snapdragon 800 w/ Android 4.4.2 9/30/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 / 8.2.2 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported
RNG: Val# 1306

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))
KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 4096 )

"General-purpose cryptographic services available for Android used by LG devices to provide secured services to applications via the OpenSSL FIPS Object Module, which is a full featured general purpose cryptographic library."

10/31/14: Added new tested information;

3010 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung Kernel Cryptographic Module (Assembler)

Version SKC1.5
ARMv7 w/ Android KitKat 4.4.4 9/30/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"General purpose Cryptographic services available for Linux kernel used by Samsung devices to provide secured services. This test covers the AES and SHA1 assembler implementations."

3009 EROAD, Inc.
Level 3
260 Oteha Valley Road
Albany, North Shore 0632
Auckland, * *
New Zealand

-Bruce Wilson
TEL: +64 9 927 4700
FAX: +64 9 927 4701

The EROAD Cryptographic Library

Version 1.0 (Firmware)
Part # MK70FN1M0VMJ12
MK70FN1M0VMJ12 9/26/2014 CBC ( e/d; 128 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) PT Lengths Tested: ( 0 , 72 , 128 , 104 , 512 ) ; AAD Lengths tested: ( 0 , 72 , 128 , 104 , 512 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Supported AES Val#3009

"The EROAD Cryptographic Module is the heart of EROAD''s advanced GNSS based transport technology. It is a secure, high performance, cryptographic processing engine and has been designed to meet FIPS-140-2 at Security Level 3. It is used within the EROAD product suite to provide trusted cryptographic security services."

10/08/2014: Added GCM testing

3008 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

FIPS 140-2 Certification for Brocade (R) ICX6610

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC8544E 9/26/2014

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) AES Val#2697

"The Brocade Cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade ICX6610 deliver wire-speed, non-blocking performance across all ports to support latency-sensitive."

3007 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung Kernel Cryptographic Module

Version SKC1.5
ARMv7 w/ Android KitKat 4.4.4 9/30/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"General purpose Cryptographic services available for Linux kernel used by Samsung devices to provide secured services."

3006 Altera Corporation
101 Innovation Drive
San Jose, CA 95134
USA

-Bob Groza

-Jiefan Zhang

AES-128-piped

Version 1.0 (Firmware)
Mentor Graphics Modelsim10.2c 9/26/2014 ECB ( e only; 128 );

"AES Component implements AES Encryption for Key 128 bits. Once operation per cycle."

3005 Trend Micro Inc.
40 Hines Road
Suite 200
Ottawa, ON K2K 2M5
Canada

-Marion Chase
TEL: 613-599-4505 x.2306
FAX: 613-599-8191

-Marion Mora
TEL: 613-599-4505 x.2346
FAX: 613-599-8191

Trend Micro Cryptographic Module - Deep Security Virtual Appliance

Version 9.5
Intel Core 2 Duo w/ VMware ESX 5.1 9/26/2014 CBC ( e/d; 256 );

"Trend Micro Cryptographic Module provides FIPS 140-2 algorithm services for Deep Security Agents and Appliances deployed directly on protected computers."

3004 Trend Micro Inc.
40 Hines Road
Suite 200
Ottawa, ON K2K 2M5
Canada

-Marion Chase
TEL: 613-599-4505 x 2306
FAX: 613-599-8191

-Marion Mora
TEL: 613-599-4505 x.2346
FAX: 613-599-8191

Trend Micro Cryptographic Module - Deep Security Agent

Version 9.5
Intel Core 2 Duo w/ VMware ESX 5.1 9/26/2014 CBC ( e/d; 256 );

"Trend Micro Cryptographic Module provides FIPS 140-2 algorithm services for Deep Security Agents and Appliances deployed directly on protected computers."

3003 Zebra Technologies Corporation
475 Half Day Road, Suite 500
Lincolnshire, IL 60069
USA

-Brian Stormont
TEL: 401-276-5751
FAX: 401-276-5889

-Gerry Corriveau
TEL: 401-276-5667
FAX: 401-276-5889

8787 AES Module

Version 14.66.35.p51 (Firmware)
Part # 88W8787
Marvell Feroceon® CPU driven by Freescale i.MX25 (ARMv4) 9/26/2014 ECB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 15 - 30 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 13 (Tag Length(s): 8

"The 8787 AES Module implements AES ECB and CCM using 128, 192, and 256-bit key sizes to provide cryptographic support for Zebra wireless devices."

3002 Cisco Systems, Inc.
170 W. Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

ACT2-Lite

Part # 15-14497-02(NDS_ACT2_V1)
N/A 9/26/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 256 )

"ACT-2Lite is an ASSP which is based on a smart card hardware platform with custom ROM code provided by Cisco."

3001 Motorola Solutions, Inc.
One Motorola Plaza
Holtsville, NY 11742
USA

-Tom McKinney
TEL: (631) 738-3586
FAX: (631) 738-4164

Wireless LAN AES-CCMP module

Version 1.01 (Firmware)
Part # WL1271BYFVR
Marvell PXA320 9/26/2014 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 1 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"Wireless LAN AES-CCMP module implements AES-CCMP, used for Wireless LAN data encryption and decryption."

3000 Motorola Solutions, Inc.
One Motorola Plaza
Holtsville, NY 11742
USA

-Tom McKinney
TEL: (631) 738-3586
FAX: (631) 738-4164

Wireless LAN AES-CCMP module

Version 1.01 (Firmware)
Part # WL1273LYFVR
TI OMAP4 9/26/2014 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 1 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"Wireless LAN AES-CCMP module implements AES-CCMP, used for Wireless LAN data encryption and decryption."

2999 Motorola Solutions, Inc.
One Motorola Plaza
Holtsville, NY 11742
USA

-Tom McKinney
TEL: (631) 738-3586
FAX: (631) 738-4164

Wireless LAN AES-CCMP module

Version 1.01 (Firmware)
Part # WL1283CYFVR
TI OMAP4 9/26/2014 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 1 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"Wireless LAN AES-CCMP module implements AES-CCMP, used for Wireless LAN data encryption and decryption."

2998 Motorola Solutions, Inc.
One Motorola Plaza
Holtsville, NY 11742
USA

-Tom McKinney
TEL: (631) 738-3586
FAX: (631) 738-4164

Wireless LAN AES-CCMP module

Version 1.01 (Firmware)
Part # WL1273BYFVR
Marvell PXA320 9/26/2014 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 1 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"Wireless LAN AES-CCMP module implements AES-CCMP, used for Wireless LAN data encryption and decryption."

2997 Motorola Solutions, Inc.
One Motorola Plaza
Holtsville, NY 11742
USA

-Tom McKinney
TEL: (631) 738-3586
FAX: (631) 738-4164

Wireless LAN AES-CCMP module

Version 1.01 (Firmware)
Part # WL1270BYFVR
Freescale i.MX35 9/26/2014 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 1 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"Wireless LAN AES-CCMP module implements AES-CCMP, used for Wireless LAN data encryption and decryption."

2996 Doremi Labs
1020 Chestnut Street
Burbank, CA 91506
USA

-Jean-Philippe Viollet
TEL: (818)562-1101
FAX: (818)562-1109

-Camille Rizko
TEL: (818)562-1101
FAX: (818)562-1109

Power PC AES Key Wrap

Version 1.2 (Firmware)
Part # PPC405EX-SSD600T
Power PC 9/19/2014 KW ( AE , AES-128 , FWD , 9600 , 256 , 192 , 320 , 4096 ) AES Val#2975

"An Implementation of AES Key Wrap used inside Doremi Labs'' Media Blocks."

2995 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-Amit Agarwal
TEL: 650-527-0684

Symatnec Encryption Desktop- Whole Disk Encryption Driver

Version 10.3.2
Intel core i5 without AES-NI w/ Windows 7 64 bit 9/19/2014 ECB ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 256 );

"Advanced Encryption Standard with ECB and CFB 128 modes have been implemented in Whole Disk Encryption Disk Driver."

2994 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-Amit Agarwal
TEL: 659-527-0684

Symantec Encryption Desktop- Whole Disk Encryption Disk Driver

Version 10.3.2
Intel core i5 with AES-NI w/ Windows 7 64 bit 9/19/2014 ECB ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 256 );

"Advanced Encryption Standard with ECB and CFB 128 modes have been implemented in Whole Disk Encryption Disk Driver."

2993 Airbus Defence and Space
1 Boulevard Jean Moulin
Elancourt, Yvelines 78997
France

-Jerome Ducrot
TEL: +33182612512
FAX: +33182612555

AES GAF Decrypt Core

Version v1_1 (Firmware)
Modeltech 6.4d 9/19/2014 ECB ( e only; 128 , 192 , 256 );

GCM (KS: AES_128( ) Tag Length(s): 128 ) (KS: AES_192( ) Tag Length(s): 128 )
(KS: AES_256( ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 2048 ) ; AAD Lengths tested: ( 0 , 128 , 2048 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Supported

"AES GAF Decrypt Core is a module implementing an AES-GCM deciphering with 128/192/256 bits key length. This module is currently integrated in the AES CDU equipment in charge of deciphering the Telecommands addressed to Airbus DS E3000 Telecommunication Satellite platform."

2990 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version ComwareV7.1-R2406-Kernel (Firmware)
Freescale P2020, 1.2GHz, PowerPC 9/19/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2989 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version ComwareV7.1-R1005 (Firmware)
Broadcom XLP316, 1.2GHz, MIPS 9/19/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )
KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2988 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version ComwareV7.1R1005-Kernel (Firmware)
Broadcom XLP316, 1.2GHz, MIPS 9/19/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2987 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version ComwareV7.1-R7328-Kernel (Firmware)
Freescale MPC8548, 667MHz, PowerPC 9/19/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2986 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version ComwareV7.1R2111-Kernel (Firmware)
Broadcom XLP316, 1.2GHz, MIPS 9/19/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2985 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version ComwareV7.1-R2311-Kernel (Firmware)
RMI(Netlogic) XLS408, 1.2GHz, MIPS 9/19/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2984 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 6610
N/A 9/12/2014 KW ( AE , AD , FWD , 128 ) AES Val#2697

"The Brocade Cryptographic library used in Brocade IP products implements crypto operations in software. ICX 6610 deliver wire-speed, non-blocking performance across all ports to support latency-sensitive."

2983 Apriva ISS, LLC
8501 North Scottsdale Road
Suite 110
Scottsdale, AZ 85253
USA

-Robert Smith
TEL: 480-421-1227
FAX: 480-994-3190

-Randy Best
TEL: 480-421-1204
FAX: 480-994-3190

Apriva Kernel Crypto Module

Version 6.5
Intel Xeon with AES-NI w/ Red Hat Enterprise Linux 6 9/12/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 128 , 256 , 64 , 400 ) ; AAD Lengths tested: ( 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported

"RedHat Kernel Crypto Module"

2982 Apriva ISS, LLC
8501 North Scottsdale Road
Suite 110
Scottsdale, AZ 85253
USA

-Robert Smith
TEL: 480-421-1227
FAX: 480-994-3190

-Randy Best
TEL: 480-421-1204
FAX: 480-994-3190

Apriva Crypto Module

Version 1.0
Intel Xeon with AES-NI w/ Red Hat Enterprise Linux 6 9/12/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 128 , 256 , 64 , 400 ) ; AAD Lengths tested: ( 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported

"Inside Secure provided AES-GCM encryption"

2981 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 7450

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Dual-core ARM Cortex A9 1Ghz 9/12/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Brocade Cryptographic library used in Brocade IP products implements crypto operations in software. Brocade ICX7450 switches deliver enterprise-class stackable switching at an entry-level price."

11/24/14: Added new tested information;

2980 Kaspersky Lab UK Ltd.
1st Floor, 2 Kingdom Street
Paddington
London, * W2 6BD
United Kingdom

-Oleg Andrianov
TEL: +7 495 797 8700

Kaspersky Cryptographic Library 64-bit (User Mode)

Version 2.0
Intel(R) Core(TM)2 Duo P9600 @ 2.53GHz w/ Kaspersky Preboot OS with UEFI 9/12/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"Kaspersky Cryptographic Library is a software library that provides cryptographic services for various Kaspersky Lab applications."

2979 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-8000
FAX: 408-333-8101

Brocade Vyatta Network OS OpenSSL Cryptographic Module

Version 1.0
Intel Xeon Processor E5-2680 v2 (25 M Cache, 2.80 GHz) w/ Brocade Vyatta Network OS 3.2.1R1 9/12/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 8 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 8 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 8 )

GCM IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"Built for Network Functions Virtualixation (NFV), Brocade Vyatta 5650 and 5630 vRouters are the first virtual routers capable of providing advance routing in software without sacrificing the reliability and performance of hardware networking solutions."

11/12/14: Added new tested information;
12/09/14: Updated implementation information;

2978 ChaseSun Information Security Technology Development (Bejing)., Ltd.
North Building 13
Xindacheng Plaza
197# Guangzhou Road
Yuexiu District, Guangzhou 510075
China

-Peng Sun
TEL: +86-20-22387717
FAX: +86-20-22387717

CS100 Module FPGA Library

Version 1.0.0 (Firmware)
Part # NA
Mentor ModelSim SE 6.5b (Simulator) 9/12/2014 CBC ( d only; 128 );

"CS100 Module FPGA Library implements the cryptographic algorithms such as AES, HMAC and SHA. The Library provides cryptographic functionality to CS100 module."

2977 ChaseSun Information Security Technology Development (Bejing)., Ltd.
North Building 13
Xindacheng Plaza
197# Guangzhou Road
Yuexiu District, Guangzhou 510075
China

-Peng Sun
TEL: +86-20-22387717
FAX: +86-20-22387717

CS100 Module Crypto Library

Version 1.0.0 (Firmware)
Freescale MCIMX53 9/12/2014 CBC ( e/d; 128 );

"CS100 Module Crypto Library implements the cryptographic algorithms such as AES, HMAC, SHA and RNG. The library provides cryptogrpahic finctionality to CS100 module."

2976 Doremi Labs
1020 Chestnut Street
Burbank, CA 91506
USA

-Jean-Philippe Viollet
TEL: (818)562-1101
FAX: (818)562-1109

-Camille Rizko
TEL: (818)562-1101
FAX: (818)562-1109

Power PC AES ECB

Version 1.1 (Firmware)
Part # PPC405EX-SSD600T
Power PC 9/12/2014 ECB ( e/d; 128 );

"An Implementation of AES-128 encryption/decryption in ECB mode used inside Doremi Labs'' Media Blocks"

2975 Doremi Labs
1020 Chestnut Street
Burbank, CA 91506
USA

-Jean-Philippe Viollet
TEL: (818)562-1101
FAX: (818)562-1109

-Camille Rizko
TEL: (818)562-1101
FAX: (818)562-1109

Power PC AES CBC

Version 1.1 (Firmware)
Part # PPC405EX-SSD600T
Power PC 9/12/2014 CBC ( e/d; 128 );

"An Implementation of AES-128 encryption/decryption in CBC mode used inside Doremi Labs'' Media Blocks"

2974 Doremi Labs
1020 Chestnut Street
Burbank, CA 91506
USA

-Jean-Philippe Viollet
TEL: (818)562-1101
FAX: (818)562-1109

-Camille Rizko
TEL: (818)562-1101
FAX: (818)562-1109

FPGA AES CBC

Version 1.1 (Firmware)
Part # STRATIX_V_5SGXA4
FPGA 9/12/2014 CBC ( d only; 128 );

"An Implementation of AES-128 decryption in CBC mode used inside Doremi Labs'' Media Blocks."

2973 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

RSA BSAFE Crypto-J

Version 6.1
Intel Xeon w/ McAfee Linux 2.2.3 running on VMware ESXi 5.0 9/12/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 160 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 8 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

2972 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

RSA BSAFE Crypto-J

Version 6.1
Intel Celeron w/ McAfee Linux 2.2.3; Intel Xeon w/ McAfee Linux 2.2.3 9/12/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 160 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 8 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

2971 Dell, Inc
5450 Great America Parkway
Santa Clara, CA 95054
US

-Jan Provan
TEL: (510) 377-1842

Dell OpenSSL Cryptographic Library

Version 2.1
Intel Centerton w/ Dell Networking Operating System E9.6.0.0; FreeScale PowerPC e500 w/ Dell Networking Operating System E9.6.0.0; Intel Xeon w/ Dell Networking Operating System E9.6.0.0; Broadcom XLP w/ Dell Networking Operating System E9.6.0.0 9/12/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"Dell OpenSSL Cryptographic Library v2.1 provides a variety of cryptographic services used by Dell''s Data Center hardened Dell Networking OS management and routing features."

12/16/14: Updated vendor information;

2970 N/A N/A N/A 9/12/2014 N/A
2969 N/A N/A N/A 9/12/2014 N/A
2968 N/A N/A N/A 9/12/2014 N/A
2967 Huawei Device (Dongguan) Co Ltd
B2-5 of Nanfang Factory
No.2 of Xincheng Rd
Songshan Lake Science & Technology Industrial Zone
Dongguan, Guangdong 523808
China

-Mr. Hongtailiang
TEL: 86-755-36835195

-Mr. Blue Lee
TEL: 86-755-28976679

EDK Management Module

Version V1.0
Huawei P7 Mobile Phone w/ Android 4.4.2 9/12/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The module provides the key management functions of secure applications. It provides a key generating by RNG and AES algorithm to encrypt the DEK, and the symmetric key for AES is generated by PBKDF which based on HMAC and SHA algorithm."

2966 Samsung Electronics Co.,Ltd.
Samsung 1-ro
Hwaseong-si, Gyeonggi-do 275-18
Korea

-Jisoo Kim
TEL: 82-31-3096-2832
FAX: 82-31-8000-8000

Secure UFS (Universal Flash Storage)

Part # KLUBG4G1BD-B1B1(32GB), KLUCG8G1BD-B1B1(64GB)
N/A 9/12/2014 ECB ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"Secure UFS is a high-performance embedded storage that provides on-the-fly encryption/decryption of user data without performance loss. It implements AES256-XTS for user data encryption, ECDSA P-224 for FW authentication, and Hash_DRBG for key generation."

2965 CBT Holding LLC
26 W Orange Street
Tarpon Springs, Florida 34689
US

-Peter Ristorcelli
TEL: 1-727-424-1016

VTE

Version 1.0
Intel Core i7-3740QM w/ Windows 7 Enterprise; Intel core i5-3317U w/ Windows 8.1 Pro 8/29/2014 CBC ( e/d; 256 );

"The algorithm is a core function that delivers the required standard."

09/10/14: Updated vendor information;

2964 Ciena Corporation
7035 Ridge Road
Hanover, MD 21076
USA

-Patrick Scully
TEL: 613-670-3207

Ciena 6500 Packet-Optical Platform 4x10G Crypto Module

Part # NTK53052-520
N/A 8/29/2014 ECB ( e only; 256 ); CTR ( int only; 256 )

"The Ciena 6500 Packet-Optical Platform 4x10G Encryption OTR offers an integrated transport encryption solution providing a protocol-agnostic wirespeed encryption service for use in small to large enterprises or datacenters and also offered through service providers as a differentiated managed service."

2963 Ciena Corporation
7035 Ridge Road
Hanover, MD 21076
USA

-Patrick Scully
TEL: 613-670-3207

Ciena 6500 Packet-Optical Platform 4x10G Cryptography Engine

Version 1.10 (Firmware)
Xilinx XC7Z045 8/29/2014 CBC ( e/d; 128 , 192 , 256 );

"The Ciena 6500 Packet-Optical Platform 4x10G Encryption OTR offers an integrated transport encryption solution providing a protocol-agnostic wirespeed encryption service for use in small to large enterprises or datacenters and also offered through service providers as a differentiated managed service."

2962 Kanguru Solutions
1360 Main Street
Millis, MA 02054
USA

-Nate Cote
TEL: 508-376-4245
FAX: 508-376-4462

Kanguru Defender 300/3000 USB Drive

Version 2.10.10 (Firmware)
Part # KDF3K-CM
v2.10.10 8/28/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))
KW ( AE , AD , AES-256 , FWD , 128 , 256 , 192 , 320 , 4096 )

"The Kanguru Defender 3000 and Kanguru Defender Elite300 are 256-bit AES hardware encrypted USB flash drives. They are used to securely store sensitive data on the device or run secure applications from the drive. The Kanguru Defender line of products is remotely manageable through the Kanguru Remote Management Console(KRMC)."

2961 N/A N/A N/A 8/28/2014 N/A
2960 Kaspersky Lab UK Ltd.
1st Floor, 2 Kingdom Street
Paddington
London, * W2 6BD
United Kingdom

-Oleg Andrianov
TEL: +7 495 797 8700

Kaspersky Cryptographic Library 32-bit NI (User Mode)

Version 2.0
Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz w/ Windows 7 Enterprise 64-bit; Intel(R) Core(TM) i7-3770S CPU @ 3.10GHz w/ Windows 8.1 Enterprise 64-bit; Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz w/ Kaspersky Preboot OS with BIOS 8/28/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"Kaspersky Cryptographic Library is a software library that provides cryptographic services for various Kaspersky Lab applications."

2959 Kaspersky Lab UK Ltd.
1st Floor, 2 Kingdom Street
Paddington
London, * W2 6BD
United Kingdom

-Oleg Andrianov
TEL: +7 495 797 8700

Kaspersky Cryptographic Library 64-bit NI (User Mode)

Version 2.0
Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz w/ Windows 7 Enterprise 64-bit; Intel(R) Core(TM) i7-4770 CPU @ 3.40GHz w/ Windows 8.1 Enterprise 64-bit; Intel(R) Core(TM) i7-3770S CPU @ 3.10GHz w/ Kaspersky Preboot OS with UEFI 8/28/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"Kaspersky Cryptographic Library is a software library that provides cryptographic services for various Kaspersky Lab applications."

2958 Exar Corporation
48720 Kato Road
Fremont, CA 94538
USA

-Larry Hu
TEL: 510-668-7145
FAX: 510-668-7028

-Bin Wu
TEL: 86-13777873933
FAX: 86-571-88156615

Exar XR92xx series die

Part # XR9240
N/A 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 112 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 112 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 112 96 64 32 )
PT Lengths Tested: ( 256 , 512 , 200 , 400 ) ; AAD Lengths tested: ( 0 , 256 , 512 , 200 , 320 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The XR92xx provides hardware acceleration of compression, encryption and authentication algorithms including gzip/zlib/Deflate, LZS/eLZS, AES, 3DES, RC4, SHA, HMAC, GMAC and public key algorithms such as DSA, DH, RSA, ECDSA, ECDH and is designed to optimize SSL/IPsec/SRTP packet processing."

2957 Kaspersky Lab UK Ltd.
1st Floor, 2 Kingdom Street
Paddington
London, * W2 6BD
United Kingdom

-Oleg Andrianov
TEL: +7 495 797 8700

Kaspersky Cryptographic Library 64-bit NI (Kernel Mode)

Version 2.0
Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz w/ Windows 7 Enterprise 64-bit; Intel(R) Core(TM) i7-3770S CPU @ 3.10GHz w/ Windows 8.1 Enterprise 64-bit 8/28/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"Kaspersky Cryptographic Library is a software library that provides cryptographic services for various Kaspersky Lab applications."

2956 Kaspersky Lab UK Ltd.
1st Floor, 2 Kingdom Street
Paddington
London, * W2 6BD
United Kingdom

-Oleg Andrianov
TEL: +7 495 797 8700

Kaspersky Cryptographic Library 32-bit (Kernel Mode)

Version 2.0
Intel(R) Core(TM)2 Duo P9600 @ 2.53GHz w/ Windows 7 Professional 32-bit 8/28/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"Kaspersky Cryptographic Library is a software library that provides cryptographic services for various Kaspersky Lab applications."

2955 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Library Module (320)

Version 2.0
Intel Atom Processor D525 w/ GNU / Linux (Debian) 6.0 -based distribution 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Library is a software module that provides cryptographic services required by the McAfee NGFW product."

2954 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Library (1035)

Version 2.0
Intel Celeron Processor 725c with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Library is a software module that provides cryptographic services required by the McAfee NGFW product."

2953 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Library Module (1065)

Version 2.0
Intel Core i3-2115c with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Library is a software module that provides cryptographic services required by the McAfee NGFW product."

2952 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Library Module (1402)

Version 2.0
Intel Xeon Processor E5-1650v2 with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Library is a software module that provides cryptographic services required by the McAfee NGFW product."

2951 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Library Module (3202)

Version 2.0
Intel Xeon Processor E5-2660 with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Library is a software module that provides cryptographic services required by the McAfee NGFW product."

2950 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Library Module (3202a)

Version 2.0
Intel Xeon Processor E5-2660 without AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Library is a software module that provides cryptographic services required by the McAfee NGFW product."

2949 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Library Module (3206)

Version 2.0
Intel Xeon Processor E5-2680 with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Library is a software module that provides cryptographic services required by the McAfee NGFW product."

2948 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Library Module (3206a)

Version 2.0
Intel Xeon Processor E5-2680 without AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Library is a software module that provides cryptographic services required by the McAfee NGFW product."

2947 Seagate Technology LLC.
1280 Disc Drive
Shakopee, Minnesota 55379
US

-David R Kaiser, PMP
TEL: 952-402-2356
FAX: 952-402-1273

ARMv7 AES Key Wrap in Firmware

Version 1.0 (Firmware)
ARM Cortex-R Family 8/28/2014 KW ( AE , AD , AES-256 , FWD , 128 , 256 , 192 , 320 , 4096 ) AES Val#1343

"FW implementation of AES Key Wrap in Seagate''s Self Encryption Disk drives (SEDs)"

2946 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade MLXe MR2

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC 7448, RISC, 1700 MHz; 8/28/2014

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) AES Val#2717 KW ( AE , AD , AES-128 , FWD , 128 , 256 , 192 , 320 , 4096 ) AES Val#2717

"Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade MLXe Series, NetIron CER 2000 Series Ethernet Routers and NetIron CES 2000 Series Ethernet Switches provide industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS, and MPLS Virtual Private Networks."

2945 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version Comware V7.1-R2311 (Firmware)
RMI(Netlogic) XLS408, 1.2GHz, MIPS 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )
KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2944 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version Comware V7.1-R2111 (Firmware)
Broadcom XLP316, 1.2GHz, MIPS 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )
KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2943 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version Comware V7.1-R2406 (Firmware)
Freescale P2020, 1.2GHz, PowerPC 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )
KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2942 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version Comware V7.1-R7328 (Firmware)
Freescale MPC8548, 1.0GHz, PowerPC 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )
KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2941 Oracle Corporation
4220 Network Circle
Santa Clara, CA 95054
USA

-Joshua Brickman
TEL: +1 781 442 0451
FAX: +1 781 442 0451

-Tyrone Stodart

Java Card Platform for Infineon on SLE 78 (SLJ 52GxxyyyzR)

Version 1.0f (Firmware)
Part # SLE78 M7892B11
Infineon SLE78 M7892B11 smart card microcontroller 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 32767 ; Tag Len(s) Min: 8 Max: 8 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 32767 ; Tag Len(s) Min: 8 Max: 8 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 32767 ; Tag Len(s) Min: 8 Max: 8 )

"The TOE is a part of Java Card Platform (JCP) composed of a Smart Card Platform (SCP) and embedded software."

2940 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware with Hardware Accelerators

Version 5.2.109 (Firmware)
P1020, 880MHz, PowerPC; XLP432, 1.4GHz, MIPS; XLR732, 950Mhz, MIPS; XLS208, 750Mhz, MIPS 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2939 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung Kernel Cryptographic Module

Version SKC1.4.1.3
ARM 7 w/ Tizen 2.2.1 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"General purpose Cryptographic services available for Linux kernel used by Samsung devices to provide secured services."

2938 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung Kernel Cryptographic Module (Assembly)

Version SKC1.4.1.3
ARM 7 w/ Tizen 2.2.1 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"General purpose Cryptographic services available for Linux kernel used by Samsung devices to provide secured services. This tests covers the AES and SHA1 assembly implementations."

2937 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade FIPS Crypto Library

Version NOS 5.0.0 (Firmware)
E 500 mc 8/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"Brocade cryptographic library is used in Brocade NOS based switches to implement the cryptographic related modules."

2936 Pitney Bowes, Inc.
37 Executive Drive
Danbury, CT 06810
USA

-Dave Riley
TEL: 203-796-3208

libaes

Version 01.01.0008 (Firmware)
Part # MAX32590 Rev B4
N/A 8/11/2014 KW ( AE , AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 4096 ) AES Val#2826

"Pitney Bowes X4 HSM Cryptographic Module"

2935 Microsemi Corporation
One Enterprise
Aliso Viejo, CA 92656
USA

-Richard Newell
TEL: +1 (408) 643-6146

Microsemi SoC Cryptographic Module Mark II

Version 1.1 (Firmware)
Mentor Graphics Questa Simulator 10.1c 8/11/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); OFB ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"The Microsemi SoC Cryptographic Module provides custom hardware/firmware acceleration of the standard cryptographic algorithms used in Microsemi FPGAs and SoC FPGAs like Igloo®2 and SmartFusion®2. They are used to securely configure the devices, and are also made available to the FPGA user via an internal bus interface for use in end applications."

2934 Digicine Oristar Technology Development (Beijing) Co., Ltd.
No.1 Di Sheng West Street, BDA
Da Xing District
Beijing, 100176
China

-Mr. Xiao, Liquin
TEL: +86-010-8712 9372
FAX: +86-010-87127010

-Dr. Sun, Xiaobin
TEL: +86-010-8712 9111
FAX: +86-010-87127010

Oristar IMB AES Core-S

Version 1.0.0 (Firmware)
RENESAS SH-4A 8/11/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 );

"Oristar IMB AES Core-S is the software module for digital cinema system."

2933 Digicine Oristar Technology Development (Beijing) Co., Ltd.
No.1 Di Sheng West Street, BDA
Da Xing District
Beijing, 100176
China

-Mr. Xiao, Liquin
TEL: +86-010-8712 9372
FAX: +86-010-87127010

-Dr. Sun, Xiaobin
TEL: +86-010-8712 9111
FAX: +86-010-87127010

Oristar IMB AES Core-K2

Version 1.0.0 (Firmware)
Xilinx Kintex-7 FPGA 8/11/2014 CBC ( e/d; 128 );

"Oristar IMB AES Core-K2 is the firmware module for digital cinema system."

2932 Digicine Oristar Technology Development (Beijing) Co., Ltd.
No.1 Di Sheng West Street, BDA
Da Xing District
Beijing, 100176
China

-Mr. Xiao, Liquin
TEL: +86-010-8712 9372
FAX: +86-010-87127010

-Dr. Sun, Xiaobin
TEL: +86-010-8712 9111
FAX: +86-010-87127010

Oristar IMB AES Core-K

Version 1.0.0 (Firmware)
Xilinx Kintex-7 FPGA 8/11/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 );

"Oristar IMB AES Core-K is the firmware module for digital cinema system."

2931 Blue Coat Systems, Inc.
420 N. Mary Avenue
Sunnyvale, California 94085-4121
USA

-Diana Robinson
TEL: +1 (845) 454-6397

-Tammy Green
TEL: +1 (801) 999-2973

Blue Coat SGOS Crypto Library

Version 3.1.4 (Firmware)
Intel Xeon E5-2418L; Intel Xeon E5-2430; Intel Xeon E5-2658 8/11/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The Blue Coat Crypto Library v1.0 provides the necessary cryptographic services to a proprietary operating system (SGOS 6.5.2) developed specifically for use in Blue Coat''s ProxySG line of appliances."

2930 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware with Hardware Accelerators

Part # XLP432, 1.4 GHz, MIPS; XLR732, 950Mhz, MIPS; XLS208, 750MHz, MIPS
N/A 8/11/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Hardware accelerator is a CPU functional module that provides cryptographic functions within HP devices."

2929 OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamstown, MD 27101
USA

-Steve Marquess
TEL: 877-673-6775

OpenSSL FIPS Object Module

Version 2.0.8
Xeon E5-2430L (x86) without AES-NI w/ FreeBSD 10.0; Xeon E5-2430L (x86) with AES-NI w/ FreeBSD 10.0; Intel Xeon E5440 (x86) 32-bit without AES-NI w/ FreeBSD 8.4; Intel Xeon E3-1220 (x86) without AES-NI w/ VMware Horizon Workspace 2.1 under vSphere; Intel Xeon E3-1220 (x86) with AES-NI w/ VMware Horizon Workspace 2.1 under vSphere; Freescale i.MX25 (ARMv4) w/ QNX 6.5 8/11/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/."

09/22/14: Added new tested information;
10/29/14: Added new tested information;

2928 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware HW Accelerators

Part # Freescale P1021, 800Mhz; Cavium 6130, 1Ghz, MIPS;
N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2927 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version Version 7.1.R0106 (Firmware)
Freescale P1021, 800Mhz, PowerPC; Cavium 6130, 1Ghz, MIPS; Cavium 6635, 1.3 Ghz, MIPS; Cavium 6218, 1Ghz, MIPS; Cavium 6740, 1Ghz, MIPS; Cavium 6760, 1Ghz, MIPS; Cavium 6880, 1.2Ghz, MIPS 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2926 Protegrity USA Inc.
5 High Ridge Park 2nd Fl.
Stamford, Connecticut 06905
USA

-Yigal Rozenberg
TEL: +1 203 428 4526
FAX: +1 203 348 1251

-Raul Ortega
TEL: +1 203 428 4713
FAX: +1 203 569 4013

Protegrity Cryptographic Module on Mainframe

Version 1.0
IBM zEC12 w/ IBM z/OS 2.1 7/31/2014 CBC ( e/d; 128 , 256 );

"The Protegrity Cryptographic Module is a software module that provides FIPS validated cryptographic services for Protegrity Data Security products"

2925 Blue Coat Systems, Inc.
420 N. Mary Avenue
Sunnyvale, California 94085-4121
USA

-Diana Robinson
TEL: +1 (845) 454-6397

-Tammy Green
TEL: +1 (801) 999-2973

SGOS 6.5 Cryptographic Library

Version 3.1.3 (Firmware)
AMD64 Opteron (Istanbul); AMD64 Opteron (Shanghai); Intel Clarkdale; Intel Lynnfield; VIA NANO 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The SGOS 6.5 Cryptographic Library provides the necessary cryptographic services to a proprietary operating system (SGOS 6.5) developed specifically for use on a series of hardware appliances that serve as Internet proxy and Wide Area Network (WAN) optimizer devices."

2924 Fortinet Inc.
899 Kifer Road
Sunnyvale, CA 94086
USA

-Alan Kaye
TEL: 613-225-9381
FAX: 613-225-2951

FortiClient FortiPS Cryptolibrary v5.0

Version 5.0
Intel Core 2 Duo w/ Windows 7 Enterprise ;  N/A 7/31/2014 CBC ( e/d; 128 , 192 , 256 );

"The FortiPS library provides the following services for the FortiClient 5.0: HMAC, SHA1, AES CBC, AES ECB and 3DES."

2923 Protegrity USA Inc.
5 High Ridge Park 2nd Fl.
Stamford, Connecticut 06905
USA

-Yigal Rozenberg
TEL: +1 203 428 4526
FAX: +1 203 348 1251

-Raul Ortega
TEL: +1 203 428 4713
FAX: +1 203 569 4013

Protegrity Cryptographic Module on SLES

Version 1.0
Intel 64 w/ SLES 11 ;  N/A 7/31/2014 CBC ( e/d; 128 , 256 );

"The Protegrity Cryptographic Module is a software module that provides FIPS validated cryptographic services for Protegrity Data Security products"

2922 Protegrity USA Inc.
5 High Ridge Park 2nd Fl.
Stamford, Connecticut 06905
USA

-Yigal Rozenberg
TEL: +1 203 428 4526
FAX: +1 203 348 1251

-Raul Ortega
TEL: +1 203 428 4713
FAX: +1 203 569 4013

Protegrity Cryptographic Module on Windows

Version 1.0
Intel 64 w/ Windows 2008 ;  N/A 7/31/2014 CBC ( e/d; 128 , 256 );

"The Protegrity Cryptographic Module is a software module that provides FIPS validated cryptographic services for Protegrity Data Security products"

2921 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Kernel Module (3206a)

Version 2.0
Intel Xeon Processor E5-2680 without AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the McAfee NGFW product."

2920 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Kernel Module (3206)

Version 2.0
Intel Xeon Processor E5-2680 with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the McAfee NGFW product."

2919 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Kernel Module (3202a)

Version 2.0
Intel Xeon Processor E5-2660 without AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the McAfee NGFW product."

2918 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Kernel Module (3202)

Version 2.0
Intel Xeon Processor E5-2660 with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the McAfee NGFW product."

2917 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Kernel Module (1402)

Version 2.0
Intel Xeon Processor E5-1650v2 with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the McAfee NGFW product."

2916 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Kernel Module (1065)

Version 2.0
Intel Core i3-2115c with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the McAfee NGFW product."

2915 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Kernel Module (1035)

Version 2.0
Intel Celeron Processor 725c with AES-NI w/ GNU / Linux (Debian) 6.0 -based distribution ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the McAfee NGFW product."

2914 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Klaus Majewski
TEL: +358-40-824-7908

-Jorma Levomäki
TEL: +358-9-476711

McAfee NGFW Cryptographic Kernel Module (320)

Version 2.0
Intel Atom Processor D525 w/ GNU / Linux (Debian) 6.0 -based distribution ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 , 64 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 128 , 64 , 96 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"McAfee NGFW Cryptographic Kernel Module is a software module that provides cryptographic services required by the McAfee NGFW product."

2913 Digital Security Controls, a Division of Tyco Safety Products Canada Ltd.
3301 Langstaff Road
Concord, Ontario L4K 4L2
Canada

-Dan Nita
TEL: (905) 760-3000 x2706
FAX: (905) 760-3020

Central Station Alarm Receiver model SG-System 5

Version 1.0 (Firmware)
Freescale MCIMX6Q6AVT10ACR ;  N/A 7/31/2014 ECB ( e/d; 128 );

"The SG-SYSTEM 5 Central Station Alarm Receiver provides constantly supervised and encrypted line security communications over Internet or Intranet for security/intrusion applications (as required per UL365, UL1610 standard)."

2912 Fortinet Inc.
899 Kifer Road
Sunnyvale, CA 94086
USA

-Alan Kaye
TEL: 613-225-9381
FAX: 613-225-2951

FortiClient FCCrypt Cryptolibrary v5.0

Version 5.0
Intel Core 2 Duo w/ Windows 7 Enterprise ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The FCCrypt library provides the following services for the FortiClient 5.0: HMAC, SHA-1, SHA-256, AES CBC, AES ECB, 3DES, RSA and NIST 800-90A RBG."

2911 Oberthur Technologies
402 rue d’Estienne d’Orves
Colombes, n/a 92700
France

-GOYET Cristophe
TEL: +1 703 322 8951

-BOUKYOUD Saïd
TEL: +33 1 78 14 72 58
FAX: +33 1 78 14 70 20

CMAC on Cosmo V8

Version 07438.7 (Firmware)
Part # 0F
ID-One PIV-C on Cosmo V8 ;  N/A 7/31/2014

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )
AES Val#2910

"ID-One Cosmo V8 is a dual interface (ISO 7816 & ISO 14443) smartcard hardware platform compliant with Javacard 3.0.1 and GlobalPlatform 2.2.1 chip which includes a CMAC algorithm is fully compliant with NIST SP800-38B."

08/07/14: Updated implementation information;

2910 Oberthur Technologies
402 rue d’Estienne d’Orves
Colombes, n/a 92700
France

-GOYET Christophe
TEL: +1 703 322 8951

-BOUKYOUD Saïd
TEL: +33 1 78 14 72 58
FAX: +33 1 78 14 70 20

AES on Cosmo V8

Version 07034.18 (Firmware)
Part # 0F
ID-One PIV-C on Cosmo V8 ;  N/A 7/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); KW ( AD , AES-128 , AES-192 , AES-256 , FWD , 128 , 256 , 192 , 320 , 2048 ) KWP ( AD , AES-128 , AES-192 , 256 , FWD , 8 , 72 , 32 , 96 , 2048 AES Val#2910

"ID-One Cosmo V8 is a dual interface (ISO 7816 & ISO 14443) smartcard hardware platform compliant with Javacard 3.0.1 and GlobalPlatform 2.2.1 chip which supports AES with 128-, 192 and 256-bit key, fully compliant with FIPS-197."

08/05/14: Updated implementation information and added new tested information;

2909 Kingston Technology Company, Inc.
17600 Newhope Street
Fountain Valley, CA 92708
USA

-Jason J Chen
TEL: 714-445-3449
FAX: 714-438-2765

-Joel Tang
TEL: 714-445-3433
FAX: 714-438-2765

Kingston DTVP30 Cryptographic Library

Version 1.00 (Firmware)
Part # PS2251-13
Phison PS2251-13 ;  N/A 7/31/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"Kingston''s DataTraveler Vault Privacy 3.0 Series USB Flash Drive is assembled in the US for organizations that require a secure way to store and transfer portable data. The stored data is secured by hardware-based AES-256 encryption to guard sensitive information in case the drive is lost or stolen."

2908 Microsemi Corporation
One Enterprise
Aliso Viejo, CA 92656
USA

-Richard Newell
TEL: +1 (408) 643-6146

Microsemi SoC Cryptographic Module Mark I

Version 1.0 (Firmware)
Mentor Graphics Questa Simulator 10.1c ;  N/A 7/31/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); OFB ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"The Microsemi SoC Cryptographic Module provides custom hardware/firmware acceleration of the standard cryptographic algorithms used in Microsemi FPGAs and SoC FPGAs like Igloo®2 and SmartFusion®2. They are used to securely configure the devices, and are also made available to the FPGA user via an internal bus interface for use in end applications."

2907 Canon Inc.
30-2
Shimomaruko 3-chome
Ohta-ku, Tokyo 146-8501
Japan

-Yoichi Toyokura
TEL: +81-3-3758-2111
FAX: +81-3-3758-1160

Canon MFP Security Chip

Part # 2.10
N/A ;  N/A 7/18/2014 CBC ( e/d; 128 , 256 );

"Canon MFP Security Chip provides high-performance data encryption and decryption via SATA interface."

2906 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

SNMP

Version SNMP Stack V-15.3 (Firmware)
Cavium 56XX ;  N/A 7/18/2014 CFB128 ( e/d; 128 );

"Cisco WLAN Controller 5508 provides centralized control, management and scalability for small, medium and large-scale Government WLAN networks using APs joined over secure DTLS connection and support IEEE 802.11i security standard with WPA2 to enable a Secure Wireless Architecture."

2905 Atmel Corporation
1150 E. Cheyenne Mountain Blvd
Colorado Springs, CO 80906
USA

-Jim Hallman
TEL: (919) 846-3391

ATECC108A

Version 0x1003 (Firmware)
Cadence NC Verilog hardware simulator 7/18/2014 ECB ( e only; 128 );

"Atmel CryptoAuthentication: Secure authentication and product validation device."

2904 Hewlett-Packard Development Company, L.P.
20555 State Highway 249
Houston, TX 77070
USA

-Catherine Schwartz
TEL: (281) 514-9658

-Jeff Plank
TEL: (281) 514-7200

HP Secure Encryption Engine v1.0

Part # PM8064 (6019B0991401)
N/A 7/10/2014 ECB ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"HP Secure Encryption is a controller-based data encryption solution for HP ProLiant Gen8 or newer servers that protects data at rest on any bulk storage attached to the HP Smart Array controller. The solution comprises our 12G family of HP Smart Array controllers, the HP Physical Security Kit, and the HP Secure Encryption licensing."

2903 Hewlett-Packard Development Company, L.P.
20555 State Highway 249
Houston, TX 77070
USA

-Catherine Schwartz
TEL: (281) 514-9658

-Jeff Plank
TEL: (281) 514-7200

HP Secure Encryption Engine v1.0

Part # PM8062 (6019B1042201)
N/A 7/10/2014 ECB ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"HP Secure Encryption is a controller-based data encryption solution for HP ProLiant Gen8 or newer servers that protects data at rest on any bulk storage attached to the HP Smart Array controller. The solution comprises our 12G family of HP Smart Array controllers, the HP Physical Security Kit, and the HP Secure Encryption licensing."

2902 Hewlett-Packard Development Company, L.P.
20555 State Highway 249
Houston, TX 77070
USA

-Catherine Schwartz
TEL: (281) 514-9658

-Jeff Plank
TEL: (281) 514-7200

HP Secure Encryption Engine v1.0

Part # PM8061 (6019B0990201)
N/A 7/10/2014 ECB ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"HP Secure Encryption is a controller-based data encryption solution for HP ProLiant Gen8 or newer servers that protects data at rest on any bulk storage attached to the HP Smart Array controller. The solution comprises our 12G family of HP Smart Array controllers, the HP Physical Security Kit, and the HP Secure Encryption licensing."

2901 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

IOS Common Cryptographic Module (IC2M)

Version IC2M v1.5.2 (Firmware)
Atheros QCA9550; Freescale SC1018; Freescale SC1023 7/10/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); CTR ( ext only; 128 , 256 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 49 ; Tag Len(s) Min: 1 Max: 16 )

"IOS Common Cryptographic Module"

2900 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

-Steve Weingart
TEL: 1-830-580-1544

ArubaOS OpenSSL Module

Version ArubaOS 6.4 (Firmware)
Broadcom XLP Series; Freescale QorIQ P1020 7/10/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"The Aruba MOVE Architecture forms the core network infrastructure for supporting mobile and wireless computing devices. The system enables enterprise-scale 802.11 wireless LANs (Wi-Fi), secure remote VPNs, and mobility-optimized wired networks."

12/04/14: Updated implementation information;

2899 Cavium, Inc.
2315 N.First Street
San Jose, CA 95131
USA

-Phanikumar Kancharla
TEL: 408-943-7496

-Faisal Masood

Nitrox Px

Part # Nitrox Px v1.2
N/A 7/10/2014 ECB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 512 , 1024 , 248 , 504 ) ; AAD Lengths tested: ( 256 , 512 , 248 , 504 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The NITROX XL 1600-NFBE HSM adapter family delivers the world''s fastest FIPS 140-2 Level 3 Hardware Security Module (HSM) with PCIe Gen 2.0. The NITROX XL family of adapters offers up to 45,000 RSA operations per second and 5 Gbps of bulk crypto."

2898 MikroM GmbH
Dovestrasse 3
Berlin, Berlin 10587
Germany

-Holger Krahn
TEL: +49 30 398839 0
FAX: +49 30 398839 29

-Michael Hagemeister
TEL: +49 30 398839 0
FAX: +49 30 398839 29

Sam-AES

Version 16337 with 19034 (Firmware)
Xilinx Virtex-6 FPGA XC6VLX130T 7/10/2014 CBC ( d only; 128 );

"MVC201 - Digital Cinema Image Media Block for integration into a TI Series 2 DLP Cinema projector."

2897 Palo Alto Networks
4301 Great America Parkway
Santa Clara, California 95054
USA

-Richard Bishop
TEL: 408-753-4000
FAX: 408-753-4001

-Jake Bajic
TEL: 408-753-3901
FAX: 408-753-4001

Palo Alto Networks Crypto Module (PA-200, PA-500, PA-2000 Series, PA-3000 Series, PA-4000 Series, PA-5000 and PA-7050 Series Firewalls and M100/Panorama)

Version PAN-OS 6.0/Panorama 6.0 (Firmware)
Cavium Octeon MIPS64 7/10/2014

CCM (KS: 128 ) (Assoc. Data Len Range: 1 - 0 , 2^16 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 8 9 10 11 12 13 (Tag Length(s): 16 )
AES Val#2896

"The Palo Alto Networks Crypto Module provides the cryptographic functionality for a variety of platforms i.e. the PA-200, PA-500, PA-2000, PA-3000, PA-4000, PA-5000 and PA-7050 firewalls and M100/Panorama. The firewalls provide network security by enabling enterprises to see/control applications, users, and content."

2896 Palo Alto Networks
4301 Great America Parkway
Santa Clara, California 95054
USA

-Richard Bishop
TEL: 408-753-4000
FAX: 408-753-4001

-Jake Bajic
TEL: 408-753-3901
FAX: 408-753-4001

Palo Alto Networks Crypto Module (PA-200, PA-500, PA-2000 Series, PA-3000 Series, PA-4000 Series, PA-5000 and PA-7050 Series Firewalls and M100/Panorama)

Version PAN-OS 6.0/Panorama 6.0 (Firmware)
Cavium Octeon MIPS64; Intel Multi Core Xeon; Intel Celeron P4505; Intel Core I7 7/10/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 )

"The Palo Alto Networks Crypto Module provides the cryptographic functionality for a variety of platforms i.e. the PA-200, PA-500, PA-2000, PA-3000, PA-4000, PA-5000 and PA-7050 firewalls and M100/Panorama. The firewalls provide network security by enabling enterprises to see/control applications, users, and content."

2895 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

QuickSec

Version QuickSec-2.0-8.0 (Firmware)
Cavium 56XX 7/10/2014 CBC ( e/d; 128 , 256 );

"Cisco WLAN Controller 5508 provides centralized control, management and scalability for small, medium and large-scale Government WLAN networks using APs joined over secure DTLS connection and support IEEE 802.11i security standard with WPA2 to enable a Secure Wireless Architecture.""

2894 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

OSSL

Version Openssl-0.9.8g-8.0.0 (Firmware)
Cavium 56XX 7/10/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"Cisco WLAN Controllers provide centralized control, management and scalability for small, medium and large-scale Government WLAN networks using APs joined over secure DTLS connection and support IEEE 802.11i security standard with WPA2 to enable a Secure Wireless Architecture."

10/14/2014: Added KDF 800-135 IKEv1 KDF and SNMP KDF and updated implementation description.

2893 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade FIPS Crpyto Library

Version FOS 7.3.0 (Firmware)
PPC 440GPX and PPC 8548 7/10/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Brocade Cryptographic Library is used in Brocade FOS based switches to implement the cryptographic related modules."

2892 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade FIPS Crypto Library

Version FOS 7.3.0 (Firmware)
E 500 mc 7/10/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Brocade cryptographic library is used in Brocade FOS based switches to implement the cryptographic related modules."

2891 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS FortiASIC CP7 Cryptographic Library

Part # CP7
N/A 7/10/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiASIC CP7 Cryptographic Library 5.0 GA Patch 7"

2890 Juniper Networks, Inc.
1194 N. Mathilda Ave.
Sunnyvale, CA 94089
USA

-Ajit Kumar Singh Parihar
TEL: +91 8030539304

OPENSSL

Version Junos 13.2X51-D20 (Firmware)
Marvell Feroceon 88FR131; Freescale PowerPC e500v2 Core; Junos 13.2X51-D20; Broadcom XLR XLS 400 Series (DCF); Intel Xeon E3-1200 Family (Sandy Bridge) 7/10/2014 CBC ( e/d; 128 , 192 , 256 );

"Comprehensive, scalable and secure routing solutions specifically designed to meet the needs of both enterprises and service providers. All of our routers - core, Multiservice edge and edge ethernet - run on one common operating system - Junos."

2889 Juniper Networks, Inc.
1194 N. Mathilda Ave.
Sunnyvale, CA 94089
USA

-Ajit Kumar Singh Parihar
TEL: +91 8030539304

OPENSSL

Version Junos 13.2X50-D19 (Firmware)
Marvell Feroceon 88FR571; Freescale PowerPC e500v2 Core 7/10/2014 CBC ( e/d; 128 , 192 , 256 );

"Comprehensive, scalable and secure routing solutions specifically designed to meet the needs of both enterprises and service providers. All of our routers - core, Multiservice edge and edge ethernet - run on one common operating system - Junos."

2888 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cavium 5646

Part # Cavium 5646
N/A 7/10/2014 CBC ( e/d; 128 , 256 );

"Cisco WLAN Controller 5508 provides centralized control, management and scalability for small, medium and large-scale Government WLAN networks using APs joined over secure DTLS connection and support IEEE 802.11i security standard with WPA2 to enable a Secure Wireless Architecture.""

2887 Cisco Systems, Inc.
170 W. Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

ONS Encryption Card Firmware Algorithms

Version 1.2 (Firmware)
Freescale P1010 7/10/2014 ECB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

"Firmware algorithm implementations for the ONS encryption card."

2886 Cisco Systems, Inc.
170 W. Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

ONS Controller Card Firmware Algorithms

Version 1.2 (Firmware)
Freescale MPC8568E 7/10/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"Firmware algorithm implementations for the ONS controller cards."

2885 Becrypt Ltd.
90 Long Acre
Covent Garden
London, England WC2E 9RA
United Kingdom

-Mark Wilce
TEL: +44 207 557 6515
FAX: +44 845 838 2060

-Nigel Lee
TEL: +44 845 838 2050
FAX: +44 845 838 2060

16 bit subcomponent - BeCrypt Crypto Module

Version 3.0
Fujitsu LifeBook S7020 laptop with Intel Pentium M 740 processor w/ MS-DOS 6.22 7/10/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The BeCrypt Cryptographic Library provides core cryptographic functionality for BeCrypt''s security products providing a capability to develop complex and flexible security applications that require cryptographic functionality for pre-OS (16-bit), 32-bit and 64-bit operating environments."

2884 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

-Steve Weingart
TEL: 210-516-5736

ArubaOS Crypto Module

Version ArubaOS 6.4 (Firmware)
Broadcom XLP Series; Freescale QorIQ P1020 7/10/2014 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 ) ; AAD Lengths tested: ( 1024 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
RNG: Val# 1286

"The Aruba MOVE Architecture forms the core network infrastructure for supporting mobile and wireless computing devices. The system enables enterprise-scale 802.11 wireless LANs (Wi-Fi), secure remote VPNs, and mobility-optimized wired networks."

12/04/14: Updated implementation information;

2883 Becrypt Ltd.
90 Long Acre
Covent Garden
London, England WC2E 9RA
United Kingdom

-Mark Wilce
TEL: +44 207 557 6515
FAX: +44 845 838 2060

-Nigel Lee
TEL: +44 845 838 2050
FAX: +44 845 838 2060

32/64 bit subcomponent - BeCrypt Crypto Module

Version 3.0
Google Nexus 7 (2012) with NVidia Tegra 3 ARM v6 w/ Android v4.2.2; Dell Vostro 1500 with Intel Centrino Duo 64-bit processor w/ Ubuntu Linux 12.04 LTS; Dell D630 with Intel Centrino Duo 32-bit processor w/ Ubuntu Linux 12.04 LTS; Dell Venue 11 Pro (7130) with Intel Core i5-4300Y 64-bit AES-NI processor w/ Microsoft Windows 8.1 Professional; Dell Vostro 1500 with Intel Centrino Duo 64-bit processor w/ Microsoft Windows 7 Enterprise Edition; Dell D630 with Intel Centrino Duo 32-bit processor w/ Microsoft Windows 7 Ultimate Edition 7/10/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"The BeCrypt Cryptographic Library provides core cryptographic functionality for BeCrypt''s security products providing a capability to develop complex and flexible security applications that require cryptographic functionality for pre-OS (16-bit), 32-bit and 64-bit operating environments."

2882 Digicine Oristar Technology Development (Beijing) Co., Ltd.
No.1 Di Sheng West Street, BDA
Da Xing District
Beijing, 100176
China

-Helen Li
TEL: +86 10 8712 7173
FAX: +86 10 8712 7010

FPGA AES

Version 1.0 (Firmware)
Xilinx Virtex-6 FPGA XC6VLX130T 6/30/2014 CBC ( d only; 128 );

"Oristar''s Integrated Media Block (IMB) product with its model number CHN-II supports 2K/4K Jpeg2000 image decoding for theatrical playback in Digital Cinemas."

2881 Digicine Oristar Technology Development (Beijing) Co., Ltd.
No.1 Di Sheng West Street, BDA
Da Xing District
Beijing, 100176
China

-Helen Li
TEL: +86 10 8712 7173
FAX: +86 10 8712 7010

AES-256

Version 1.0 (Firmware)
Freescale MCIMX515DJM8C 6/30/2014 CBC ( d only; 256 );

"Oristar''s Integrated Media Block (IMB) product with its model number CHN-II supports 2K/4K Jpeg2000 image decoding for theatrical playback in Digital Cinemas."

2880 Digicine Oristar Technology Development (Beijing) Co., Ltd.
No.1 Di Sheng West Street, BDA
Da Xing District
Beijing, 100176
China

-Helen Li
TEL: +86 10 8712 7173
FAX: +86 10 8712 7010

AES-128

Version 1.0 (Firmware)
Freescale MCIMX515DJM8C 6/30/2014 CBC ( d only; 128 );

"Oristar''s Integrated Media Block (IMB) product with its model number CHN-II supports 2K/4K Jpeg2000 image decoding for theatrical playback in Digital Cinemas."

2879 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

UDAP

Part # 1.0
N/A 6/30/2014 CBC ( e/d; 128 );

"Cisco''s new Unified Access Data Plane (UADP) application-specific integrated circuit (ASIC) powers the switch and enables uniform wired-wireless policy enforcement, application visibility, flexibility and application optimization."

2878 Integral Memory PLC.
Unit 6 Iron Bridge Close
Iron Bridge Business Park
Off Great Central Way
London, Middelsex NW10 0UF
United Kingdom

-Patrick Warley
TEL: +44 (0)20 8451 8700
FAX: +44 (0)20 8459 6301

-Samik Halai
TEL: +44 (0)20 8451 8704
FAX: +44 (0)20 8459 6301

Integral Crypto AES 256 Bit USB 3.0 Hardware Library

Part # PS2251-15
N/A 6/30/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"The Integral Crypto AES 256 Bit USB 3.0 Hardware Library is intended for use with The Integral Crypto AES 256 Bit USB 3.0 Cryptographic Modules. The modules are removable storage devices which encrypt the content transferred onto them, and come in 2GB, 4GB, 8GB, 16GB, 32GB, 64GB, 128GB, 256GB, 512GB and 1TB sizes."

2877 Toshiba Corporation
1-1, Shibaura 1-chome
Minato-ku, Tokyo 105-8001
Japan

-Osamu Kawashima
TEL: +81-90-6171-0253
FAX: +81-45-890-2492

Toshiba Secure Cryptographic Suite for Enterprise HDD

Part # TT7050
N/A 6/27/2014 CBC ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"a library of unique software and hardware cipher solutions which are standard encryption algorithm-based to provide Toshiba enterprise HDD products and the systems using them a robust and secure data storage environment"

2876 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade FIPS Crypto Library

Version FOS 7.3.0 (Firmware)
AMCC PPC 440EPX 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Brocade Cryptographic library is used in Brocade FOS based switches to implement the cryptographic related modules."

2875 Neopost Technologies, S.A.
113 Rue Jean Marin Naudin
BAGNEUX, 92220
France

-Nathalie TORTELLIER
TEL: 33 01 45 36 30 72
FAX: 33 01 45 36 30 10

Neopost PSD

Version A0038111A (Firmware)
Part # A0014227B
n/a 6/27/2014

CMAC (Generation ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) AES Val#2874

"Neopost Postal Secure Device (PSD) for low to high range of franking machines"

2874 Neopost Technologies, S.A.
113 Rue Jean Marin Naudin
BAGNEUX, 92220
France

-Nathalie TORTELLIER
TEL: 33 01 45 36 30 72
FAX: 33 01 45 36 30 10

Neopost PSD

Version A0038113A (Firmware)
Part # A0014227B
n/a 6/27/2014 CBC ( e/d; 128 );

"Neopost Postal Secure Device (PSD) for low to high range of franking machines"

2873 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-Bill Zhao
TEL: 650-527-0683

PSymantec PGP Cryptographic Engine

Version 4.3
sVirtualized vSphere 5.1 / ESXi 5.1 hypervisor w/ Windows Server 2012 R2 x64 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email."

2872 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-Bill Zhao
TEL: 650-527-0683

Symantec PGP Cryptographic Engine

Version 4.3
Virtualized vSphere 5.1 / ESXi 5.1 hypervisor w/ Windows 8.1 update 1 x64 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email."

2871 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-Bill Zhao
TEL: 650-527-0683

Symantec PGP Cryptographic Engine

Version 4.3
Dell Precision M6400 Intel Core 2 Duo w/ Linux 64-bit RHEL 6.2 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email."

2870 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-David Finkelstein
TEL: 650-527-0714

Symantec PGP Cryptographic Engine

Version 4.3
Dell Precision M6400 Intel Core 2 Duo w/ Windows 7 32 bit 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email."

2869 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-David Finkelstein
TEL: 650-527-0714

Symantec PGP Cryptographic Engine

Version 4.3
Dell Precision M6400 Intel Core 2 i7 w/ Windows 7 32 bit with AESNI 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email. It include"

2868 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-David Finkelstein
TEL: 650-527-0714

Symantec PGP Cryptographic Engine

Version 4.3
Dell Precision M6400 Intel Core i7 w/ Windows 7 64 bit with AESNI 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email. "

2867 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-David Finkelstein
TEL: 650-527-0714

Symantec PGP Cryptographic Engine

Version 4.3
Dell Precision M6400 Intel Core i7 w/ Linux 32 bit RHEL 6.2 with AESNI 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email. "

2866 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-David Finkelstein
TEL: 650-527-0714

Symantec PGP Cryptographic Engine

Version 4.3
Mac OS X 10.7 with AESNI w/ Apple MacBook Pro Intel Core i7 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email."

2865 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

Fortinet FortiOS FIPS Cryptographic Library

Version 5.0 GA Patch 7 (Firmware)
Intel Xeon 6/27/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiOS FIPS Cryptographic Library 5.0 GA Patch 7"

2864 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS FortiASIC CP8 Cryptographic Library

Part # CP8
N/A 6/27/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiASIC CP8 Cryptographic Library 5.0 GA Patch 7"

2863 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS FortiASIC CP6 Cryptographic Library

Part # CP6
N/A 6/27/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiASIC CP6 Cryptographic Library 5.0 GA Patch 7"

2862 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

Fortinet FortiOS SSL Cryptographic Library

Version 5.0 GA Patch 7 (Firmware)
Intel Xeon 6/27/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiOS SSL Cryptographic Library 5.0 GA Patch 7."

07/10/14: Updated implementation information;

2861 N/A N/A N/A 6/27/2014 N/A
2860 N/A N/A N/A 6/27/2014 N/A
2859 RSA, The Security Division of EMC
174 Middlesex Turnpike
Bedford, MA 01730
USA

-Sandy Carielli
TEL: 781-515-7510

RSA BSAFE Crypto-C Micro Edition (ME)

Version 4.1
Intel x86 with AES-NI w/ Windows Server 2003 Enterprise R2 (/MD); Intel x86 without AES-NI w/ Windows Server 2003 Enterprise R2 (/MD); Intel x86 with AES-NI w/ Windows Server 2008 Enterprise SP2 (/MD); Intel x86 without AES-NI w/ Windows Server 2008 Enterprise SP2 (/MD); Intel x86 with AES-NI w/ Windows 7 Enterprise SP1 (/MD); Intel x86 without AES-NI w/ Windows 7 Enterprise SP1 (/MD); Intel x64 with AES-NI w/ Windows Server 2003 Enterprise R2 (/MD); Intel x64 without AES-NI w/ Windows Server 2003 Enterprise R2 (/MD); Intel x64 with AES-NI w/ Windows Server 2008 Enterprise R2 (/MD); Intel x64 without AES-NI w/ Windows Server 2008 Enterprise R2 (/MD); Intel x64 with AES-NI w/ Windows 7 Enterprise SP1 (/MD); Intel x64 without AES-NI w/ Windows 7 Enterprise SP1 (/MD); Itanium2 w/ Windows Server 2003 Enterprise R2; Itanium2 w/ Windows Server 2008 Enterprise R2; Intel x86 with AES-NI w/ Windows Server 2003 Enterprise R2 on ESX 5.1 (/MT); Intel x86 without AES-NI w/ Windows Server 2003 Enterprise R2 (/MT); Intel x86 with AES-NI w/ Windows Server 2008 Enterprise SP2 (/MT); Intel x86 without AES-NI w/ Windows Server 2008 Enterprise SP2 (/MT); Intel x86 with AES-NI w/ Windows 7 Enterprise SP1 (/MT); Intel x86 without AES-NI w/ Windows 7 Enterprise SP1 (/MT); Intel x64 with AES-NI w/ Windows Server 2003 Enterprise R2 (/MT); Intel x64 without AES-NI w/ Windows Server 2003 Enterprise R2 (/MT); Intel x64 with AES-NI w/ Windows Server 2008 Enterprise R2 (/MT); Intel x64 without AES-NI w/ Windows Server 2008 Enterprise R2 (/MT); Intel x64 with AES-NI w/ Windows 7 Enterprise SP1 (/MT); Intel x64 without AES-NI w/ Windows 7 Enterprise SP1 (/MT); Intel x64 with AES-NI w/ Windows Server 2012 R2 Standard (/MT); Intel x64 without AES-NI w/ Windows Server 2012 R2 Standard (/MT); Intel x64 with AES-NI w/ Windows 8.1 Enterprise (/MT); Intel x64 without AES-NI w/ Windows 8.1 Enterprise (/MT); Itanium2 64-bit w/ Windows Server 2003 Enterprise R2; Itanium2 64-bit w/ Windows Server 2008 Enterprise R2; Intel x86 with AES-NI w/ Red Hat Enterprise Linux 5.5 on ESX 4.0; Intel x86 without AES-NI w/ Red Hat Enterprise Linux 5.5 on ESX 4.0; Intel x64 with AES-NI w/ Red Hat Enterprise Linux 5.5 on ESX 4.0; Intel x64 without AES-NI w/ Red Hat Enterprise Linux 5.5 on ESX 4.0; Intel x86 without AES-NI w/ Red Hat Enterprise Linux 6.1 on ESXi 4.1; Intel x86 with AES-NI w/ SUSE Linux Enterprise Server 11 on ESX 4.0; Intel x86 without AES-NI w/ SUSE Linux Enterprise Server11 on ESX 4.0; Intel x64 with AES-NI w/ Red Hat Enterprise Linux 6.1 ESXi 4.1; Intel x64 without AES-NI w/ Red Hat Enterprise Linux 6.1 on ESXi 4.1; Intel x64 with AES-NI w/ SUSE Linux Enterprise Server 11 on ESXi 4.1; Intel x64 without AES-NI w/ SUSE Linux Enterprise Server 11 on ESXi 4.1; Itanium2 64-bit w/ Red Hat Enterprise Linux 5.5; PPC 32-bit w/ Red Hat Enterprise Linux 5.3; PPC 32-bit w/ SUSE Linux Enterprise Server 11; PPC 64-bit w/ Red Hat Enterprise Linux 5.3; PPC 64-bit w/ SUSE Linux Enterprise Server 11; Intel x64 with AES-NI w/ FreeBSD 8.3 on ESXi 5.0; Intel x64 without AES-NI w/ FreeBSD 8.3 on ESXi 5.0; Intel x64 with AES-NI w/ Mac OS X 10.8; Intel x64 without AES-NI w/ Mac OS X 10.8; SPARC v8 w/ Solaris 10; SPARC v8+ w/ Solaris 11; SPARC v9 (T2) w/ Solaris 11; SPARC v9 (T4) with T4 accelerator w/ Solaris 11; SPARC v9 (T4) without T4 accelerator w/ Solaris 11; Intel x86 with AES-NI w/ Solaris 10 on ESXi 4.1; Intel x86 without AES-NI w/ Solaris 10 on ESXi 4.1; Intel x64 with AES-NI w/ Solaris 10; Intel x64 without AES-NI w/ Solaris 10; PA-RISC 2.0 32-bit w/ HPUX 11.31; PA-RISC 2.0W 64-bit w/ HPUX 11.31; Itanium2 32-bit w/ HPUX 11.31; Itanium2 64-bit w/ HPUX 11.31; PowerPC 32-bit w/ AIX 6.1 on Virtual I/O Server 2.2.2.1; PowerPC 64-bit w/ AIX 6.1 on Virtual I/O Server 2.2.2.1; PowerPC 32-bit w/ AIX 7.1 on Virtual I/O Server 2.2.2.1; PowerPC 64-bit w/ AIX 7.1 on Virtual I/O Server 2.2.2.1; IBM z196 31/32-bit w/ Red Hat Enterprise Linux 5.8 on z/VM 6.2; IBM z196 64-bit w/ Red Hat Enterprise Linux 5.8 on z/VM 6.2; ARMv7 w/ Ubuntu 12.04 LTS; ARMv7 w/ Fedora Core 17; Intel x86 w/ Android 4.0.3; ARMv7 w/ Android 2.3.6; ARMv7 w/ Android 4.1.2; ARMv7 w/ iOS 7.1; ARMv7s w/ iOS 7.1; PPC 604 w/ VxWorks 6.4; PPC 604 w/ VxWorks 6.7; ARMv4 w/ VxWorks 6.8 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 512 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"RSA BSAFE® Crypto-C ME software is designed to help protect sensitive data as it is stored using strong encryption techniques to provide a persistent level of protection. The software supports a wide range of industry standard encryption algorithms offering developers the flexibility to choose the appropriate option to meet their requirements."

CFB-128 Key Size 256 was tested as Encrypt only;

2858 Digicine Oristar Technology Development (Beijing) Co., Ltd.
No.1 Di Sheng West Street, BDA
Da Xing District
Beijing, 100176
China

-Helen Li
TEL: +86 10 8712 7173
FAX: +86 10 8712 7010

Crypto Toolkit

Version 1.0 (Firmware)
Freescale MCIMX515DJM8C 6/30/2014 CBC ( e/d; 128 , 256 );

"Oristar''s Integrated Media Block (IMB) product with its model number CHN-II supports 2K/4K Jpeg2000 image decoding for theatrical playback in Digital Cinemas."

2857 Software House, a Brand of Tyco International
6 Technology Park Drive
Westford, MA 01886
USA

-Lou Mikitarian
TEL: 1-978-577-4125

-Rick Focke
TEL: 1-978-577-4266

C*CURE Server AES Engine

Version 2.1
Intel Xeon w/ Windows Server 2008 R2 6/27/2014 CBC ( e/d; 256 );

"The C*CURE Server AES Engine provides AES encryption/decryption services for the C*CURE 9000 security management system server."

2856 Software House, a Brand of Tyco International
6 Technology Park Drive
Westford, MA 01886
USA

-Lou Mikitarian
TEL: 1-978-577-4125

-Rick Focke
TEL: 1-978-577-4266

iSTAR Cryptographic Engine

Version 2.1
ARM v7 i.MX6Q w/ Ubuntu Linux 12.04.2; Atmel 9260 w/ Windows CE v5.0 6/27/2014 CBC ( e/d; 256 );

"The iSTAR Cryptographic Engine provides cryptographic services used for securing data and communications for the iSTAR Edge and iSTAR Ultra Door Controllers."

2855 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version 5.2.105 (Firmware)
RMI (Netlogic) XLS208 MIPS; RMI (Netlogic) XLS408 MIPS 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2854 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version 5.2.99 (Firmware)
Freescale P2020 6/27/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2853 Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

-Tim Myers
TEL: 800-Microsoft

Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry RSA32 Algorithm Implementations

Version 6.3.9600
NVIDIA Tegra 4 Quad-Core w/ Microsoft Surface 2 w/ Windows RT 8.1 (ARMv7 Thumb-2) ; NVIDIA Tegra 3 Quad-Core w/ Windows RT 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon S4 w/ Windows Phone 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon 400 w/ Windows Phone 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon 800 w/ Windows Phone 8.1 (ARMv7 Thumb-2); NVIDIA Tegra 3 Quad-Core w/ Microsoft Surface w/ Windows RT 8.1 (ARMv7 Thumb-2); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows 8.1 Enterprise (x64); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Windows 8.1 Enterprise (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows 8.1 Enterprise (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows 8.1 Enterprise (x86); AMD Athlon 64 X2 without AES-NI w/ Windows 8.1 Enterprise (x86); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows 8.1 Enterprise (x86); Intel Pentium without AES-NI w/ Windows 8.1 Enterprise (x86); Intel Core i3 without AES-NI and with PCLMULQDQ w/ Windows Embedded 8.1 Industry Enterprise (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x86); AMD Athlon 64 X2 without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x86); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x86); Intel Pentium without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x86); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows 8.1 Enterprise (x64); AMD Athlon 64 X2 without AES-NI w/ Windows 8.1 Enterprise (x64); Intel Pentium without AES-NI w/ Windows 8.1 Enterprise (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Server 2012 R2 (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Server 2012 R2 (x64); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Windows Server 2012 R2 (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x64); AMD Athlon 64 X2 without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x64); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x64); Intel Pentium without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Storage Server 2012 R2 (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Storage Server 2012 R2 (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows Server 2012 R2 (x64); AMD Athlon 64 X2 without AES-NI w/ Windows Server 2012 R2 (x64); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows Server 2012 R2 (x64); Intel Pentium without AES-NI w/ Windows Server 2012 R2 (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows Storage Server 2012 R2 (x64); AMD Athlon 64 X2 without AES-NI w/ Windows Storage Server 2012 R2 (x64); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Windows Storage Server 2012 R2 (x64); Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro 2 w/ Windows 8.1 Enterprise (x64); Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro w/ Windows 8.1 Pro (x64); Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro 2 w/ Windows 8.1 Pro (x64); Qualcomm Snapdragon S4 w/ Windows RT 8.1 (ARMv7 Thumb-2); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Windows Storage Server 2012 R2 (x64); Intel Pentium without AES-NI w/ Windows Storage Server 2012 R2 (x64) ;  Intel Xeon E5-2648Lwithout AES-NI w/ Microsoft StorSimple 8100 w/ Microsoft Windows Server 2012 R2 6/6/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 );

"The Microsoft Windows RSA32 Library algorithm implementation is used by various Microsoft libraries to provide AES, RSA, and SHS (SHA) support."

07/10/14: Added new tested information;
12/16/14: Added new tested information;

2852 Digital Defence Ltd
400 Pavilion Drive
Northampton Business Park
Northampton, NN4 7PA
United Kingdom

-Ben Earl
TEL: +44-1604-521108
FAX: +44-1604-521001

Secure Mobile

Version 11.1.0.0
ARMv4i (as part of test platform, i.e. Motorola MC65 mobile handset) w/ Windows Mobile 6.5 5/30/2014 ECB ( e/d; 128 );

XTS( KS: XTS_128( (e/d) (f) )

"Secure Mobile is a security extension for Windows Mobile that provides device authentication, access control and storage encryption functionality. The concrete IUT here is a File System Filter (FSFilter) driver which is part of the Secure Mobile cryptographic module."

2851 Digital Defence Ltd
400 Pavilion Drive
Northampton Business Park
Northampton, NN4 7PA
United Kingdom

-Ben Earl
TEL: +44-1604-521108
FAX: +44-1604-521001

Secure Mobile

Version 11.1.0.0
ARMv4i (as part of test platform, i.e. Motorola MC65 mobile handset) w/ Windows Mobile 6.5 5/30/2014 ECB ( e/d; 128 );

"Secure Mobile is a security extension for Windows Mobile that provides device authentication, access control and storage encryption functionality. The concrete IUT here is a Control Panel Applet (CPL) which is part of the Secure Mobile cryptographic module."

2850 Accellion, Inc.
1804 Embarcadero Road
Suite 200
Palo Alto, Ca 94303
USA

-Prateek Jain
TEL: 65-62445670
FAX: 65-62445678

OpenSSL Library

Version 1.0.1g
Intel Xeon QuadCore w/ CentOS 6.4 on VMware ESXi 5.1.0 5/30/2014 CBC ( e/d; 128 , 256 );

"Accellion Kiteworks Cryptographic Module is a key component of Accellion''s Kiteworks product that enables enterprises to securely share and transfer files. Extensive tracking and reporting tools allow compliance with SOX, HIPAA, FDA and GLB regulations while providing enterprise grade security and ease of use."

2849 Kaspersky Lab UK Ltd.
1st Floor, 2 Kingdom Street
Paddington
London, * W2 6BD
United Kingdom

-Oleg Andrianov
TEL: +7 495 797 8700

Kaspersky Cryptographic Library 32-bit (User Mode)

Version 2.0
Intel(R) Core(TM)2 Duo P9600 @ 2.53GHz w/ Windows 7 Professional 32-bit; Intel(R) Core(TM)2 Duo P9600 @ 2.53GHz w/ Kaspersky Preboot OS with BIOS 5/30/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"Kaspersky Cryptographic Library is a software library that provides cryptographic services for various Kaspersky Lab applications."

09/19/14: Added new tested information;

2848 Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

-Tim Myers
TEL: 800-Microsoft

Microsoft Windows 8.1, Microsoft Windows Server 2012 R2, Microsoft Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 BitLocker® Cryptographic Implementations

Version 6.3.9600
NVIDIA Tegra 4 Quad-Core w/ Microsoft Surface 2 w/ Windows RT 8.1 (ARMv7 Thumb-2); NVIDIA Tegra 3 Quad-Core w/ Windows RT 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon S4 w/ Windows Phone 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon 400 w/ Windows Phone 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon 800 w/ Windows Phone 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon S4 w/ Windows RT 8.1 (ARMv7 Thumb-2); NVIDIA Tegra 3 Quad-Core w/ Microsoft Surface w/ Windows RT 8.1 (ARMv7 Thumb-2); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows 8.1 Enterprise (x64); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Microsoft Windows 8.1 Enterprise (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows 8.1 Enterprise (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows 8.1 Enterprise (x86); AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows 8.1 Enterprise (x86); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows 8.1 Enterprise (x86); Intel Pentium without AES-NI w/ Microsoft Windows 8.1 Enterprise (x86); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x86); AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x86); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x86); Intel Pentium without AES-NI w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x86); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows 8.1 Enterprise (x64); AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows 8.1 Enterprise (x64); Intel Pentium without AES-NI w/ Microsoft Windows 8.1 Enterprise (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Server 2012 R2 (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Server 2012 R2 (x64); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Microsoft Windows Server 2012 R2 (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64); AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64); Intel Pentium without AES-NI w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Server 2012 R2 (x64); AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows Server 2012 R2 (x64); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Server 2012 R2 (x64); Intel Pentium without AES-NI w/ Microsoft Windows Server 2012 R2 (x64); AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64); AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows Storage Server 2012 R2 (x64); Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64); Intel Pentium without AES-NI w/ Microsoft Windows Storage Server 2012 R2 (x64); Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro 2 w/ Microsoft Windows 8.1 Enterprise (x64); Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro w/ Windows 8.1 Pro (x64); Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro 2 w/ Windows 8.1 Pro (x64); ;  Intel Xeon E5-2648Lwithout AES-NI w/ Microsoft StorSimple 8100 w/ Microsoft Windows Server 2012 R2; Intel Xeon E5-2648Lwith AES-NI w/ Microsoft StorSimple 8100 w/ Microsoft Windows Server 2012 R2 5/23/2014

CCM (KS: 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 12 (Tag Length(s): 16 )
AES Val#2832

"The Microsoft Windows BitLocker® algorithm implementation provides AES CCM support to the Windows Boot Manager and BitLocker® cryptographic modules."

12/11/14: Added new tested information;

2847 INSIDE Secure
Arteparc Bachasson, Bât A
Rue de la carrière de Bachasson, CS70025
Meyreuil, Bouches-du-Rhône 13590
France

-Bob Oerlemans
TEL: +31 736-581-900
FAX: +31 736-581-999

VaultIP

Part # 1.1
N/A 5/23/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 8 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 8 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 8 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"VaultIP is a Silicon IP Security Module which includes a complete set of high- and low-level cryptographic functions. It offers key management and crypto functions needed for platform and application security such as Content Protection and Mobile Payment, and can be used stand-alone or as a ''Root of Trust'' to support a TEE-based platform."

2846 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP1602 88W8763C

Part # Marvell 88W8763C
N/A 5/23/2014 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 22 - 30 ) (Payload Length Range: 10 - 20 ( Nonce Length(s): 13 (Tag Length(s): 8

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 512 ; Tag Len(s) Min: 1 Max: 16 )

"The Cisco Aironet Access Points deliver the versatility, high capacity and enterprise-class features required for small, medium and large Government indoor and outdoor wireless deployments. In FIPS 140-2 mode of operation, the Cisco APs support the IEEE 802.11i and IEEE 802.1x standards and AES for WPA2 encryption."

2845 Juniper Networks, Inc.
1194 N. Mathilda Ave.
Sunnyvale, CA 94089
USA

-Balachandra Shanabhag
TEL: +91 8041904260

OPENSSL

Version Junos 13.3R1 (Firmware)
Intel Xeon C3500/C5500 Series; Intel Xeon 5200 Series; Freescale e500v2; Freescale e5500 5/23/2014 CBC ( e/d; 128 , 192 , 256 );

"Comprehensive, scalable and secure routing solutions specifically designed to meet the needs of both enterprises and service providers. All of our routers - core, Multiservice edge and edge ethernet - run on one common operating system - Junos."

2844 Accellion, Inc.
1804 Embarcadero Road
Suite 200
Palo Alto, Ca 94303
USA

-Prateek Jain
TEL: 65-62445670
FAX: 65-62445678

TLS Library

Version 1.0.1c1
Dual Xeon QuadCore w/ Red Hat Enterprise Linux 5 5/23/2014 CBC ( e/d; 128 , 256 );

"Accellion Cryptographic Module is a key component of Accellion''s secure collaboration solution that enables enterprises to securely share and transfer files. Extensive tracking and reporting tools allow compliance with SOX, HIPAA, FDA and GLB regulations while providing enterprise grade security and ease of use."

2843 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

moc_crypto.sys

Version 1.0.0
Intel Core i5 w/ Windows 7 32-bit Kernel Mode; Intel Core i5 w/ Windows 7 64-bit Kernel Mode 5/23/2014 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 497

"The Aruba Common Cryptographic Module (CCM) is a software crypto library that powers a variety of Aruba’s networking and security products. The module does not implement any protocols directly, but provides cryptographic primitives and functions that software developers build upon to implement various security protocols."

2842 Seagate Technology LLC.
1280 Disc Drive
Shakopee, Minnesota 55379
US

-David R Kaiser, PMP
TEL: 952-402-2356
FAX: 952-402-1273

Tui AES in Hardware, Tui SHA in Hardware

Part # Tui
N/A 5/16/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"AES encryption and decryption core of the controller ASIC "Tui" in Seagate''s Self- Encrypting Drives (SEDs). "

2841 Seagate Technology LLC.
1280 Disc Drive
Shakopee, Minnesota 55379
US

-David R Kaiser, PMP
TEL: 952-402-2356
FAX: 952-402-1273

ARMv7 GCM in Firmware

Version 2.0 (Firmware)
ARM Cortex-R Family 5/16/2014

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 256 , 8 , 24 ) ; AAD Lengths tested: ( 0 , 256 , 8 , 24 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#1343

"FW implementation of GCM in Seagate''s self encryption disk drives (SEDs)"

2840 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

Fortinet FortiMail SSL Cryptographic Library

Version 5.0 (Firmware)
Intel Xeon 5/9/2014 CBC ( e/d; 128 , 192 , 256 );

"This focuses on the firmware implementation of the Fortinet FortiMail SSL Cryptographic Library v5.0 running on Intel x86 compatible processors."

2839 Qualcomm Technologies, Inc.
5775 Morehouse Dr
San Diego, CA 92121
USA

-Lu Xiao
TEL: 858-651-5477

QTI Cryptographic Module on Crypto 5 Core V5.2.1.

Part # Snapdragon 805
N/A 5/23/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); CTR ( int/ext; 256 )

CCM (KS: 128 , 256 ) (Assoc. Data Len Range: 1 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 16 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"This cryptographic module implements block ciphers including AES and Triple DES in multiple modes, hash algorithms including SHA-1 and SHA-256, and Message Authentication Codes including HMAC and CMAC."

2838 Kingston Technology Company, Inc.
17600 Newhope Street
Fountain Valley, CA 92708
USA

-Jason J Chen
TEL: 714-445-3449
FAX: 714-438-2765

-Joel Tang
TEL: 714-445-3433
FAX: 714-438-2765

Kingston DT4000 G2 Cryptographic Library

Version 1.00 (Firmware)
Part # PS2251-15
Phison PS2251-15 5/9/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"Kingston''s DataTraveler DT4000 G2 Series USB Flash Drive is assembled in the US for organizations that require a secure way to store and transfer portable data. The stored data is secured by hardware-based AES-256 encryption to guard sensitive information in case the drive is lost or stolen."

2837 INSIDE Secure
Eerikinkatu 28
Helsinki, 00180
Finland

-Serge Haumont
TEL: +358 40 5808548

-Marko Nippula
TEL: +358 40 762 9394

SafeZone FIPS Cryptographic Module

Version 1.0.3A
ARMv7, 2.3 GHz w/ Android 4.4 5/9/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 11 13 (Tag Length(s): 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 )
IV Generated: ( Internally (using Section 8.2.1 / 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 1024 , 8 , 1016 ) ; AAD Lengths tested: ( 0 , 1024 , 8 , 1016 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported
DRBG: Val# 493

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"SafeZone FIPS Cryptographic Module is a FIPS 140-2 Security Level 1 validated software cryptographic module from INSIDE Secure. The module is a toolkit which provides the most commonly needed cryptographic primitives for a large variety of applications, including but not limited to, primitives for DAR, DRM, TLS, and VPN on mobile devices."

2836 SecuTech Solutions PTY LTD
Suite 514, 32 Delhi Road
North Ryde, NSW 2113
Australia

-Fujimi Bentley
TEL: 00612-98886185
FAX: 00612-98886185

-Joseph Sciuto
TEL: 00612-98886185
FAX: 00612-98886185

UniMate USB/TRRS PKI token

Version 5.1.6 (Firmware)
Hongsi 08k 5/9/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 )

"The UniMate USB/TRRS (Audio Port) PKI token is a hardware cryptographic module. It provides digital signature generation/verification for online authentications and data encryption/decryption for online transactions. UniMate provides the USB interface and audio port (TRRS) that can connect the module to a computer and smart mobile device."

06/27/14: Updated implementation information;

2835 Sage Microelectronics Corp
910 Campisi Way
Suite-2A
Campbell, CA 95008
USA

-Chris TSU
TEL: 408-309-9118

-Larry Ko
TEL: 408-768-1378

AES Library

Version 1.0 (Firmware)
Part # S261, Rev. A
Sagemicro S261 (Hardware IC CHIP) with firmware 5/9/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"AES Library implements 128/256 bit AES key. Supports ECB/CBC/XTS Mode"

2834 Siemens PLM Software
5800 Granite Parkway
Suite 600
Plano, TX 75024
USA

-Vikas Singh
TEL: 651-855-6176

Teamcenter Cryptographic Module

Version 2.0
Intel Xeon w/ Windows 7 SP1; Intel Core 2 Duo w/ SUSE Linux 11.2; Intel Core i5 w/ Mac OS X 10.8 5/2/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Teamcenter powers innovation and productivity by connecting people and processes with knowledge. Teamcenter is the de facto standard for PLM deployment, providing solutions to drive business performance goals."

2833 Xirrus, Inc.
2101 Corporate Center Drive
Thousand Oaks, CA 91320
USA

-Mike de la Garrigue
TEL: 805-262-1655
FAX: 805-262-1601

AOS Crypto Module

Version 6.0 (Firmware)
Cavium Octeon CN6000 series; Cavium Octeon CN5000 series 5/2/2014 CBC ( e/d; 128 , 256 );

"Xirrus AOS crypto library implementation."

08/07/14: Added new tested information;

2832 Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

-Tim Myers
TEL: 800-Microsoft

Windows Storage Server 2012 R2, Microsoft Windows RT 8.1, Microsoft Surface with Windows RT 8.1, Microsoft Surface Pro with Windows 8.1, Microsoft Surface 2, Microsoft Surface Pro 2, Microsoft Windows Phone 8.1, Microsoft Windows Embedded 8.1 Industry and Microsoft StorSimple 8100 SymCrypt Cryptographic Implementations

Version 6.3.9600
NVIDIA Tegra 4 Quad-Core w/ Microsoft Surface 2 w/ Windows RT 8.1 (ARMv7 Thumb-2); AMD Athlon 64 X2 without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x64); AMD Athlon 64 X2 without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x86); AMD A4 without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x64); AMD A4 without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x86); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Embedded 8.1 Industry Enterprise (x64); Intel Core i7 without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x64); Intel Core i7 without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x86); Intel Pentium without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x64); Intel Pentium without AES-NI w/ Windows Embedded 8.1 Industry Enterprise (x86); AMD Athlon 64 X2 without AES-NI w/ Windows 8.1 Enterprise (x64); AMD Athlon 64 X2 without AES-NI w/ Windows 8.1 Enterprise (x86); AMD A4 without AES-NI w/ Windows 8.1 Enterprise (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows 8.1 Enterprise (x64); AMD A4 without AES-NI w/ Windows 8.1 Enterprise (x86); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Windows 8.1 Enterprise (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows 8.1 Enterprise (x64); Intel Core i7 without AES-NI w/ Windows 8.1 Enterprise (x86); Intel Pentium without AES-NI w/ Windows 8.1 Enterprise (x64); Intel Pentium without AES-NI w/ Windows 8.1 Enterprise (x86); AMD Athlon 64 X2 without AES-NI w/ Windows Server 2012 R2 (x64); AMD A4 without AES-NI w/ Windows Server 2012 R2 (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Server 2012 R2 (x64); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Windows Server 2012 R2 (x64); Intel Core i7 without AES-NI w/ Windows Server 2012 R2 (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Server 2012 R2 (x64); Intel Pentium without AES-NI w/ Windows Server 2012 R2 (x64); AMD Athlon 64 X2 without AES-NI w/ Windows Storage Server 2012 R2 (x64); AMD A4 without AES-NI w/ Windows Storage Server 2012 R2 (x64); AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Storage Server 2012 R2 (x64); Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Windows Storage Server 2012 R2 (x64); Intel Core i7 without AES-NI w/ Windows Storage Server 2012 R2 (x64); Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Windows Storage Server 2012 R2 (x64); Intel Pentium without AES-NI w/ Windows Storage Server 2012 R2 (x64); NVIDIA Tegra 3 Quad-Core w/ Windows RT 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon S4 w/ Windows Phone 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon 400 w/ Windows Phone 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon 800 w/ Windows Phone 8.1 (ARMv7 Thumb-2); Qualcomm Snapdragon S4 w/ Windows RT 8.1 (ARMv7 Thumb-2); NVIDIA Tegra 3 Quad-Core w/ Microsoft Surface w/ Windows RT 8.1 (ARMv7 Thumb-2) ;  Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro 2 w/ Microsoft Windows 8.1 Enterprise (x64); Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro w/ Windows 8.1 Pro (x64); Intel Core i5 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Surface Pro 2 w/ Windows 8.1 Pro (x64); Intel Xeon E5-2648Lwith AES-NI w/ Microsoft StorSimple 8100 w/ Microsoft Windows Server 2012 R2 5/2/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verfication ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM IV Generated: ( Externally ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 8 , 1016 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"The Microsoft Windows Next Generation Cryptographic algorithm implementation provides enhanced support for AES, AES DRBG, HMAC, SHS (SHA), and Triple-DES. All implementations are packaged into a library used by Microsoft and other third-party applications."

07/21/14: Added new tested information;
12/11/14: Added new tested information;

2830 Alcatel-Lucent
600 - 700 Mountain Avenue
Murray Hill, NJ 07974
USA

-Yik-Ming Ho
TEL: +1 908 582 5301

Alcatel-Lucent PSS32/16 Crypto-SNMP Engine

Version 16.1-libengine-264
MPC8555 w/ Linux 2.6.10 4/25/2014 CFB128 ( e/d; 256 ); CTR ( int only; 256 )

"The Alcatel-Lucent PSS32/16 Crypto-SNMP Engine offers an integrated AES256 encryption of control/status information for providing an equivalent level of security for the control link as is provided for the transmission links using the Alcatel-Lucent Crypto-OTU2 Engine."

2829 Alcatel-Lucent
600 - 700 Mountain Avenue
Murray Hill, NJ 07974
USA

-Yik-Ming Ho
TEL: +1 908 582 5301

Alcatel-Lucent PSS4 Crypto-SNMP Engine

Version 16.1-libengine-264
MPC8347 w/ Linux 2.6.10 4/25/2014 CFB128 ( e/d; 256 ); CTR ( int only; 256 )

"The Alcatel-Lucent PSS4 Crypto-SNMP Engine offers an integrated AES256 encryption of control/status information for providing an equivalent level of security for the control link as is provided for the transmission links using the Alcatel-Lucent Crypto-OTU2 Engine."

2828 Alcatel-Lucent
600 March Road
Ottawa, Ontario K2K 2E6
Canada

-Charles Fizzell
TEL: +1 613-784-4819
FAX: +1 613-599-3663

Alcatel-Lucent Crypto-OTU2 Engine

Version Profile 1.3.1 (Firmware)
Altera FPGA 4/25/2014 ECB ( e only; 256 ); CTR ( int only; 256 )

"The Alcatel-Lucent Crypto-OTU2 Engine offers an integrated transport solution providing an ultra low latency wirespeed encryption for 10GE, OTU-2, 8G and 10G Fiber Channel client signals."

2827 The Athena Group, Inc.
408 West University Avenue, Suite 306
Gainesville, FL 32601-5289
USA

-Stuart Audley
TEL: 352-371-2567
FAX: 352-373-5182

-Jon Mellott
TEL: 352-371-2567
FAX: 352-373-5182

TeraFire AES

Part # AES-A100
N/A 4/25/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC ( ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 104 , 408 ) ; AAD Lengths tested: ( 0 , 128 , 384 , 160 , 720 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Athena’s TeraFire AES IP cores are constructed using a modular architecture - comprising cipher cores, key schedule generators, and modes modules - that can be optimized to meet the functional, performance, area, and power requirements of your ASIC/FPGA applications. Side channel attack resistance available. www.athena-group.com"

2826 Pitney Bowes, Inc.
37 Executive Drive
Danbury, CT 06810
USA

-Dave Riley
TEL: 203-796-3208

libaes

Version 01.01.0008 (Firmware)
Part # MAX32590 Rev B4
N/A 4/9/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"Pitney Bowes X4 HSM Cryptographic Module"

2825 Linear Technology Corporation
1630 McCarthy Blvd
Milpitas, CA 95035
USA

-Ross Yu
TEL: 408-432-1900
FAX: 408-434-0507

-Yuri Zats
TEL: 408-432-1900
FAX: 408-434-0507

Dust Cryptographic Library

Version 3 (Firmware)
AT91SAM9G20B 4/9/2014 ECB ( e/d; 128 ); CBC ( e/d; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 2 - 2 ) (Payload Length Range: 2 - 2 ( Nonce Length(s): 13 (Tag Length(s): 4

"Dust Networks Cryptographic Library 3 used in SmartMesh WirelessHART manager products."

2824 OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamstown, MD 27101
USA

-Steve Marquess
TEL: 877-673-6775

OpenSSL FIPS Object Module

Version 2.0.7
Freescale e500v2 (PPC) w/ Linux 2.6; Intel Core i7-3612QE (x86) without AES-NI w/ AcanOS 1.0; Intel Core i7-3612QE (x86) with AES-NI w/ AcanOS 1.0; Feroceon 88FR131 (ARMv5) w/ AcanOS 1.0; Intel Xeon E5440 (x86) without AES-NI w/ FreeBSD 8.4; Xeon E5-2430L (x86) without AES-NI w/ FreeBSD 9.1; Xeon E5-2430L (x86) with AES-NI w/ FreeBSD 9.1; Xeon E5645 (x86) without AES-NI w/ ArbOS 5.3; ASPEED AST-Series (ARMv5) w/ Linux ORACLESP 2.6; Emulex PILOT3 (ARMv5) w/ Linux ORACLESP 2.6; Xeon E5645 (x86) with AES-NI w/ ArbOS 5.3 ;  Xeon E5-2430L (x86) without AES-NI w/ FreeBSD 9.2; Xeon E5-2430L (x86) with AES-NI w/ FreeBSD 9.2 5/9/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/."

05/14/14: Added new tested information;
07/03/14: Added new tested information;
07/178/14: Added new tested information;
07/31/14: Updated implementation information;

2823 Infotecs
41 Madison Avenue
New York, New York 10010
USA

-Andrey Krasikov
TEL: +1 (678) 431-9502

-Philippe Dieudonné
TEL: +7 (495) 737-6192

ViPNet Common Crypto Core Library (User Space)

Version 1.0
Intel Core i7 w/ Windows 8.1 64-bit; ARMv7 w/ Android 4.4 4/9/2014 ECB ( e/d; 256 ); CFB128 ( e/d; 256 ); CTR ( int only; 256 )

CMAC (Generation/Verification ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 13 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

"The ViPNet Common Crypto Core Library is a software library that provides cryptographic services to a number of ViPNet applications via an API. It is available in user space and kernel driver implementations on a wide range of operational systems. User space library and kernel library use the same base source code."

2822 Infotecs
41 Madison Avenue
New York, New York 10010
USA

-Andrey Krasikov
TEL: +1 (678) 431-9502

-Philippe Dieudonné
TEL: +7 (495) 737-6192

ViPNet Common Crypto Core Library (Kernel)

Version 1.0
Intel Core i7 w/ Windows 8.1 64-bit 4/9/2014 ECB ( e/d; 256 ); CFB128 ( e/d; 256 ); CTR ( int only; 256 )

CMAC (Generation/Verification ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 13 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

"The ViPNet Common Crypto Core Library is a software library that provides cryptographic services to a number of ViPNet applications via an API. It is available in user space and kernel driver implementations on a wide range of operational systems. User space library and kernel library use the same base source code."

2821 RICOH COMPANY, LTD.
Ricoh Building, 8-13-1 Ginza
Chuo-ku, Tokyo 104-8222
Japan

-Ricoh Fips Team

Ic ctrl2 Cipher

Part # RB5C688A
N/A 4/9/2014 CBC ( e/d; 256 );

"The Ic ctrl2 Cipher is hardware implementation for RICOH ASIC RB5C688A."

2820 RICOH COMPANY, LTD.
Ricoh Building, 8-13-1 Ginza
Chuo-ku, Tokyo 104-8222
Japan

-Ricoh Fips Team

Ic ctrl1 Cipher

Part # MB8AC1292PBH-G-AWE1
N/A 4/9/2014 CBC ( e/d; 256 );

"The Ic ctrl1 Cipher is hardware implementation for RICOH ASIC MB8AC1292PBH-G-AWE1."

2819 RICOH COMPANY, LTD.
Ricoh Building, 8-13-1 Ginza
Chuo-ku, Tokyo 104-8222
Japan

-Ricoh Fips Team

LPUX NVRAM Encryption Driver

Version 1.1
Intel Celeron Processor w/ Customized NetBSD 2.0.3 4/9/2014 ECB ( e/d; 256 );

"The LPUX NVRAM Encryption Driver is software for RICOH MFP controller. The module implements AES EBC mode functions."

2818 Morpho
18 chausee Jules Cesar
Osny, France 95520
France

-Omar Derrouazi
TEL: +33158116971

IDeal CitizTM v2.0 Open

Part # --
N/A 4/9/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 1024 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 1024 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 1024 ; Tag Len(s) Min: 16 Max: 16 )

"The IDeal Citiz™ v2.0 Open is a single chip cryptographic module, which combines an implementation of the Sun Java Card Version 3.0.2 Classic Edition and GlobalPlatform Version 2.1.1 specifications on a dual interface chip (ISO 7816 contact and ISO 14443 contactless interface communication protocols)."

2817 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

IOS Common Cryptographic Module (IC2M) Algorithm Module

Version 2.0 (Firmware)
AMCC PowerPC 405EX; Cavium CN5020; Cavium CN5220; Cavium CN5230; Freescale 8752E; Freescale SC8548H; Intel Xeon; MPC8358E; MPC8572C; PowerPC 405 3/31/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 32 ; Tag Len(s) Min: 1 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 512 ) ; AAD Lengths tested: ( 0 , 128 , 128 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"IOS Common Crypto Module"

2816 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN3000 Ethernet Firmware Crypto Library

Version 2.3 (Firmware)
Xilinx XC4VLX100 3/31/2014 ECB ( e only; 128 , 256 ); CTR ( int only; 128 , 256 )

"The CN3000 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN3000 Series Encryptors."

2815 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN1000 Ethernet Firmware Crypto Library

Version 2.5 (Firmware)
Xilinx XC4VLX60 3/31/2014 ECB ( e only; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"The CN1000 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN1000 Series Encryptors."

2814 Microhard Systems Inc
150 Country Hills Landing NW
Calgary, AB T3K 5P3
Canada

-Lihong Lei
TEL: 403-248-0028
FAX: 403-248-2762

-Jeff Catherwood
TEL: 403-248-0028
FAX: 403-248-2762

nano IP Series Wireless AES Encryption

Version 2.0.10 (Firmware)
Atmel AT91SAM9G20 3/31/2014 CBC ( e/d; 128 , 256 );

"The Microhard AES Encryption Algorithm is used in security modules in Microhard Systems Inc radio system products."

2813 Microhard Systems Inc
150 Country Hills Landing NW
Calgary, AB T3K 5P3
Canada

-Sergey Gerasimenko
TEL: 403-248-0028
FAX: 403-248-2762

M-AES

Version 1.217 (Firmware)
STM3232F103ZE 3/31/2014 ECB ( e/d; 128 , 192 , 256 );

"The Microhard AES Encryption Algorithm is used in security modules in Microhard Systems Inc radio system products."

2812 Motorola Solutions, Inc.
One Motorola Plaza
Holtsville, NY 11742
USA

-Tom McKinney
TEL: (631) 738-3586
FAX: (631) 738-4164

Wireless LAN AES-CCMP module

Version 1.01 (Firmware)
Part # WL1283CYFVR
TI WL1283 3/31/2014 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 1 - 32 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"Wireless LAN AES-CCMP module implements AES-CCMP, used for Wireless LAN data encryption and decryption."

05/02/14: Updated implementation information;
06/11/14: Updated implementation information;

2811 Yubico, Inc.
228 Hamilton Avenue
3rd Floor
Palo Alto, CA 94301
USA

-Jakob Ehrensvard
TEL: +1-408-774-4064

Yubikey

Version 2.5.1 (Firmware)
SunplusIT 8-bit CPU 3/21/2014 ECB ( e only; 128 );

"The Yubikey is a two-factor authentication device supporting OATH-HOTP as well as the Yubico OTP algorithm. The device is connected via the USB ports and emulates a generic USB keyboard to allow a true driver-less installation."

09/19/14: Updated implementaiton information;

2810 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung Kernel Cryptographic Module (Assembly)

Version SKC1.4.1.3
ARM 7 w/ Android KitKat 4.4.2 3/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"General purpose Cryptographic services available for Linux kernel used by Samsung devices to provide secured services. This tests covers the asm AES and SHA1 implementations."

07/17/14: Updated implementation information;

2809 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung Kernel Cryptographic Module

Version SKC1.4.1.3
ARM 7 w/ Android KitKat 4.4.2 3/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"General purpose Cryptographic services available for Linux kernel used by Samsung devices to provide secured services."

07/17/14: Updated implementation information;

2808 RSA, The Security Division of EMC
174 Middlesex Turnpike
Bedford, MA 01730
USA

-Sandy Carielli
TEL: 781-515-7510

RSA BSAFE Crypto-C Micro Edition (ME)

Version 3.0.0.21
MV78230 ARMv7 w/ TimeSys Linux Kernel 2.6.33RT; PJ4B-MP ARMv7 w/ TimeSys Linux Kernel 3.0.0 3/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"RSA BSAFE® Crypto-C ME software is designed to help protect sensitive data as it is stored using strong encryption techniques to provide a persistent level of protection. The software supports a wide range of industry standard encryption algorithms offering developers the flexibility to choose the appropriate option to meet their requirements."

2807 Vormetric, Inc.
2545 North 1st Street
San Jose, CA 95131
USA

-Mike Yoder
TEL: 408-433-6059

-Ashvin Kamaraju
TEL: 408-433-6043

Vormetric Encryption Expert Cryptographic Module

Version 2.0
Power w/ AIX 6.1; Itanium w/ HPUX 11iv3; Intel Xeon with AES-NI w/ RHEL 6.3; Intel Xeon with AES-NI w/ SLES 11 SP 2 3/21/2014 CBC ( e/d; 128 , 256 );

"This module is a subset of the Vormetric Encryption Expert Agent, which in turn is part of the Vormetric Data Security solution. The Vormetric Encryption Expert Cryptographic Module interacts with the Vormetric Data Security Manager, which is itself a cryptographic hardware module."

2806 Atmel Corporation
2325 Orchard Parkway
San Jose, CA 95131
US

-Jim Hallman
TEL: (919) 846-3391

-Todd Slack
TEL: (719) 540-3021

AT97SC3205

Part # AT97SC3205
N/A 3/21/2014 ECB ( e/d; 128 ); CTR ( int only; 128 )

"The AT97SC3205 is a single chip cryptographic module used for cryptographic key generation, key storage and key management as well as generation and secure storage for digital certificates."

04/03/14: Updated vendor information;

2805 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-David Finkelstein
TEL: 650-527-0714

Symantec PGP Cryptographic Engine

Version 4.3
Dell Precision M6400 Intel Core i7 w/ Linux 64 bit RHEL with AESNI 3/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email. It includ"

2804 Seagate Technology, LLC.
389 Disc Drive
Longmont, CO 80503
USA

-Monty Forehand
TEL: 720-684-2835
FAX: 720-684-2733

ARMv7 GCM in Firmware

Version 1.0 (Firmware)
ARM Cortex-R Family 3/21/2014

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 256 , 8 , 24 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 24 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2803

"FW implementation of GCM in Seagate''s self encryption disk drives (SEDs)."

2803 Seagate Technology, LLC.
389 Disc Drive
Longmont, CO 80503
USA

-Monty Forehand
TEL: 720-684-2835
FAX: 720-684-2733

Karnak AES in Hardware

Part # Karnak
N/A 3/21/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"AES encryption and decryption core of the controller ASIC ''Karnak'' in Seagate''s Self-Encrypting Drives (SEDs)."

2802 Microsemi Corporation
3601 E University Drive
Phoenix, AZ 85034
USA

-Bob Lazaravich
TEL: 602-437-1520

-Rudy Sterbenz
TEL: 602-437-1520

XTS-AES-256-CIPHER.2.0

Version 2.0 (Firmware)
MODELSIM PE 10.0b 3/7/2014 ECB ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"XTS-AES-256-CIPHER.2.0 is a faster, second generation IP core implementing XTS-AES-256. Microsemi integrates this IP core into the ARMOR II processor to support hardware based encryption and decryption in its line of solid state drive (SSD) and secure storage products."

2801 Engage Communication, Inc.
9565 Soquel Drive
Suite 201
Aptos, CA 95003
USA

-Gian-Carlo Bava
TEL: 831-688-1021 ext 106

-Shaun Tomaszewski
TEL: 831 688-1021 ext 104

BlackVault Crypto-GP-AES

Version 7.0.1 (Firmware)
Part # 007-BVES-01
ARM926EJ-S 3/7/2014 OFB ( e/d; 256 );

"The GP Cryptography Engine is a general purpose hardware cryptography engine."

2800 Xilinx, Inc.
2100 Logic Drive
San Jose, CA 95124
USA

-James Wesselkamper
TEL: 505-798-6863

UltraScale FPGAs

Version N/A (Firmware)
Part # UltraScale FPGA, AES-GCM
UltraScale FPGA, AES-GCM Decryptor #5 3/7/2014 ECB ( e only; 256 ); CTR ( ext only; 256 )

GCM (KS: AES_256( ) Tag Length(s): 128 )
PT Lengths Tested: ( 128 , 256 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"AES-GCM 256 decryption of FPGA bitstreams"

2799 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-Bill Zhao
TEL: 650-527-0683

Symantec PGP Cryptographic Engine

Version 4.3
Dell Precision M6400 Intel Core 2 Duo w/ Windows 7 64 bit 3/7/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email."

2798 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN1000 and CN3000 Series Common Crypto Library

Version 4.4 (Firmware)
Freescale MPC8280 3/7/2014 CFB128 ( e/d; 128 , 256 );

"The CN1000 and CN3000 Series Common Crypto Library Module provides FIPS 140-2 approved cryptographic algorithms for the CN1000 and CN3000 Series Encryptors. Based upon OpenSSL the Library provides an Application Programming Interface (API) to support security relevant services."

2797 Dell SonicWALL
2001 Logic Drive
San Jose, CA 95124
USA

-Gary Tomlinson
TEL: (408) 962-6756
FAX: (408) 745-9300

-Usha Sanagala
TEL: (408) 962-6248
FAX: (408) 745-9300

libcrypto

Version 1.0.1e (Firmware)
Intel Core 2 Duo; Intel Celeron; Intel Xeon Nehalem with AES-NI 2/28/2014 ECB ( e/d; 256 ); CBC ( e/d; 128 , 256 );

"AES Component implements all AES key sizes and modes to allow flexibility and efficiency. OpenSSL 1.0.1e implementation with minor patches."

2796 Dell SonicWALL
2001 Logic Drive
San Jose, CA 95124
USA

-Gary Tomlinson
TEL: (408) 962-6756
FAX: (408) 745-9300

-Usha Sanagala
TEL: (408) 962-6248
FAX: (408) 745-9300

ojdk

Version 1.7.0_147 (Firmware)
Intel Core 2 Duo; Intel Celeron; Intel Xeon Nehalem with AES-NI 2/28/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"Using existing Debian Stable Open JDK binaries."

2795 Dell SonicWALL
2001 Logic Drive
San Jose, CA 95124
USA

-Gary Tomlinson
TEL: (408) 962-6756
FAX: (408) 745-9300

-Usha Sanagala
TEL: (408) 962-6248
FAX: (408) 745-9300

avcrypto

Version 10.7.1 (Firmware)
Intel Core 2 Duo; Intel Celeron; Intel Xeon Nehalem with AES-NI 2/28/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"AES Component implements all AES key sizes and modes to allow flexibility and efficiency. AES/TDES/SHA/HMAC derived from OpenSSL implementations."

2794 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN4010 and CN6010 Series Common Crypto Library

Version 2.4 (Firmware)
ARM Cortex A9 2/28/2014 CFB128 ( e/d; 128 , 256 );

"The CN4010 and CN6010 Series Common Crypto Library Module provides FIPS 140-2 approved cryptographic algorithms for the CN4010 and CN6010 Series Encryptors. Based upon OpenSSL the Library provides an Application Programming Interface (API) to support security relevant services."

2793 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6000 Series Common Crypto Library

Version 2.4 (Firmware)
Intel ATOM 2/28/2014 CFB128 ( e/d; 128 , 256 );

"The CN6000 Series Common Crypto Library Module provides FIPS 140-2 approved cryptographic algorithms for CN6000 Series Encryptors. Based upon OpenSSL the Common Crypto Library provides an Application Programming Interface (API) to support security relevant services."

2792 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6010 Ethernet Firmware Crypto Library

Version 1.3 (Firmware)
Xilinx XC7Z020 2/28/2014 ECB ( e only; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 384 , 1024 , 368 , 1016 ) ; AAD Lengths tested: ( 128 , 640 , 112 , 688 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The CN6010 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption and TRANSEC functionality for the CN6010 Series Encryptor."

2791 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-john.weston@senetas.com
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6040 Ethernet Firmware Crypto Library

Version 1.3 (Firmware)
Xilinx XC6VLX130T 2/28/2014 ECB ( e only; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 384 , 1024 , 368 , 1016 ) ; AAD Lengths tested: ( 128 , 640 , 112 , 688 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The CN6040 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption and TRANSEC functionality for the CN6040 Series Encryptor."

2790 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6040 Fibre Channel Firmware Crypto Library

Version 1.3 (Firmware)
Xilinx XC6VLX130T 2/28/2014 CFB128 ( e/d; 256 );

"The CN6040 Fibre Channel Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN6040 Series Encryptor."

2789 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6100 Ethernet Firmware Crypto Library

Version 1.4 (Firmware)
Xilinx XC6VLX195T 2/28/2014 ECB ( e only; 128 , 256 ); CTR ( int only; 128 , 256 )

"The CN6100 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption and TRANSEC functionality for the CN6100 Series Encryptor."

2788 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN4010 Ethernet Firmware Crypto Library

Version 1.3 (Firmware)
Xilinx XC7Z020 2/28/2014 ECB ( e only; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 384 , 1024 , 368 , 1016 ) ; AAD Lengths tested: ( 128 , 640 , 112 , 688 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The CN4010 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption and TRANSEC functionality for the CN4010 Series Encryptor."

2787 Hitachi, Ltd.
322-2 Nakazato
Odawara-shi, Kanagawa-ken 250-0872
Japan

-Hitachi, Ltd. Storage Systems Development Operation
TEL: +81-465-49-1111

Hitachi Storage Backend Encryption Engine

Part # 2.0
N/A 2/28/2014 ECB ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"n/a"

2786 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-David Finkelstein
TEL: 650-527-0714

Symantec PGP Cryptographic Engine

Version 4.3
Apple MacBook Pro Intel Core 2 Duo w/ Mac OS X 10.7 2/28/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email. It includes"

2785 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

IOS

Version 1.0
Intel Atom D2500 w/ CentOS Linux 6.4 2/21/2014 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; AAD Lengths tested: ( 0 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"IOS software cryptographic implementations used within Cisco devices to provide cryptographic functions."

2784 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

IOS

Version 1.0 (Firmware)
Freescale MPC8358E; Freescale MPC8548E 2/21/2014 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; AAD Lengths tested: ( 0 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"IOS software cryptographic implementations used within Cisco devices to provide cryptographic functions."

2783 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

IOS Common Cryptographic Module (IC2M) Algorithm Module-Extended

Version 2.0 (Firmware)
AMCC PowerPC 405EX; Cavium CN5020; Cavium CN5220; Cavium CN5230; Freescale 8752E; Freescale SC8548H; Intel Xeon; MPC8358E; MPC8572C; PowerPC 405 2/21/2014 CBC ( e/d; 128 , 192 , 256 );

"IOS Common Crypto Module."

04/04/14: Updated implementation information;

2782 Mocana Corporation
710 Sansome Street
San Francisco, CA 94111
USA

-James Blaisdell
TEL: (415) 617-0055
FAX: (415) 617-0056

Mocana Cryptographic Library

Version 5.5.1f
ARMv7 w/ Android 4.4 2/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 128 , 128 ) ; OtherIVLen_Supported
GMAC_Supported
RNG: Val# 1271

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Mocana Cryptographic Module is the engine of Mocana’s Device Security Framework - a software framework that secures all aspects of a system. The Device Security Framework helps applications and device designers reduce development costs and dramatically enhance cryptographic performance. For details see www.mocana.com."

2781 Vitesse Semiconductor Corporation
4721 Calle Carga
Camarillo, CA 93012
USA

-Sailesh Rupani
TEL: +91-40-66860150
FAX: +91-40-66860111

-K. Surya Prakash
TEL: +91-40-66860116
FAX: +91-40-66860111

Vitesse Intellisec 10G PHY

Version 3.0.4 (Firmware)
Mentor Graphics Questasim 10.0d 2/21/2014 ECB ( e only; 128 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 256 , 1024 , 136 , 1016 ) ; AAD Lengths tested: ( 128 , 256 , 160 , 224 ) ; 96BitIV_Supported
GMAC_Supported

"Vitesse VSC8490/91 Intellisec PHY devices implements AES GCM encryption and decryption to support IEEE 802.1AE MACsec standard."

07/01/14: Updated implementation information;

2780 Vitesse Semiconductor Corporation
4721 Calle Carga
Camarillo, CA 93012
USA

-Sailesh Rupani
TEL: +91-40-66860150
FAX: +91-40-66860111

-K. Surya Prakash
TEL: +91-40-66860116
FAX: +91-40-66860111

Vitesse Intellisec 1G PHY

Version 3.0.4 (Firmware)
Mentor Graphics Questasim 10.0d 2/21/2014 ECB ( e only; 128 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 256 , 1024 , 136 , 1016 ) ; AAD Lengths tested: ( 128 , 256 , 160 , 224 ) ; 96BitIV_Supported
GMAC_Supported

"Vitesse VSC8582/84 Intellisec PHY devices implements AES GCM encryption and decryption to support IEEE 802.1AE MACsec standard."

07/01/14: Updated implementation information;

2779 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS FortiASIC CP8 Cryptographic Library

Part # CP8
N/A 2/21/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiASIC CP8 Cryptographic Library 5.0 GA Patch 6"

2778 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS FortiASIC CP6 Cryptographic Library

Part # CP6
N/A 2/21/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiASIC CP6 Cryptographic Library 5.0 GA Patch 6"

2777 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS FortiASIC CP7 Cryptographic Library

Part # CP7
N/A 2/21/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiASIC CP7 Cryptographic Library 5.0 GA Patch 6"

2776 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-2951

Fortinet FortiOS SSL Cryptographic Library

Version 5.0 GA Patch 6 (Firmware)
ARM v5 Compatible; Intel Atom; Intel Celeron; Intel i3-540 Dual Core; Intel i5-750 Quad Core; Intel Xeon 2/21/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiOS SSL Cryptographic Library 5.0 GA Patch 6"

2775 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-2951

Fortinet FortiOS FIPS Cryptographic Library

Version 5.0 GA Patch 6 (Firmware)
ARM v5 Compatible; Intel Atom; Intel Celeron; Intel i3-540 Dual Core; Intel i5-750 Quad Core; Intel Xeon 2/21/2014 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiOS FIPS Cryptographic Library 5.0 GA Patch 6"

2774 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

VMware Cryptographic Module

Version 0.9.8r
Intel Xeon w/ VMware vCloud Networking and Security 5.5.0a vShield Manager OS 2/21/2014 CBC ( e/d; 128 , 192 , 256 );

"The VMware Cryptographic Module is a software library providing FIPS 140-2 -approved cryptographic algorithms and services for protecting data-in-transit and data-at-rest on VMware products and platforms."

2773 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

VMware Cryptographic Module

Version 1.0.1e-64
Intel Xeon w/ VMware ESXi 5.5 2/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The VMware Cryptographic Module is a software library providing FIPS 140-2 -approved cryptographic algorithms and services for protecting data-in-transit and data-at-rest on VMware products and platforms."

2772 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

VMware Cryptographic Module

Version 1.0.1e-32
Intel Xeon w/ VMware ESXi 5.5 2/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The VMware Cryptographic Module is a software library providing FIPS 140-2 -approved cryptographic algorithms and services for protecting data-in-transit and data-at-rest on VMware products and platforms."

2771 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

VMware Cryptographic Module

Version 0.9.8h
Intel Xeon w/ VMware vCloud Networking and Security 5.5.0a Data Security OS 2/21/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The VMware Cryptographic Module is a software library providing FIPS 140-2 -approved cryptographic algorithms and services for protecting data-in-transit and data-at-rest on VMware products and platforms."

2770 Altera Denmark Technology Center
Hoerkaer 12A, 3
Herlev, n/a 2730
Denmark

-Soeren Laursen
TEL: +45 88701912

-Morten Stribaek
TEL: +45 88701945

XTS_GMAC_CG Core

Version XTS_GMAC_CG_1.0 (Firmware)
Mentor Questa Slm 10.2c 2/14/2014

GCM (KS: AES_256( e/d ) Tag Length(s): 128 )
AAD Lengths tested: ( 896 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported AES Val#2769

XTS( ) KS: XTS_256( (e/d) (f) ))

"100Gbps FPGA core. AES-XTS 256 bit key, 128 bit multiple length text. Assocated GMAC, 256 bit key, 128 bit multiple length AAD, zero length PT."

2769 Altera Denmark Technology Center
Hoerkaer 12A, 3
Herlev, n/a 2730
Denmark

-Soeren Laursen
TEL: +45 88701912

-Morten Stribaek
TEL: +45 88701945

AES_ENC/AES_DEC Library

Version AES_1.0 (Firmware)
Mentor Questa Slm 10.2c 2/14/2014 ECB ( e/d; 256 );

"100Gbps FPGA core. AES-XTS 256 bit key, 128 bit multiple length text. Assocated GMAC, 256 bit key, 128 bit multiple length AAD, zero length PT."

2768 Engage Communication, Inc.
9565 Soquel Drive
Suite 201
Aptos, CA 95003
USA

-Gian-Carlo Bava
TEL: 831-688-1021 ext 106

-Shaun Tomaszewski
TEL: 831-688-1021 ext 104

BlackVault Crypto-OSS

Version 2.0.5 (Firmware)
ARM926EJ-S 2/14/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 1024 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Engage Communication BlackVault cryptographic library provides a FIPS 140-2 approved Application Programming Interface (API) to the BlackVault Hardware Security Module (HSM). The library is based on OpenSSL FIPS version 2.0.5."

2767 Engage Communication, Inc.
9565 Soquel Drive
Suite 201
Aptos, CA 95003
USA

-Gian-Carlo Bava
TEL: 831-688-1021 ext 106

-Shaun Tomaszewski
TEL: 831-688-1021 ext 104

BlackVault Crypto-MEMC-AES

Part # 007-BVES-01
N/A 2/14/2014 ECB ( e/d; 128 );

"The MEMC Cryptography Engine is a hardware cryptography engine encrypting data stored in memory."

05/09/14: Added new tested information;

2766 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-David Finkelstein
TEL: 650-527-0714

Symantec PGP Cryptographic Engine

Version 4.3
Dell Precision M6400 Intel Core 2 Duo w/ Linux 32-bit RHEL 6.2 2/14/2014 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"The Symantec PGP Cryptographic Engine is a FIPS 140-2 validated software only cryptographic module. The module implements the cryptographic functions for Symantec Encryption products, including the Symantec Drive Encryption, Symantec Desktop Email, Symantec File Share Encryption, Symantec Encryption Desktop, and Symantec Gateway Email. It includes"

2765 Motorola Solutions, Inc.
6480 Via Del Oro
San Jose, CA 95119
USA

-Udayan Borkar
TEL: 408-528-2361
FAX: 408-528-2903

-Colin Cooper
TEL: 408-528-2871
FAX: 408-528-2903

Quicksec

Version 3.0 (Firmware)
Broadcom XLR v4.0 2/14/2014 CBC ( e/d; 128 , 192 , 256 );

"Quicksec is a third party source code, which provides IPsec and IKE v1 cryptographic services."

2764 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000D TLS1.0 Implementation

Version 2.2 (Firmware)
Altera NIOS II 2/7/2014 CBC ( e/d; 256 );

"The Oracle StorageTek T10000D Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world''s fastest write speeds to a native 8.5 TB of magnetic tape storagel; making it ideal for data center operations with growing data volume."

2763 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000D OKM Agent Crypto Engine

Version 2.2 (Firmware)
Altera NIOS II 2/7/2014 ECB ( e/d; 256 );

"The Oracle StorageTek T10000D Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world''s fastest write speeds to a native 8.5 TB of magnetic tape storagel; making it ideal for data center operations with growing data volume."

2762 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000D DRBG Implementation

Version 2.2 (Firmware)
Altera NIOS II 2/7/2014 ECB ( e only; 256 );

"The Oracle StorageTek T10000D Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world''s fastest write speeds to a native 8.5 TB of magnetic tape storagel; making it ideal for data center operations with growing data volume."

2761 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000D Firmware Cryptography

Version 2.2 (Firmware)
Altera NIOS II 2/7/2014 ECB ( e only; 256 );

CCM (KS: 256 ) (Assoc. Data Len Range: 0 - 0 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 12 13 (Tag Length(s): 16 )

"The Oracle StorageTek T10000D Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world''s fastest write speeds to a native 8.5 TB of magnetic tape storagel; making it ideal for data center operations with growing data volume."

2760 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000D DCCM AES

Part # Altera DCCM FPGA
N/A 2/7/2014 ECB ( e only; 256 );

CCM (KS: 256 ) (Assoc. Data Len Range: 30 - 30 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 12 (Tag Length(s): 16 )

"The Oracle StorageTek T10000D Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world''s fastest write speeds to a native 8.5 TB of magnetic tape storage; making it ideal for data center operations with growing data volume."

2759 Microelectronics Technology INC.
No. 1, Innovation Road II
Hsinchu Science Park
Hsinchu, 300
Taiwan, R.O.C.

-James Lu
TEL: +886-3-5773335#2017
FAX: +886-3-5770936

-Randolph Chen
TEL: +886-3-5773335#2051
FAX: +886-3-5770936

MTI_AES

Version 1.0 (Firmware)
Aldec Active-HDL 9.3 2/7/2014 ECB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"MTI_AES is a synthesizable IP core which implements encryption and decryption functions of AES counter mode defined in FIPS PUB 197. It will be used in MTI AES-based products."

2758 N/A N/A N/A 1/29/2014 N/A
2757 N/A N/A N/A 1/29/2014 N/A
2756 SonicWALL, Inc.
2001 Logic Drive
San Jose, CA 95124
USA

-Usha Sanagala
TEL: 408-962-6248
FAX: 408-745-9300

SonicOS 6.2 for NSA and SM

Version 6.2 (Firmware)
Cavium Octeon Plus 66XX; Cavium Octeon Plus 68XX 1/24/2014 CBC ( e/d; 128 , 192 , 256 );

"The Dell SonicWALL family of firewalls tightly integrates intrusion prevention, malware protection, Application Intelligence and Control with real-time Visualization. Dell SonicWALL Reassembly-Free Deep Packet Inspection engine scans 100% of traffic and massively scales to meet needs of the most high-performance networks."

2755 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: 651-628-1633
FAX: 651-628-2706

Register Based AES

Version 1.0
Intel Core i5 with AES-NI and RdRand (Haswell CPU) w/ Windows 8 64-bit; Intel Atom without AES-NI or RdRand w/ Windows 8 32-bit; Intel Core i5 with AES-NI and RdRand w/ Windows 8 platform running in 64-bit UEFI mode; Intel Atom without AES-NI or RdRand w/ Windows 8 platform running in 32-bit UEFI mode; 1/10/2014 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

"This Cryptographic algorithm module provides cryptographic functionality for McAfee''s Endpoint Encryption product range."

2754 Cambium Networks
3800 Golf Road, Suite 360
Rolling Meadows, IL 60008
USA

-Mark Thomas
TEL: +44 1364 655500
FAX: +44 1364 654625

PTP700 AES

Version PTP700-AES-01-00 (Firmware)
TI TMS320C6657 1/10/2014 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); CTR ( int only; 128 )

"AES firmware library supporting 128 & 256 bit key sizes and ECB, CBC and CTR modes"

2753 Green Hills Software
30 W Sola Street
Santa Barbara, CA 93101
USA

-David Sequino
TEL: 206-310-6795
FAX: 978-383-0560

-Douglas Kovach
TEL: 727-781-4909
FAX: 727-781-2915

INTEGRITY Security Services Embedded Cryptographic Toolkit AES-GCM

Version 2.0.479
ARM Cortex A9 w/ Green Hills Software INTEGRITY Multivisor v4 for ARM 12/31/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 256 , 512 , 192 , 232 ) ; AAD Lengths tested: ( 0 , 256 , 512 , 192 , 232 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2745

"Green Hills Software ISS ECT is a standards-based crypto toolkit providing a flexible framework to integrate encryption, digital signatures and other security mechanisms into a wide range of applications. ISS ECT is designed to support multiple cryptographic providers with a single common API, easily targeted to a variety of Operating Systems."

2752 Motorola Solutions, Inc.
6480 Via Del Oro
San Jose, CA 95119
USA

-Udayan Borkar
TEL: 408-528-2361
FAX: 408-528-2903

-Colin Cooper
TEL: 408-528-2871
FAX: 408-528-2903

Openssl-fips

Version 1.1.1 (Firmware)
Broadcom XLR v4.0 12/31/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 );

"OpenSSL is a third party open source code, which provides cryptographic services to user space daemons. The device uses openssl-fips-1.1.1 version. RFS7000 userspace daemons (RADIUS, ntp, openssh, net-snmp, mapsh, etc) using openssl crypto services call fips_mode_set() from their respective initialization functions."

2751 Motorola Solutions, Inc.
6480 Via Del Oro
San Jose, CA 95119
USA

-Udayan Borkar
TEL: 408-528-2361
FAX: 408-528-2903

-Colin Cooper
TEL: 408-528-2871
FAX: 408-528-2903

Openssl-fips

Version 1.2 (Firmware)
Cavium Octeon Plus CN5000 Family 12/31/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 );

"OpenSSL is a third party open source code, which provides cryptographic services to user space daemons. The device uses openssl-fips-1.2 version. AP7131N userspace daemons (RADIUS, ntp, openssh, net-snmp, etc) using openssl crypto services call fips_mode_set() from their respective initialization functions."

2750 Green Hills Software
30 W Sola Street
Santa Barbara, CA 93101
USA

-David Sequino
TEL: 206-310-6795
FAX: 978-383-0560

-Douglas Kovach
TEL: 727-781-4909
FAX: 727-781-2915

INTEGRITY Security Services Embedded Cryptographic Toolkit AES-XTS

Version 2.0.415
ARM Cortex A9 w/ Green Hills Software INTEGRITY Multivisor v4 for ARM 12/31/2013

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) )) AES Val#2745

"Green Hills Software ISS ECT is a standards-based crypto toolkit providing a flexible framework to integrate encryption, digital signatures and other security mechanisms into a wide range of applications. ISS ECT is designed to support multiple cryptographic providers with a single common API, easily targeted to a variety of Operating Systems."

2749 Green Hills Software
30 W Sola Street
Santa Barbara, CA 93101
USA

-David Sequino
TEL: 206-310-6795
FAX: 978-383-0560

-Douglas Kovach
TEL: 727-781-4909
FAX: 727-781-2915

INTEGRITY Security Services Embedded Cryptographic Toolkit AES-CMAC

Version 2.0.415
ARM Cortex A9 w/ Green Hills Software INTEGRITY Multivisor v4 for ARM 12/31/2013

CMAC (Generation ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )
AES Val#2745

"Green Hills Software ISS ECT is a standards-based crypto toolkit providing a flexible framework to integrate encryption, digital signatures and other security mechanisms into a wide range of applications. ISS ECT is designed to support multiple cryptographic providers with a single common API, easily targeted to a variety of Operating Systems."

2748 Green Hills Software
30 W Sola Street
Santa Barbara, CA 93101
USA

-David Sequino
TEL: 206-310-6795
FAX: 978-383-0560

-Douglas Kovach
TEL: 727-781-4909
FAX: 727-781-2915

INTEGRITY Security Services Embedded Cryptographic Toolkit AES-CCM

Version 2.0.415
ARM Cortex A9 w/ Green Hills Software INTEGRITY Multivisor v4 for ARM 12/31/2013

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )
AES Val#2745

"Green Hills Software ISS ECT is a standards-based crypto toolkit providing a flexible framework to integrate encryption, digital signatures and other security mechanisms into a wide range of applications. ISS ECT is designed to support multiple cryptographic providers with a single common API, easily targeted to a variety of Operating Systems."

2747 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

libancrypto.a

Version 1.0.0
Intel Core i5 w/ Mac OS X 10.8; Apple A6 w/ Apple iOS 7 12/31/2013 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Externally ) ; PT Lengths Tested: ( 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 463

"The Aruba Common Cryptographic Module (CCM) is a software crypto library that powers a variety of Aruba’s networking and security products. The module does not implement any protocols directly, but provides cryptographic primitives and functions that software developers build upon to implement various security protocols."

05/19/14: Added new tested information;

2746 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

libancrypto.so

Version 1.0.0
Intel Core i5 w/ Red Hat Enterprise Linux 6 32-bit; ARMv7 w/ Android 4 12/31/2013 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM IV Generated: ( Externally ) ; PT Lengths Tested: ( 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 498

"The Aruba Common Cryptographic Module (CCM) is a software crypto library that powers a variety of Aruba’s networking and security products. The module does not implement any protocols directly, but provides cryptographic primitives and functions that software developers build upon to implement various security protocols."

05/19/14: Added new tested information;

2745 Green Hills Software
30 W Sola Street
Santa Barbara, CA 93101
USA

-David Sequino
TEL: 206-310-6795
FAX: 978-383-0560

-Douglas Kovach
TEL: 727-781-4909
FAX: 727-781-2915

INTEGRITY Security Services Embedded Cryptographic Toolkit AES

Version 2.0.415
ARM Cortex A9 with NEON w/ Green Hills Software INTEGRITY Multivisor v4 for ARM; ARM Cortex A9 without NEON w/ Green Hills Software INTEGRITY Multivisor v4 for ARM 12/31/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Green Hills Software ISS ECT is a standards-based crypto toolkit providing a flexible framework to integrate encryption, digital signatures and other security mechanisms into a wide range of applications. ISS ECT is designed to support multiple cryptographic providers with a single common API, easily targeted to a variety of Operating Systems."

2744 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

ancrypto.dll

Version 1.0.0
Intel Core i5 w/ Windows 7 32-bit User Mode; Intel Core i5 w/ Windows 7 64-bit User Mode 12/31/2013 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM IV Generated: ( Externally ) ; PT Lengths Tested: ( 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 496

"The Aruba Common Cryptographic Module (CCM) is a software crypto library that powers a variety of Aruba’s networking and security products. The module does not implement any protocols directly, but provides cryptographic primitives and functions that software developers build upon to implement various security protocols."

05/19/14: Added new tested information;
06/11/14: Added new tested information;

2743 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-Rose Quijano-Nguyen
TEL: 650-527-0741

Symantec Cross-Platform Cipher Engine

Version 1.1
Sun UltraSPARC III w/ Solaris 10; Intel Xeon X34xx w/ Windows 2012; Intel Xeon X34xx w/ RHEL 6.4 64-bit 12/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Symantec Cross-Platform Cipher Engine is designed to provide FIPS140-2 algorithm support for the Symantec Cross-Platform Cryptographic Module. This module supports Symantec Applications by providing validated Cryptographic Services. The incorporation of these algorithms make these products ideal for enterprise and government applications."

01/10/14: Updated implementation information;

2742 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

ACT-2Lite

Part # 15-14497-02(NX315)
N/A 12/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 256 )

"ACT-2Lite is an ASSP which is based on a smart card hardware platform with custom ROM code provided by Cisco."

2741 Mocana Corporation
350 Sansome Street
Suite 1010
San Francisco, CA 94104
USA

-James Blaisdell
TEL: (415) 617-0055
FAX: (415) 617-0056

Mocana Cryptographic Library

Version 5.5.1f
ARMv7 w/ Android 4.3; ARMv7 w/ Android 4.4; PowerQuicc II Pro w/ VxWorks 6.8 12/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 128 , 128 ) ; OtherIVLen_Supported
GMAC_Supported
RNG: Val# 1266

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Mocana Cryptographic Module is the engine of Mocana’s Device Security Framework - a software framework that secures all aspects of a system. The Device Security Framework helps applications and device designers reduce development costs and dramatically enhance cryptographic performance. For details see www.mocana.com."

03/11/14: Added new tested information;

2740 ND SatCom Products GmbH
Graf von Soden Strasse
Immenstaad, N/A 88090
Germany

-Dr. Michael Weixler
TEL: +49 7545 939 8198
FAX: +49 7545 939 8302

-Petra Visuri
TEL: +49 7545 939 8781

Application Crypto Library

Version 7.250.6 (Firmware)
Part # F-11B13860 TQM8349L-CA rev. 300
Freescale MPC8349E 12/20/2013 ECB ( e/d; 256 );

"FIPS approved algorithms: AES, DSA, RNG and SHA functions implemented for crypto functionality of the ND SatCom FIPS Module, a multichip embedded hardware engine providing AES256 encryption services for Ethernet & Frame-Relay/Serial data traffic and MF-TDMA control signaling for the SkyWAN 7000 Series Satellite modems."

2739 Utimaco Safeware AG
Germanusstraße 4
Aachen, 52080
Germany

-Dr. Gesa Ott
TEL: ++49 241-1696-200
FAX: ++49 241-1696-199

-Dieter Bong
TEL: ++49 241-1696-200
FAX: ++49 241-1696-199

CryptoServer Se AES

Version aes1.3.1.1 (Firmware)
Texas Instruments TMS320C6416T 12/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 1024 , 8 , 1016 ) ; AAD Lengths tested: ( 0 , 1024 , 8 , 1016 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Supported
DRBG: Val# 459

"AES Component implements several AES key sizes and modes to allow flexibility and efficiency."

2737 Blue Coat Systems, Inc.
420 N. Mary Avenue
Sunnyvale, California 94085-4121
USA

-Diana Robinson
TEL: +1 (845) 454-6397

-Tammy Green
TEL: +1 (801) 999-2973

Blue Coat SG VA Crypto Library

Version 3.1.2
Intel Xeon w/ VMware ESXi v5.1 with SGOS v6.5.2; Intel Xeon with AES-NI w/ VMware ESXi v5.1 with SGOS v6.5.2 12/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The Blue Coat SG VA Crypto Engine v1.0 provides the necessary cryptographic services to a proprietary operating system (SGOS 6.5.2) developed specifically for use in Blue Coat''s Secure Web Gateway virtual appliance."

2736 Cisco Systems, Inc.
170 W Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Garuda ASIC Encryption/Decryption

Part # 08-0877-02
N/A 12/20/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) PT Lengths Tested: ( 0 , 512 , 640 , 576 , 704 ) ; AAD Lengths tested: ( 256 , 384 , 576 , 464 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2710

"Garuda ASIC supports AES-128 based Encryption/Decryption & Authentication. It Supports GCM & GMAC as per IEEE802.1AE Specifications. 96bit IV is formed as {SCI,PN}. SCI is 64bit & PN is 32bit."

2735 N/A N/A N/A 12/20/2013 N/A
2733 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

vSphere Web Client Cryptographic Engine

Version 5.1
Intel Xeon w/ Microsoft Windows Server 2008 R2 running on VMware ESXi v5.1 Update 1; Intel Xeon w/ SuSE Linux Enterprise Server 11 SP2 (64-bit) running on VMware ESXi v5.1 Update 1 12/18/2013 CBC ( e/d; 128 , 256 );

"The VMware vSphere Web Client Cryptographic Engine is based on Bouncy Castle v1.39"

2732 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

vSphere Appliance Cryptographic Engine for Linux

Version 5.1
Intel Xeon w/ SuSE Linux Enterprise Server 11 SP2 (64-bit) running on VMware ESXi v5.1 Update 1 12/18/2013 CBC ( e/d; 128 , 256 );

"The VMware vSphere Appliance Cryptographic Engine for Linux is based on OpenSSL 0.9.8h. It is used to provide Cryptographic Support for the vCenter Server Appliance."

2731 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

vSphere Cryptographic Engine for Windows

Version 5.1
Intel Xeon w/ Microsoft WIndows Server 2008 R2 running on VMware ESXi v5.1 Update 1 12/18/2013 CBC ( e/d; 128 , 256 );

"The vSphere Cryptographic Engine for Windows is based on OpenSSL 0.9.8t. This library is used to implement cryptographic support for the following components: vSphere Client, vCenter Server, vCenter Inventory Service, vSphere Update Manager, and vSphere Syslog Collector."

2730 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

vSphere Common Cryptographic Engine for Linux

Version 5.1
Intel Xeon w/ SuSE Linux Enterprise Server 11 SP2 (64-bit) running on VMware ESXi v5.1 Update 1; Intel Xeon w/ SuSE Linux Enterprise Server 11 SP2 (32-bit) running on VMware ESXi v5.1 Update 1 12/18/2013 CBC ( e/d; 128 , 256 );

"The VMware vSphere Common Cryptographic Engine for Linux is based on OpenSSL 0.9.8r. It is used to provide Cryptographic Support for the vCLI on Linux systems as well as the vCenter Server Appliance."

2729 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

vSphere Core Cryptographic Engine for Linux

Version 5.1
Intel Xeon w/ SuSE Linux Enterprise Server 11 SP2 (64-bit) running on VMware ESXi v5.1 Update 1; Intel Xeon w/ SuSE Linux Enterprise Server 11 SP2 (32-bit) running on VMware ESXi v5.1 Update 1 12/18/2013 CBC ( e/d; 128 , 256 );

"The VMware vSphere Core Cryptographic Engine for Linux is based on OpenSSL 0.9.8t. It is used to provide Cryptographic Support for the vCLI on Linux systems as well as the vCenter Server Appliance"

2728 Palo Alto Networks
4301 Great America Parkway
Santa Clara, California 95054
USA

-Jake Bajic
TEL: (408) 753-3901
FAX: (408) 753-4001

-Lee Klarich
TEL: (408) 753-4000
FAX: (408) 753-4001

Palo Alto Networks Crypto Module (PA-200, PA-500, PA-2000 Series, PA-3000 Series, PA-4000 Series, and PA-5000 Series Firewalls and M100/Panorama)

Version PAN-OS 5.0/Panorama 5.1 (Firmware)
Cavium Octeon MIPS64; Intel Multi Core Xeon; Intel Celeron P4505 12/18/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 )

"The Palo Alto Networks Crypto Module provides the cryptographic functionality for a variety of platforms i.e., the PA-200, PA-500, PA-2000, PA-3000, PA-4000 and PA-5000 firewalls and M100 Centralized Management. The firewalls provide network security by enabling enterprises to see/control applications, users, and content."

2727 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

vSphere vCLI Cryptographic Engine for Windows

Version 5.1
Intel Xeon w/ Microsoft Windows Server 2008 R2 running on VMware ESXi v5.1 Update 1 12/18/2013 CBC ( e/d; 128 , 256 );

"The VMware ESXi Cryptographic Engine is based on OpenSSL 0.9.8t."

2726 Barco N.V.
Noordlan 5
Kuurne, , 8520
Belgium

-Jean-Paul Schafer
TEL: +32 4 267 69 22
FAX: +32 4 267 69 99

FPGA

Version 1_1_23.0.0 (Firmware)
Part # BG160526
Stratix IV GX FPGA 12/18/2013 CBC ( d only; 128 );

"Implementation on a Stratix IV FPGA"

2725 Barco N.V.
Noordlan 5
Kuurne, , 8520
Belgium

-Jean-Paul Schafer
TEL: +32 4 267 69 22
FAX: +32 4 267 69 99

SM

Version 0.1.6533
Part # bg140778
Freescale Q or IQ P2040 Power-PC w/ Linux 3.0.48-rt70.2-svn5965 12/18/2013 ECB ( e only; 128 ); CBC ( e/d; 128 );

"Implementation on a Freescale Power_PC, using the OpenSSL Library"

2724 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

vSphere vCenter Single Sign-On Cryptographic Engine

Version 5.1
Intel Xeon w/ SuSE Linux Enterprise Server 11 SP2 (64-bit) running on VMware ESXi v5.1 Update 1;Intel Xeon w/ Microsoft Windows Server 2008 R2 running on VMware ESXi v5.1 Update 1 12/18/2013 CBC ( e/d; 128 , 256 );

"The VMware vCenter Single Sign-On Cryptographic Engine is based on the Oracle Java Cryptographic Extension provider for the Java Runtime Environment version 1.6."

2723 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

vSphere ESXi Cryptographic Engine

Version 5.1
Intel Xeon w/ 64 bit library running on VMware ESXi v5.1 Update 1; Intel Xeon w/ 32 bit library running on VMware ESXi v5.1 Update 1 12/18/2013 CBC ( e/d; 128 , 256 );

"The VMware ESXi Cryptographic Engine is based on OpenSSL 0.9.8t."

2722 Blue Coat Systems, Inc.
420 N. Mary Avenue
Sunnyvale, California 94085-4121
USA

-Diana Robinson
TEL: +1 (845) 454-6397

-Tammy Green
TEL: +1 (801) 999-2973

Blue Coat SGOS Crypto Library

Version 3.1.2 (Firmware)
Intel Xeon E5-2418L; Intel Xeon E5-2430; Intel Xeon E5-2658; 12/18/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The Blue Coat Crypto Library v1.0 provides the necessary cryptographic services to a proprietary operating system (SGOS 6.5.2) developed specifically for use in Blue Coat''s ProxySG line of appliances."

2721 Giesecke & Devrient GmbH
Prinzregentenstraße 159
München, n/a 81677
Germany

-Katharina Wallhäußer
TEL: +49 89 4119-1397
FAX: +49 89 4119-2819

AES SLE78

Version 2.1 (Firmware)
Part # SLE78CLFX4000 (M7892)
SLE78CLFX4000P(M) / M7892 family 12/18/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Sm@rtCafé Expert 7.0 C1 is a Java Card 3 Platform Classic Edition compliant to GlobalPlatform CS V2.2.1 and GP V2.2 Amd D."

2720 Giesecke & Devrient GmbH
Prinzregentenstraße 159
München, n/a 81677
Germany

-Katharina Wallhäußer
TEL: +49 89 4119-1397
FAX: +49 89 4119-2819

CMAC

Version 1.0 (Firmware)
SLE78CLFX4000P(M) / M7892 family 12/18/2013

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 32768 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 32768 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 32768 ; Tag Len(s) Min: 1 Max: 16 )
AES Val#2721

"Sm@rtCafé Expert 7.0 C1 is a Java Card 3 Platform Classic Edition compliant to GlobalPlatform CS V2.2.1 and GP V2.2 Amd D."

2719 Tripwire, Inc.
101 SW Main St. Suite 1500
Portland, OR 97204
USA

-Brian R. Cox
TEL: 503-276-7500
FAX: 503-276-7643

Tripwire Cryptographic Module

Version 2.0.0
Oracle Java 1.6 w/ Microsoft Windows Server 2008 R2 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Provides an AES implementation for Tripwire products."

2718 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

VMware Kernel Cryptographic Module

Version 1.0
Intel Xeon E5-2430 with AES-NI w/ Vmware vCloud Networking and Security 5.5.0a Edge OS running on Vmware vSphere Hypervisor (ESXi) 5.5; Intel Xeon E5-2430 w/ Vmware vCloud Networking and Security 5.5.0a Edge OS running on Vmware vSphere Hypervisor (ESXi) 5.5 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The VMware Kernel Cryptographic Module is a flexible software library providing FIPS-140-2 approved cryptographic operations for VMware products and platforms.""

12/27/13: Updated implementation information; 04/14/14: Updated OE information

2717 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade MLXe MR2

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC 7448, RISC, 1700 MHz; 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade MLXe Series and Brocade NetIron® CER 2000 Series Ethernet Routers, Brocade NetIron CES 2000 Series Ethernet Switches provide industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS, and MPLS Virtual Private Networks (VPNs)."

02/18/14: Update vendor information;
10/30/14: Added new tested information;

2716 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-8101
FAX: 408-333-8101

Brocade MLXe MR

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC 7447A, RISC, 1000MHz 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade MLXe Series and Brocade NetIron® CER 2000 Series Ethernet Routers, Brocade NetIron CES 2000 Series Ethernet Switches provide industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS, and MPLS Virtual Private Networks (VPNs)."

2715 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade NetIron CES and CER 2000 Series

Version BRCD-IP-CRYPTO-VER-3.0 (Firmware)
Freescale MPC 8544, Power QUICC III, 800 MHz 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade MLXe Series and Brocade NetIron® CER 2000 Series Ethernet Routers, Brocade NetIron CES 2000 Series Ethernet Switches provide industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS, and MPLS Virtual Private Networks (VPNs)."

10/30/14: Added new tested information;

2714 McAfee, Inc.
2340 Energy Park Drive
St. Paul, MN 55108
USA

-Mark Hanson
TEL: 651-628-1633
FAX: 651-628-2701

McAfee Firewall Enterprise 64-bit Cryptographic Engine (Virtual)

Version 8.3.2
Intel Xeon w/ VMware ESXi v5.0 with SecureOS 8.3 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 256 )

"The McAfee Firewall Enterprise 64-bit Cryptographic Engine (Virtual) is a software library that provides cryptographic services for applications on virtual deployments of the McAfee Firewall Enterprise Appliance."

2713 McAfee, Inc.
2340 Energy Park Drive
St. Paul, MN 55108
USA

-Mark Hanson
TEL: 651-628-1633
FAX: 651-628-2701

McAfee Firewall Enterprise 64-bit Cryptographic Engine

Version 8.3.2 (Firmware)
Intel Atom; Intel Core; Intel Pentium; Intel Xeon 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 256 )

"The McAfee Firewall Enterprise 64-bit Cryptographic Engine is a firmware library that provides cryptographic services for applications across several versions of the McAfee Firewall Enterprise Appliances."

2712 McAfee, Inc.
2340 Energy Park Drive
St. Paul, MN 55108
USA

-Mark Hanson
TEL: 651-628-1633
FAX: 651-628-2701

McAfee Firewall Enterprise 32-bit Cryptographic Engine (Virtual)

Version 8.3.2
Intel Xeon w/ VMware ESXi v5.0 with SecureOS 8.3 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 256 )

"The McAfee Firewall Enterprise 32-bit Cryptographic Engine (Virtual) is a software library that provides cryptographic services for applications on virtual deployments of the McAfee Firewall Enterprise Appliance."

2711 McAfee, Inc.
2340 Energy Park Drive
St. Paul, MN 55108
USA

-Mark Hanson
TEL: 651-628-1633
FAX: 651-628-2701

McAfee Firewall Enterprise 32-bit Cryptographic Engine

Version 8.3.2 (Firmware)
Intel Atom; Intel Core i3; Intel Pentium; Intel Xeon 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 256 )

"The McAfee Firewall Enterprise 32-bit Cryptographic Engine is a firmware library that provides cryptographic services for applications across several versions of the McAfee Firewall Enterprise Appliances."

2710 Cisco Systems, Inc.
170 W Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Openssl-fips-1.2

Version 1.2
Intel Xeon w/ Windriver Linux (2.6.99.99 kernel) 12/13/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The openssl crypto library is used on the Nexus7K supervisor to implement crypto operations in software."

2709 DragonWave, Inc.
600-411 Legget Drive
Ottawa, ON K2K3C9
Canada

-Justin Wintour
TEL: (613) 599-9991

-Ingrid Mag
TEL: (613) 599-9991

Dragonwave Secure Cryptographic Module for Horizon Quantum

Part # 74-000320
N/A 12/13/2013 CFB128 ( e/d; 128 , 192 , 256 );

"The DragonWave Secure Cryptographic Module hardware implementation provides bulk data encryption for the data path between two Quantum radio links."

2708 DragonWave, Inc.
600-411 Legget Drive
Ottawa, ON K2K3C9
Canada

-Justin Wintour
TEL: (613) 599-9991

-Ingrid Mag
TEL: (613) 599-9991

Dragonwave Secure Cryptographic Module for Horizon Quantum

Version 1.3 (Firmware)
Freescale MPC8313 12/13/2013 CBC ( e/d; 128 , 192 , 256 );

"The DragonWave Secure Cryptographic Module firmware implementation provides peer-to-peer TLS communications for the management path established between two Quantum radio links."

2707 DragonWave, Inc.
600-411 Legget Drive
Ottawa, ON K2K3C9
Canada

-Justin Wintour
TEL: (613) 599-9991

-Ingrid Mag
TEL: (613) 599-9991

Dragonwave Secure Cryptographic Module for Horizon Compact+

Part # 74-000320
N/A 12/13/2013 CFB128 ( e/d; 128 , 192 , 256 );

"The DragonWave Secure Cryptographic Module hardware implementation provides bulk data encryption for the data path between two Compact+ radio links."

2706 DragonWave, Inc.
600-411 Legget Drive
Ottawa, ON K2K3C9
Canada

-Justin Wintour
TEL: (613) 599-9991

-Ingrid Mag
TEL: (613) 599-9991

Dragonwave Secure Cryptographic Module for Horizon Compact+

Version 1.2.5 (Firmware)
Freescale MPC8313 12/13/2013 CBC ( e/d; 128 , 192 , 256 );

"The DragonWave Secure Cryptographic Module firmware implementation provides peer-to-peer TLS communications for the management path established between two Compact+ radio links."

2705 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Chela Diaz de Villegas
TEL: 651 628-1642
FAX: 651-628-2701

McAfee ePO Agent Handler Cryptographic Module

Version 1.0
Intel Xeon E5 32-bit w/ Windows 2008 R2; Intel Xeon E5 64-bit w/ Windows 2008 R2 12/6/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"McAfee ePO Agent Handler Cryptographic Module provides cryptographic operations for McAfee ePolicy Orchestrator (ePO), a security management software that allows enterprises to unify the management of numerous end-point, network, and data security products."

2704 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts

VMware Java JCE (Java Cryptographic Extension) Module

Version 1.0
Intel Xeon E5-2430 w/ VMware vCloud Networking and Security 5.5.0a vShield Manager OS with Sun JRE 6.0 running on VMware vSphere Hypervisor (ESXi) 5.5 12/6/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )

"The VMware Java JCE (Java Cryptographic Extension) module is a versatile software library that implements FIPS-140-2 approved cryptographic services for VMware products and platforms."

12/06/13: Updated implementation information;
12/27/13: Updated implementation information;

2703 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

RSA BSAFE Crypto-J

Version 6.1
Intel Celeron w/ McAfee Linux 2.2.1; Intel Xeon w/ McAfee Linux 2.2.1 12/6/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 160 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 8 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

2702 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

RSA BSAFE Crypto-J

Version 6.1
Intel Xeon w/ McAfee Linux 2.2.1 running on VMware ESXi 5.0 12/6/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 160 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 8 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

2701 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

VMware Cryptographic Module

Version 1.0
Intel Xeon E5-2430 w/ VMware vCloud Networking and Security 5.5.0a Edge OS on VMware Sphere Hypervisor (ESXi) 5.5; Intel Xeon E5-2430 w/ VMware vCloud Networking and Security 5.5.0a vShield Manager OS (VMware vCloud Networking and Security 5.5.0a App Firewall OS) on VMware vSphere Hypervisor (ESXi) 5.5 11/29/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The VMware Cryptographic Module is a software library providing FIPS 140-2 -approved cryptographic algorithms and services for protecting data-in-transit and data-at-rest on VMware products and platforms."

12/27/13: Updated implementation information;

2700 VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94303
USA

-Eric Betts
TEL: 650-427-1902

VMware NSS Cryptographic Module

Version 1.0
Intel Xeon E5-2430 with AES-NI w/ VMware vCloud Networking and Security 5.5.0a Edge OS running on VMware vSphere Hypervisor (ESXi) 5.5; Intel Xeon E5-2430 with AES-NI w/ VMware vCloud Networking and Security 5.5.0a Edge OS running on VMware vSphere Hypervisor (ESXi) 5.5 11/29/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The VMware NSS Cryptographic Module is a software cryptographic library that provides FIPS-140-2 validated network security services to VMware products"

12/27/13: Updated implementation information; 04/14/14: Update OE information

2699 Sony Corporation
1-7-1 Konan
Minato-ku, Tokyo 108-0075
Japan

-Hirotaka Kondo
TEL: +81 50 3140 9888
FAX: +81 50 3809 1421

-Shigeki Yamamoto
TEL: +81 50 3140 9131
FAX: +81 50 3809 1421

Sony IMB AES Core-K2

Version 1.0.0 (Firmware)
Xilinx Kintex-7 FPGA 11/29/2013 CBC ( e/d; 128 );

"Sony IMB AES Core-K2 is the firmware module for digital cinema system."

2698 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version 5.2 (Firmware)
P1020, 800 Mhz, PowerPC; XLP432, 1.4 Ghz, MIPS; XLR 732, 950 Mhz, MIPS; XLS208, 750 Mhz, MIPS 11/29/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2697 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade FCX 624/648 and ICX 6610 Series

Version BRCD-IP-Crypto-Ver-3.0 (Firmware)
Freescale MPC8544E, 800 MHz 11/29/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade ICX6610 delivers wire-speed, non-blocking performance across all ports to support latency-sensitive. The Brocade FCX Series offers a comprehensive line of switches with specific models optimized for campus and data center deployment."

11/24/14: Added new tested information;

2696 JVC KENWOOD Corporation
1-16-2, Hakusan, Midori-ku
Yokohama-shi
Kanagawa, 226-8525
Japan

-Tamaki Shimamura
TEL: +81-45-939-6254
FAX: +81-45-939-7097

Crypt Hayabusa Library

Version 2.0.0 (Firmware)
Texas Instruments C55xx DSP 12/13/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 256 ); OFB ( e/d; 256 );

CMAC (Generation/Verification ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 65535 ; Tag Len(s) Min: 8 Max: 16 )

"An implementation of AES and SHA-256 designed for use in JVC KENWOOD secure communications products."

2695 Sony Corporation
1-7-1 Konan
Minato-ku, Tokyo 108-0075
Japan

-Hirotaka Kondo
TEL: +81 50 3140 9888
FAX: +81 50 3809 1421

-Shigeki Yamamoto
TEL: +81 50 3140 9131
FAX: +81 50 3809 1421

Sony IMB AES Core-K

Version 1.0.0 (Firmware)
Xilinx Kintex-7 FPGA 11/29/2013 ECB ( e/d; 128 ); CBC ( e/d; 128 );

"Sony IMB AES Core-K is the firmware module for digital cinema system."

2694 IBM
9032 South Rita Road
Tucson, AZ 85744
USA

-Christine Knibloe
TEL: (520) 799-2486

IBM LTO Ultrium 6 Cryptographic Firmware Library

Version 1.0 (Firmware)
IBM PowerPC 405 11/22/2013 ECB ( e/d; 256 );

"Firmware cryptographic implementation that adds secure key channel capabilities to the IBM LTO Ultrium 6 tape drive."

2693 IBM
9032 South Rita Road
Tucson, AZ 85744
USA

-Christine Knibloe
TEL: (520) 799-2486

IBM Encrypting Tape Drive AES-GCM Write

Part # G60002
N/A 11/22/2013 ECB ( e only; 256 );

GCM (KS: AES_256( ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 128 , 512 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The hardware ASIC implementation provides AES GCM encryption."

2692 IBM
9032 South Rita Road
Tucson, AZ 85744
USA

-Christine Knibloe
TEL: (520) 799-2486

IBM Encrypting Tape Drive AES-GCM Read

Part # G60002
N/A 11/22/2013 ECB ( e only; 256 );

GCM (KS: AES_256( ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 128 , 512 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The hardware ASIC implementation provides AES GCM decryption."

2690 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 6450 and ICX 6450-C12 Series

Version BRCD-IP-Crypto-Ver-3.0 (Firmware)
ARM ARMv5TE, 800 MHz 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. Brocade ICX6450 switches deliver enterprise-class stackable switching at an entry-level price."

11/24/14: Added new tested information;

2689 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

ArubaOS AP Kernel Crypto

Version ArubaOS 6.3 (Firmware)
Cavium CN5010; Marvell 88F6560; Qualcomm Atheros QCA9344; Qualcomm Atheros AR7242; Qualcomm Atheros AR7161; Qualcomm Atheros QCA9550 11/22/2013 CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 ) ; AAD Lengths tested: ( 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
RNG: Val# 1250

"The Aruba MOVE Architecture forms the core network infrastructure for supporting mobile and wireless computing devices. The system enables enterprise-scale 802.11 wireless LANs (Wi-Fi), secure remote VPNs, and mobility-optimized wired networks."

2688 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade SX800/SX1600 Series

Version BRCD-IP-Crypto-Ver-3.0 (Firmware)
Freescale P3041E, 1.5 GHz 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The FastIron SX Series extends control from the network edge to the core with intelligent network services, such as Quality of Service (QoS) and provides a scalable, secure, low-latency, and fault-tolerant IP services solution for 1GbE and 10 GbE enterprise deployments."

11/24/14: Added new tested information;

2687 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 7750

Version BRCD-IP-Crypto-Ver-3.0 (Firmware)
Freescale P2041, 1.5GHz 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade ICX 7750 is an Ethernet switch for campus LAN aggregation and classic Ethernet data center Top of Rack (ToR) environments."

11/24/14: Added new tested information;

2686 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 6650

Version BRCD-IP-Crypto-Ver-3.0 (Firmware)
Freescale MPC8544E, 800 MHz 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade ICX 6650 is an Ethernet switch for campus LAN aggregation and classic Ethernet data center Top of Rack (ToR) environments."

11/24/14: Added new tested information;

2685 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

CiscoSSL FIPS Object Module (Assembler)

Version 4.1
ARM Cortex-A9 w/ Android 4.0; Intel Xeon w/ Windows 7; Freescale PowerPC-e500 w/ Linux 2.6; Intel Xeon with AES-NI w/ Windows 7; Cavium Octeon MIPS64 w/ Linux 2.6; Intel Xeon w/ Linux 2.6; Intel Xeon with AES-NI w/ Linux 2.6 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 24 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) ) KS: XTS_256( (e/d) ))

"The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."

2684 AEP Networks, Ltd.
Knaves Beech Business Centre
Loud Water, High Wycombe, Buckinghamshire HP10 9UT
United Kingdom

-Paul Kettlewell
TEL: +44 (0)1628 642624

-Vicky Hayes
TEL: +44 (0)1628 642623

Advanced Configurable Crypto Environment v3

Part # P2020 QorIQ SEC
N/A 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The AEP Networks Advanced Configurable Crypto Environment v3 (ACCEv3) provides highly secure cryptographic services and key storage. It is the foundation of a range of products including the Keyper Model 9860 family."

2683 Guidance Software, Inc
1055 E. Colorado Blvd.
Pasadena, CA 91106
USA

-Ken Basore
TEL: 626-229-9191
FAX: 626-229-9199

EnCase Evidence File Cryptographic Algorithm (64bit)

Version 1.0
Intel Core i7 w/ Windows Server 2008 R2 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"EnCase® Enterprise provides comprehensive forensic-level analysis of servers and workstations anywhere on a network. The solution can securely investigate/analyze multiple machines simultaneously over the LAN/WAN at the disk and memory level."

2682 Guidance Software, Inc
1055 E. Colorado Blvd.
Pasadena, CA 91106
USA

-Ken Basore
TEL: 626-229-9191
FAX: 626-229-9199

EnCase Evidence File Cryptographic Algorithm (32bit)

Version 1.0
Intel Core i7 w/ Windows Server 2008 R2 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"EnCase® Enterprise provides comprehensive forensic-level analysis of servers and workstations anywhere on a network. The solution can securely investigate/analyze multiple machines simultaneously over the LAN/WAN at the disk and memory level."

2681 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-2951

FortiAnalyzer SSL Cryptographic Library

Version 4.0 MR3 (Firmware)
Intel Xeon Quad-Core (Westmere) 11/22/2013 CBC ( e/d; 128 , 192 , 256 );

"The FortiAnalyzer family of logging, analyzing, and reporting appliances securely aggregate log data and content data from Fortinet devices and other syslog-compatible devices. Using a comprehensive suite of customizable reports, users can filter and review records, including traffic, event, virus, attack, Web content, and email data."

2680 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

ArubaOS OpenSSL Module

Version ArubaOS 6.3 (Firmware)
Qualcomm Atheros AR7161; Qualcomm Atheros AR7242; Cavium CN5010; Marvell 88F6560; Qualcomm Atheros QCA9344; Qualcomm Atheros QCA9550; Broadcom XLP416; Broadcom XLP432; Broadcom XLR732; Broadcom XLR508; Broadcom XLR516; Broadcom XLR532; Broadcom XLS204; Broadcom XLS408; Freescale QorIQ P1020 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 ); CTR ( ext only; 128 , 192 , 256 )

"The Aruba MOVE Architecture forms the core network infrastructure for supporting mobile and wireless computing devices. The system enables enterprise-scale 802.11 wireless LANs (Wi-Fi), secure remote VPNs, and mobility-optimized wired networks.."

11/25/13: Added new tested information;

2679 Lancope, Inc.
3650 Brookside Parkway, Suite 400
Alpharetta, GA 30022
USA

-Jason Anderson
TEL: 770-225-6519

-Jim Magers
TEL: 770-225-6500

Lancope Crypto-J library

Version 1.1
Intel Xeon E3 series w/ Stealthwatch v6.3; Intel Xeon E5 series w/ Stealthwatch v6.3 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"RSA BSAFE Crypto-J implementations used within Lancope’s StealthWatch products provide cryptographic functions"

2678 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

CiscoSSL FIPS Object Module

Version 4.1
Cavium Octeon MIPS64 w/ Linux 2.6; Intel Xeon w/ FreeBSD 9.0 11/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 24 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) ) KS: XTS_256( (e/d) ))

"The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."

2677 Aruba Networks, Inc.
1344 Crossman Ave
Sunnyvale, CA 94089
USA

-Jon Green
TEL: 408-227-4500
FAX: 408-227-4550

ArubaOS Crypto Module

Version ArubaOS 6.3 (Firmware)
Broadcom XLS204; Broadcom XLS408; Broadcom XLR508; Broadcom XLR516; Broadcom XLR532; Broadcom XLR732; Broadcom XLP416; Broadcom XLP432; Qualcomm Atheros AR7242; Qualcomm Atheros AR7161; Qualcomm Atheros QCA9550; Cavium CN5010; Marvell 88F6560; Qualcomm Atheros QCA9344; Freescale QorIQ P1020 11/15/2013 CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 ) ; AAD Lengths tested: ( 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
RNG: Val# 1250

"The Aruba MOVE Architecture forms the core network infrastructure for supporting mobile and wireless computing devices. The system enables enterprise-scale 802.11 wireless LANs (Wi-Fi), secure remote VPNs, and mobility-optimized wired networks."

2676 Microhard Systems Inc
150 Country Hills Landing NW
Calgary, AB T3K 5P3
Canada

-Lihong Lei
TEL: 403-248-0028
FAX: 403-248-2762

-Jeff Catherwood
TEL: 403-248-0028
FAX: 403-248-2762

IP Series Wireless AES Encryption

Version 2.2.44 (Firmware)
Intel Xscale IXP425 11/15/2013 CBC ( e/d; 128 , 256 );

"The Microhard AES Encryption Algorithm is used in security modules in Microhard Systems Inc radio system products."

2675 N/A N/A N/A 11/15/2013 N/A
2674 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version 5.2 (Firmware)
Freescale MPC8314, 333MHZ, PowerPC; Freescale P2020, 1.0GHz, PowerPC; Freescale P4080, 1.5GHZ, PowerPC; Broadcom XLR732, 1.0GHz, MIPS 11/15/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2673 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware with hardware accelerators

Version 5.2 (Firmware)
XLP432, 1.4GHz, MIPS; XLR732, 950MHz, MIPS; XLS208, 750MHz, MIPS 11/15/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Hardware accelerator is a CPU functional module that provides cryptographic functions within HP devices."

2672 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP3700 88W8864C

Part # 88W8864C
N/A 11/15/2013 ECB ( e only; 128 );

"The Cisco Aironet Access Points deliver the versatility, high capacity and enterprise-class features required for small, medium and large Government indoor and outdoor wireless deployments. In FIPS 140-2 mode of operation, the Cisco APs support the IEEE 802.11i and IEEE 802.1x standards and AES for WPA2 encryption."

2671 Allegro Software Development Corporation
1740 Massachusetts Avenue
Boxborough, MA 01719
USA

-Alan Presser
TEL: +1 (978) 264-6600

Allegro Cryptographic Engine

Version 1.1.8
Intel Core 2 Duo E8400 w/ Windows 7 Ultimate (64-bit) 11/8/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 0 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported
DRBG: Val# 430

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Allegro Cryptographic Engine (ACE) is a cryptographic library module for embedded computing systems. ACE provides software implementations of algorithms for calculations of message digests, digital signature creation and verification, bulk encryption and decryption, key generation and key exchange."

2670 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Bob Pittman
TEL: 1-978-264-5211
FAX: 1-978-264-5522

HP Comware

Version 5.2 (Firmware)
Freescale P2020, 1000MHz, PowerPC 11/8/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2669 N/A N/A N/A 11/8/2013 N/A
2668 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Chris Brych
TEL: 613.221.5081
FAX: 613.723.5079

-Laurie Smith
TEL: 613.221.5026
FAX: 613.723.5079

Luna G5 Cryptographic Library

Version 6.10.4 (Firmware)
AMCC 440EPx PowerPC (PPC440EPx) Embedded Processor 11/8/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 7 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 7 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 7 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )
AES Val#2664

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 1024 , 480 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 56 , 120 ) ; IV Lengths Tested: ( 8 , 128 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2664

"The G5 Cryptographic Library provides a broad suite of high-performance cryptographic operations. All cryptographic algorithms are implemented within the module''s firmware or associated co-processor."

12/01/14: Updated implementation information;

2667 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Chris Brych
TEL: 613.221.5081
FAX: 613.723.5079

-Laurie Smith
TEL: 613.221.5026
FAX: 613.723.5079

Luna K6 Cryptographic Library

Version 6.10.4 (Firmware)
AMCC 440EPx Power PC (PPC440EPx) Embedded Processor 11/8/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 7 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 7 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 7 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 1024 , 480 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 56 , 120 ) ; IV Lengths Tested: ( 8 , 128 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"The K6 Cryptographic Library provides a broad suite of high-performance cryptographic operations. All cryptographic algorithms are implemented within the module''s firmware or associated co-processor."

12/01/14: Updated implementation information;

2666 Box, Inc.
4440 El Camino Real
Los Altos, CA 94022
USA

-Crispen Maung
TEL: 1-877-729-4269

Box JCA Cryptographic Module

Version 1.0
Intel(R) Xeon(R) w/ Scientific Linux 6.4 with Java JRE 1.6.0 running on VMware vSphere 5.0; Intel(R) Xeon(R) w/ Scientific Linux 6.4 with Java JRE 1.7.0 running on VMware vSphere 5.0 11/8/2013 ECB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Box JCA Cryptographic Module is a Java Cryptography Architecture provider that provides encryption, hashing and random number generation utilizing FIPS 140-2 validated algorithms."

11/15/13: Added new tested information;

2665 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-n/a

HP Comware

Version 7.1
MPC8544 w/ Comware V7.1; XLS408 w/ Comware V7.1 11/8/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2664 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Jim Dickens
TEL: 443.327.1389
FAX: 443.327.1210

-Chris Brych
TEL: 613.221.5081
FAX: 613.723.5079

SafeXcel 3120 Chip

Part # SF114-011206-001A, v2.9.2
N/A 11/8/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 512 , 1024 , 192 , 320 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 192 , 320 ) ; IV Lengths Tested: ( 128 , 128 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported
DRBG: Val# 428

"The SafeNet SafeXcel-3120 is a highly integrated device designed for modest performance and high security, where power and cost-sensitivity are a priority at the network edge. The embedded ARM processor, via a digital signature, will allow customer-specific application code to execute, enabling the device to implement a complete product solution."

2663 Seagate Technology LLC.
1280 Disc Drive
Shakopee, Minnesota 55379
US

-David R. Kaiser
TEL: 952-402-2356
FAX: 952-402-1273

Morel AES in Hardware

Part # Morel
N/A 11/8/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

XTS( ) KS: XTS_256( (e/d) (f/p) ))

"AES encryption and decryption core of the controller ASIC "Morel" in Seagate''s Self- Encrypting Drives (SEDs)."

2662 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Generic, A7)

Version 4.0
Apple A7 w/ iOS 7 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 426

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software."

2661 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A7)

Version 4.0
Apple A7 w/ iOS 7 10/25/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

2660 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A7)

Version 4.0
Apple A7 w/ iOS 7 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 425

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

2659 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Generic, A7 32bit)

Version 4.0
Apple A7 w/ iOS 7 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 424

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software compiled for 32bit word size."

2658 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A7 32bit)

Version 4.0
Apple A7 w/ iOS 7 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 423

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES compiled for 32bit word size."

2657 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A7 32bit)

Version 4.0
Apple A7 w/ iOS 7 10/25/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation compiled for 32bit word size."

2656 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Generic, A7)

Version 4.0
Apple A7 w/ iOS 7 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and generic, non-optimized software."

2655 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A7)

Version 4.0
Apple A7 w/ iOS 7 10/25/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

2654 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade ICX 6450 and ICX 6450-C12 Series

Version BRCD-IP-CRYPTO-VER-2.0 (Firmware)
ARMv5TE, 800 MHz 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. Brocade ICX6450 switches deliver enterprise-class stackable switching at an entry-level price."

2653 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

Brocade SX800/SX1600 Series

Version BRCD-IP-CRYPTO-VER-2.0 (Firmware)
Freescale P3041E, 1.5 GHz 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The FastIron SX Series extends control from the network edge to the core with intelligent network services, such as Quality of Service (QoS) and provides a scalable, secure, low-latency and fault-tolerant IP services solution for 1 GbE and 10 GbE enterprise deployments."

2652 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

FIPS 140-2 Certification for Brocade ICX 6650

Version BRC-IP-CRYPTO-VER-2.0 (Firmware)
Freescale MPC8544E, 800 MHz 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Brocade ICX 6500 Switch is a compact Ethernet switch that delivers industry-leading 10/40 GbE density."

2651 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

FIPS 140-2 Certification for Brocade MLXe and CER 2000 Series

Version BRCD-IP-CRYPTO_VER-2.0 (Firmware)
Freescale MPC8544, PowerQUICC III, 800 MHz 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade MLX Series and NetIron CER 2000 Series provide industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS and MPLS Virtual Private Networks (VPNs). "

2650 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

FIPS 140-2 Certification for Brocade MLXe and CER 2000 Series

Version BRCD-IP-CRYPTO-VER-2.0 (Firmware)
Freescale MPC7448, RISC, 1700 MHz 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade MLX Series and NetIron CER 2000 Series provide industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS and MPLS Virtual Private Networks (VPNs)."

2649 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-8101
FAX: 408-333-8101

FIPS 140-2 Certification for Brocade MLXe and CER 2000 Series

Version BRCD-IP-CRYPTO-VER-2.0-0131131200 (Firmware)
Freescale MPC 7447A, RISC, 1000MHz 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Brocade cryptographic library used in Brocade IP products implements crypto operations in software. The Brocade MLX Series and NetIron CER 2000 Series provide industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS and MPLS Virtual Private Networks (VPNs)."

11/08/13: Updated implementation information;

2648 Intel Corporation
2200 Mission College Blvd.
Santa Clara, California 95054
USA

-Stephen T Palermo
TEL: 503-523-6026

-Min Cao
TEL: 086-021-61165462

QuickAssist Technology Software Library for Cryptography on the Intel® Communications Chipset 89xx Series

Version 1.0.0
Part # Intel® Communications Chipset 8950
Intel® Xeon® Processor E5-2600 v2 Product Family processor w/ Fedora 16 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 ) (Assoc. Data Len Range: 0 - 6 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 96 64 ) (KS: AES_192( e/d ) Tag Length(s): 128 96 64 )
(KS: AES_256( e/d ) Tag Length(s): 128 96 64 )
PT Lengths Tested: ( 0 , 640 , 1024 , 48 , 904 ) ; AAD Lengths tested: ( 0 , 256 , 768 , 40 , 800 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Intel® Xeon® Processor E5-2600 v2 Product Family processor with Intel® Communications Chipset 89xx Series using Intel® QuickAssist Technology. The accelerator features are invoked using the Intel® QuickAssist Technology Cryptographic API which provides application scalability and portability across platforms."

11/05/13: Updated implementation information;
11/14/13: Added new tested imformation;

2647 Bull SAS
Rue Jean Jaurès
Les Clayes sous Bois, n/a 78340
France

-Jean-Luc CHARDON
TEL: +33 1 30 80 79 14
FAX: +33 1 30 80 76 36

-Pierre-Jean AUBOURG
TEL: +33 1 30 80 77 02
FAX: +33 1 30 80 76 36

C2P DRBG

Version 20121030 (Firmware)
Freescale MPC8248 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Bull implements this Deterministic Random Bit Generator algorithm for applications running on its CHR hardware platform providing secure cryptographic resources to products developed by Bull or other Application Providers, including the CRYPT2Pay HR and CRYPT2Protect product lines"

2646 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-Rose Quijano-Nguyen
TEL: 650-527-0741

Symantec SymCrypt Cipher Engine

Version 1.1
Intel Xeon Quad Core w/ RHEL 6.4 x86_64 64-bit 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The Symantec SymCrypt Cipher Engine is designed to provide FIPS140-2 algorithm support for the Symantec SymCrypt Cryptographic Module. This module supports Symantec Applications by providing validated and approved Cryptographic Services. The incorporation of these algorithms make these products ideal for enterprise and government applications."

2645 Digital Security Controls, a Division of Tyco Safety Products Canada Ltd.
3301 Langstaff Road
Concord, Ontario L4K 4L2
Canada

-Dan Nita
TEL: (905) 760-3000 x2706
FAX: (905) 760-3020

TL2803G(R)/3G2080(R)/TL280(R)

Version 4.00 (Firmware)
ST Microelectronics STR912FAW44X6T 10/25/2013 ECB ( e/d; 128 );

"The TL2803G(R)/3G2080(R)/TL280(R) Ver 4.00 is included in several IP/3G Alarm Communicators Models like TL2803GR, 3G2080R, TL280R, TL2803G, 3G2080, TL280 and provides constantly supervised and encrypted line security communications over 3G/GPRS, Internet or Intranet for security/intrusion applications (as required per UL365, UL1610 standard)."

2644 Sonus Networks
4 Technology Park Drive
Westford, MA 01886
USA

-Sandeep Kaushik
TEL: 1-855-GO-SONUS
FAX: 978-614-8101

-Nui Chan
TEL: 1-855-GO-SONUS
FAX: 978-614-8101

Sonus Cryptographic Media Processor

Version 1 (Firmware)
Cavium OCTEON Plus CN5860 10/25/2013 CBC ( e/d; 128 ); CTR ( int only; 128 )

"Sonus Session Border Controller FIPS-validated cryptographic media module"

2643 Sonus Networks
4 Technology Park Drive
Westford, MA 01886
USA

-Sandeep Kaushik
TEL: 1-855-GO-SONUS
FAX: 978-614-8101

-Nui Chan
TEL: 1-855-GO-SONUS
FAX: 978-614-8101

Sonus Cryptographic Library

Version 1
Intel Nehalem w/ Sonus Debian Linux 02.00.02-A026 10/25/2013 CBC ( e/d; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"Sonus Session Border Controller FIPS-validated cryptographic software module"

2642 Blue Coat Systems, Inc.
420 N. Mary Avenue
Sunnyvale, California 94085-4121
USA

-Diana Robinson
TEL: 866-302-2628

Blue Coat SSL Visibility Appliance SV2800

Version 0.9.8
Intel E5620 Quad Core w/ Linux x86_64 10/25/2013 CBC ( e/d; 128 , 256 );

"The SSL Visibility Appliance is designed to detect SSL traffic and then under policy control to "inspect" the traffic. Inspection involves decrypting and re-encrypting the traffic to gain access to the clear text then passing this data to one or more associated security appliance(s) that need to see decrypted traffic."

2641 Intel Corporation
2200 Mission College Blvd.
Santa Clara, California 95054
USA

-Raman Sudhir
TEL: +1 (480) 552-1548

-Min Cao
TEL: 086-021-61165462

QuickAssist Technology Software Library for Cryptography on the Intel® Atom™ Processor C2000 Product Family

Version 1.0.0
Intel® Atom(TM) Processor C2000 Product Family for Communications w/ Yocto 1.4 (BSP included in the release software) 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 ) (Assoc. Data Len Range: 0 - 0 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 96 64 ) (KS: AES_192( e/d ) Tag Length(s): 128 96 64 )
(KS: AES_256( e/d ) Tag Length(s): 128 96 64 )
PT Lengths Tested: ( 0 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"Intel® Atom(TM) Processor C2000 Product Family for Communications is a system on a chip (SoC) which incorporates cryptographic acceleration. The acceleration features are invoked using the Intel® QuickAssist Technology Cryptographic API which provides application scalability and portability across platforms."

11/05/13: Updated implementation information;

2640 EFJohnson Technologies
1440 Corporate Drive
Irving, TX 75038-2401
USA

-Marshall Schiring
TEL: (402) 479-8375
FAX: (402) 479-8472

-Josh Johnson
TEL: (402) 479-8394
FAX: (402) 479-8472

EFJ Crypto

Version 5.0 (Firmware)
Texas Instruments TMS320VC55xx 10/25/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"(1) EFJ Crypto description: The EFJ Crypto includes SP800-90A DRBG, RSA, HMAC, SHA256, AES for use in the EFJohnson Subscriber Encryption Module."

2639 N/A N/A N/A 10/25/2013 N/A
2638 Vaultive, Inc.
489 5th Avenue, floor 31
New York, NY 10017
USA

-Steve Coplan
TEL: 212-875-1210

Vaultive Cryptographic Library

Version 1.0
Intel Xeon E5 series with AES-NI w/ Ubuntu Server 12.04LTS 10/1/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 1024 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 , 1024 ) ; IV Lengths Tested: ( 8 , 128 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"Vaultive Cryptographic Module implements several NIST-approved cryptographic algorithms. Vaultive Inc. uses the Vaultive Cryptographic Module to deliver cloud encryption solutions preserving server-side operations including indexing, searching, record sorting and format preservation without compromising security."

2637 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

CiscoSSL FIPS Object Module (Assembler)

Version 4.0
ARM Cortex-A9 w/ Android 4.0; Intel Xeon w/ Windows 7; Freescale PowerPC-e500 w/ Linux 2.6; Freescale PowerPC-e500 w/ Linux 2.6; Intel Xeon with AES-NI w/ Windows 7; Cavium Octeon MIPS64 w/ Linux 2.6; Intel Xeon w/ Linux 2.6; Intel Xeon with AES-NI w/ Linux 2.6 10/1/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 24 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) ) KS: XTS_256( (e/d) ))

"The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."

2636 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

CiscoSSL FIPS Object Module

Version 4.0
Cavium Octeon MIPS64 w/ Linux 2.6; Intel Xeon w/ FreeBSD 9.0 10/1/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 24 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."

2635 ViaSat, Inc.
6155 El Camino Real
Carlsbad, CA 92009
USA

-David Schmolke
TEL: 760-476-2461
FAX: 760-476-4110

-Rich Quintana
TEL: 760-476-2481
FAX: 760-476-4110

ES_PL_AES_CTR_1.0

Part # Altera Cyclone III EP3C Version ES_PL_AES_CTR_1.0
N/A 10/1/2013 ECB ( e only; 256 ); CTR ( int only; 256 )

"ViaSat Embeddable Security System cryptographic algorithm implementations."

2634 ViaSat, Inc.
6155 El Camino Real
Carlsbad, CA 92009
USA

-David Schmolke
TEL: 760-476-2461
FAX: 760-476-4110

-Rich Quintana
TEL: 760-476-2481
FAX: 760-476-4110

ES_PL_AES_ECB_1.0

Part # Altera Cyclone III EP3C Version ES_PL_AES_ECB_1.0
N/A 10/1/2013 ECB ( e only; 256 );

"ViaSat Embeddable Security System cryptographic algorithm implementations."

2633 ViaSat, Inc.
6155 El Camino Real
Carlsbad, CA 92009
USA

-David Schmolke
TEL: 760-476-2461
FAX: 760-476-4110

-Rich Quintana
TEL: 760-476-2481
FAX: 760-476-4110

ES_Cryptoservices_1.0

Version ES_Cryptoservices_1.0 (Firmware)
Altera Cyclone III FPGA 10/1/2013 ECB ( e/d; 256 ); CTR ( int only; 256 )

"ViaSat Embeddable Security System cryptographic algorithm implementations."

2632 N/A N/A N/A 9/27/2013 N/A
2631 Entrust, Inc.
One Lincoln Centre
5400 LBJ Freeway
Suite 1340
Dallas, TX 75240
USA

-Greg Wetmore
TEL: 613-270-2773
FAX: 613-270-3400

-Mark Joynes
TEL: 613-270-3134
FAX: 613-270-3400

Entrust Authority™ Security Kernel

Version 8.1Sp1 R2
Intel Core 2 Duo E8400 w/ Microsoft Windows Server 2008 R2 Enterprise Edition 9/27/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 8 , 16 ) ; AAD Lengths tested: ( 128 , 1024 , 8 , 16 ) ; IV Lengths Tested: ( 128 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported
RNG: Val# 1244

"The Security Kernel is a C++ implementation of cryptographic functions accessible by an object-oriented API. Depending on configuration, the algorithms may be implemented in software, hardware or both. The industry standard Cryptoki API from PKCS #11, is used as the interface to hardware-based cryptographic modules."

2630 BlackBerry
295 Phillip Street
Waterloo, ON N2L3W8
Canada

-Security Certifications Team
TEL: 519-888-7465x72921
FAX: 905-507-4230

BlackBerry Cryptographic Algorithm Library

Version 6.1
Intel Xeon X5650 w/ CentOS 5.5 Linux 32-bit; Intel Xeon X5650 w/ CentOS 5.5 Linux 64-bit; Intel Xeon X5650 w/ Windows XP 32-bit; Intel Xeon X5650 w/ Windows XP 64-bit; ARMv7 w/ QNX Neutrino 8.0 9/30/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 10 11 12 13 (Tag Length(s): 8 10 12 14 16 )

CMAC (Generation ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )
PT Lengths Tested: ( 0 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 , 80 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The BlackBerry Cryptographic Algorithm Library is a suite of cryptographic algorithms that provides advanced cryptographic functionality to systems running BlackBerry 10 OS and components of BlackBerry Enterprise Service 10."

2629 SafeNet, Inc.
20 Colonnade Road, Suite 200
Ottawa, ON K2E 7M6
Canada

-Chris Brych
TEL: 613-221-5081
FAX: 613-723-5079

SafeNet Luna K5

Version 4.7.6 (Firmware)
StrongARM II (80219) 9/27/2013 ECB ( e/d; 128 , 192 , 256 );

"The Luna K5 Cryptographic Library provides a broad suite of high-performance cryptographic operations. All cryptographic algorithms are implemented within the module''''s firmware and associated co-processor."

2628 Microsemi Corporation
One Enterprise
Aliso Viejo, CA 92656
USA

-Richard Newell
TEL: (408) 643-6146

Microsemi SoC Cryptographic Module Mark II

Version 1.0 (Firmware)
Mentor Graphics Questa Simulator 10.1c 9/27/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); OFB ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"The Microsemi SoC Cryptographic Module provides custom hardware/firmware acceleration of the standard cryptographic algorithms used in Microsemi FPGAs and SoC FPGAs like SmartFusion®2 and Igloo®2. They are used to securely configure the devices, and are also made available to the FPGA user via an internal bus interface for use in end applications."

09/30/13: Updated implementation information;

2627 IBM
z/VM Design and Development
1701 North Street
Building 250-2
Endicott, NY 13760
U.S.

-Brian W. Hugenbruch
TEL: 607-429-3660

IBM z/VM 6.3 System SSL

Version 6.3 plus APAR PM95516
Part # 5741-A08
System z10 Enterprise Class processor w/ IBM z/VM V6.3 9/27/2013 CBC ( e/d; 128 , 256 );

"z/VM System SSL provides cryptographic functions which allows z/VM to protect data using the SSL/TLS protocols. z/VM System SSL also enables administrators to create and manage X.509 V3 certificates and keys within key database files."

2626 Sirius Corporation Limited
Rivermead House, Hamm Moor Lane
Weybridge, Surrey KT15 2SF
United Kingdom

-Simon King
TEL: +44 870 6080063

-Mark Taylor
TEL: +44 870 6080063

strongswan-aes-gcm

Version 5.1.0
Intel AMD 64bit x86 w/ Debian 7; Intel AMD 64bit x86 w/ OSX 10.8; Intel AMD 64bit x86 w/ Ubuntu 12.10 9/27/2013 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The strongswan-osx-aes-gcm function provides AES_GCM in libipsec for StrongSwan Assure in tandem with OpenSSL, to mitigate the missing implementation in the OSX kernel. Also works on GNU/Linux based operating systems if required."

2625 Motorola Solutions, Inc.
6480 Via Del Oro
San Jose, CA 95119
USA

-Udayan Borkar
TEL: 408-528-2361
FAX: 408-528-2903

-Colin Cooper
TEL: 408-528-2871
FAX: 408-528-2903

OpenSSL

Version 1.2.3 (Firmware)
RMI XLR V0.4 9/27/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 );

"OpenSSL is a third party open source package which provides cryptographic services to userspace daemons. Version is openssl-fips-1.2.3. Userspace daemons (like RADIUS, openssh) use openssl crypto services. fips_mode_set() is invoked from respective daemon initialization functions."

2624 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

IOS Common Cryptographic Module (IC2M) within Cat4K

Version Rel 1 (1.0.0) (Firmware)
Freescale MPC8572E 9/11/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CMAC (Generation ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 32 ; Tag Len(s) Min: 1 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 160 ) ; AAD Lengths tested: ( 0 , 512 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"IOS Common Cryptographic Module within cat4k"

2623 WatchDox, Inc.
299 S California Ave.
Palo Alto, CA 94306
USA

-Adi Ruppin
TEL: 800-209-1688

WatchDox CryptoModule

Version 1.0
ARM Cortex A9 w/ Android 4.1; ARMv7 w/ Apple iOS 6.1; Intel Xeon without AES-NI w/ Red Hat Enterprise Linux 6; Intel Core (x64) with AES-NI w/ Windows 7 32-bit 9/11/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The WatchDox Crypto Module provides the services necessary to support the cryptographic features and functions of the WatchDox Secure File Sharing services and products."

2622 Box, Inc.
4440 El Camino Real
Los Altos, CA 94022
USA

-Crispen Maung
TEL: (650) 329-1210

Box Upload/Download Cryptographic Module

Version 1
Intel(R) Xeon(R) w/ Scientific Linux 6.4 running on VMware vSphere 5.0 9/11/2013 ECB ( e/d; 256 ); CTR ( ext only; 256 )

"Box''s cryptographic module is a C language-based implementation of cryptographic functions built using an OpenSSL FIPS Object Module. Box provides assurance that content encrypted by the product utilizes a FIPS 140-2 solution."

09/24/13: Updated implementation information;

2621 Sabine Inc.
13301 NW US HWY 441
Alachua, FL 32615
USA

-Ed Thurmond
TEL: 386-418-2000
FAX: 386-418-2001

Tiny AES

Version v1.0 (Firmware)
Actel Libero v9.1, Model Sim 6.6d 8/30/2013 ECB ( e/d; 256 );

"AES reusable IP cryptographic encryptor/decryptor core supporting AES256 bit keys for ASIC and FPGA devices. Provides cryptographic services implemented in Sacom Digital Wireless microphone systems as well as Sabine digital wireless equipment."

09/03/13: Updated vendor information;

2620 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

IOS Algorithms

Version 1.0 (Firmware)
Cavium CN5200; Freescale MPC8572E; Intel 82576; Freescale P1021; Freescale MPC8358E 8/30/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 128 , 160 ) ; AAD Lengths tested: ( 0 , 512 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported
DRBG: Val# 401

"IOS Firmware cryptographic implementations used within Cisco devices to provide cryptographic functions."

01/30/14: Updated implementation information;

2619 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Stan Mesceda
TEL: 443-327-1582

-Chris Brych
TEL: 613-221-5081
FAX: 613-723-5079

SxE Cryptographic Library

Version 4.3 (Firmware)
Motorola Freescale MPC8280 (PPC32) 8/30/2013 CFB128 ( e/d; 128 , 256 );

"The SxE Cryptographic Library provides cryptographic algorithms for the SxE family of products. Based on OpenSSL, the SxE Cryptographic Library exposes an Application Programming Interface (API) to support software based security relevant services within SafeNet''''s SxE product line."

2618 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Chris Brych
TEL: 613-221-5081
FAX: 613-723-5079

SSE 2082 Module

Version 0.3 (Firmware)
Xilinx XC2V4000 8/30/2013 ECB ( e only; 256 ); CTR ( int only; 256 )

"The SSE 2082 Module is a cryptographic accelerator that implements the AES algorithm operating at either 155/622 MB for OC-3/OC-12 to 2.4 GB for OC-48 networks. This module provides encryption functionality for SafeNet''s Model 600 SONET Encryption systems."

2617 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Chris Brych
TEL: 613-221-5081
FAX: 613-723-5079

SSE 2092 Module

Version 0.2 (Firmware)
Xilinx XC2VP50 8/30/2013 ECB ( e only; 256 ); CTR ( int only; 256 )

"The SSE 2092 Module is a cryptographic accelerator that implements the AES algorithm operating at 10 GB for OC-192 networks. This module provides encryption functionality for SafeNet''s Model 650 SONET Encryption systems."

2616 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Chris Brych
TEL: 613-221-5081
FAX: 613-723-5079

SSE 2093 Module

Version 2.2 (Firmware)
Xilinx XC4VLX100 8/30/2013 ECB ( e only; 128 , 256 ); CTR ( int only; 128 , 256 )

"The SEE 2093 Module is a cryptographic accelerator that implements the AES algorithm operating at 10GB. This module provides encryption functionality for SafeNet''s Model 650 Ethernet Encryption systems."

2615 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Chris Brych
TEL: 613-221-5081
FAX: 613-723-5079

SEE 2084 Module

Version 2.4 (Firmware)
Xilinx XC2V4000 8/30/2013 ECB ( e only; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"The SEE 2084 Module is a cryptographic accelerator that implements the AES algorithm operating at either 100Mbps or 1Gbps. This module provides encryption functionality for SafeNet''s Model 600 Ethernet Encryption systems."

2614 RICOH COMPANY, LTD.
Ricoh Building, 8-13-1 Ginza
Chuo-ku, Tokyo 104-8222
Japan

-Ricoh Fips Team

LPUX NVRAM Encryption Driver

Version 1.1
PMC-Sierra RM7035 w/ Customized NetBSD 2.0.3 8/30/2013 ECB ( e/d; 256 );

"The LPUX NVRAM Encryption Driver is software for RICOH MFP controller. The module implements AES EBC mode functions."

2612 Lumeta Corporation
300 Atrium Drive
Suite 302
Somerset, New Jersey 08873
USA

-Matt Webster
TEL: 732 357 3521
FAX: 732-564-0731

IPSonar

Version 5.5
Intel x86_64 Processor w/ FreeBSD 8.1 8/29/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"IPsonar scans a network to discovery its infrastructure - including network address spaces, connectivity flows, hosts, devices and leaks. It identifies and examines network-connected assets in order to create a topological view. IPsonar can be deployed as a single standalone appliance or as a collection of cooperating appliances."

2611 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

AP IOS Algorithm Implementations

Version 1.0 (Firmware)
Freescale P1021; Freescale MPC8343A; Freescale MPC8358E 8/29/2013 CBC ( e/d; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 22 - 30 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 13 (Tag Length(s): 8

"This is the algorithm implementations for Cisco IOS wireless appliances."

2610 Wave Systems Corp.
480 Pleasant St.
Lee, MA 01238
USA

-Steve MacKenzie
TEL: 408-517-6620
FAX: 408-873-8752

Javascript Cryptographic Library

Version 2.3.3
Intel Core i7 w/ Microsoft Windows 7; Intel Core i7 w/ Microsoft Windows 8 8/29/2013 ECB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"SJCL Javascript implementation to protect content posted and shared on social media sites."

2609 AirTight® Networks
339 N. Bernardo Avenue
Suite 200
Mountain View, CA 94043
USA

-Sri Sundaralingam
TEL: 650-961-1111

OpenSSL Library version 1.2

Version 6.7.U4.48 FIPS (Firmware)
AR9350 from Atheros Communications 8/29/2013 CBC ( e/d; 128 );

"The implementation performs wireless intrusion detection and prevention. It monitors radio channels to ensure conformance of wireless activity to security policy. It mitigates various types of wireless security violations such as rogue wireless networks, unauthorized wireless connections, network mis-configurations and denial of service attacks."

2608 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-2951

Fortinet FortiOS SSL Cryptographic Library

Version 4.0 MR3 (Firmware)
ARM v5 Compatible; Intel Celeron; Intel Core 2 Duo; Intel i5-750 Quad Core; Intel Xeon; Intel i3-540 Dual Core 8/29/2013 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiOS SSL Cryptographic Library v4.0 MR3 Build 3767, running on Intel x86 compatible processors."

10/01/13: Added new tested information;

2607 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-2951

Fortinet FortiOS FIPS Cryptographic Library

Version 4.0 MR3 (Firmware)
ARM v5 Compatible; Intel Celeron; Intel Core 2 Duo; ARM v5 Compatible; Intel Xeon; Intel i5-750 Quad Core; Intel i3-540 Dual Core 8/29/2013 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiOS FIPS Cryptographic Library v4.0 MR3, Build 3767, running on Intel x86 compatible processors."

10/01/13: Added new tested information;

2606 Harris Corporation
1680 University Avenue
Rochester, NY 14610
USA

-Robert Magnant
TEL: 585-242-3785
FAX: 585-241-8459

-Elias Theodorou
TEL: 585-242-3785
FAX: 585-241-8459

RF-7800W OU47x, OU49x, OU50x

Version 2.00 (Firmware)
Broadcom XLS108 8/29/2013 ECB ( e only; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 13 (Tag Length(s): 8

"This is a firmware library that provides the cryptographic functions used on Harris'' industry leading reliable, secure and high performance Broadband Ethernet Radio (BER) products: RF-7800W-OU50x, -OU47x, -OU49x."

2605 SafeNet Canada, Inc.
20 Colonnade Road, Suite 200
Ottowa, ON K2E 7M6
Canada

-Chris Brych
TEL: 613-221-5081
FAX: 613-723-5079

-Iain Holness
TEL: 613-221-5049
FAX: 613-723-5079

ProtectServer Gold

Version 3.20.01 (Firmware)
Intel 80219 (ARM V5T) 8/16/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The SafeNet PSG Firmware provides a wide range of cryptographic functions."

2604 M5 Network Security
Level 1
218 Northbourne Avenue
Braddon, ACT 2612
Australia

-Warwick Hoyle
TEL: +61 2 6195 1841

SCS Linux Kernel Cryptographic Services

Version kernel-PAE-2.6.32.14-127.scs.fips.fc12.i686
Intel(R) Atom(TM) CPU E660 @ 1.30GHz w/ Linux 2.6.32; Intel(R) Atom(TM) CPU Z510 @ 1.10GHz w/ Linux 2.6.32 8/16/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 256 , 104 , 408 ) ; AAD Lengths tested: ( 0 , 128 , 384 , 160 , 720 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"The M5 Secure Communications System (SCS) is a next-generation secure communications solution for military, government and large corporations. The SCS has been designed to allow mobile teams to securely exchange data in a cost-effective manner, with minimal administrative and configuration overheads."

2603 United States Special Operations Command (USSOCOM)
7701 Tampa Point Boulevard
MacDill Air Force Base, Florida 33621-5323
USA

-William W. Burnham
TEL: (813) 826-2282

Suite B Cryptographic Algorithms

Version 1.0
Intel Xeon E5530; Qualcomm Snapdragon S2 MSM8655 8/16/2013 ECB ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Externally ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 136 , 1016 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 136 , 1016 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"KEYW, in coordination with the United States Special Operations Command (USSOCOM), has developed a Suite B-compliant, standards based, AES/GCM-256 layer of encrypted communications between a BlackBerry Enterprise Server (BES) and a BlackBerry Mobile Set (MS) with Elliptic Curve (EC) key exchange used to negotiate symmetric keys."

07/25/14: Updated implementation information;

2602 RSA Security, Inc.
177 Bovet Road, Suite 200
San Mateo, CA 94402
USA

-Kathy Kriese
TEL: 650-931-9781

RSA BSAFE® Crypto-J Software Module

Version 4.1
PowerPC (32bit) w/ Linux 2.6 with Sun JRE 5.0; ARM9 (32bit) w/ Linux 2.6 with Sun JRE 6.0 8/16/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"RSA BSAFE Crypto-J security software is designed to help protect sensitive data as it is stored using strong encryption techniques to provide a persistent level of protection. It supports a wide range of industry standard encryption algorithms offering Java developers the flexibility to choose the option most appropriate to meet their requirements"

2601 Dell, Inc.
1925 Isaac Newton Square East
Suite 440
Reston, VA 20190
USA

-Joe Leslie
TEL: 949-754-1263
FAX: 949-754-8999

-Jason Raymod
TEL: 617-261-6968

Dell AppAssure Crypto Library

Version 1.0
Intel Xeon with AES-NI w/ Windows 2008 R2 64-bit; Intel Xeon with AES-NI w/ Windows 2012 64-bit; Intel Xeon w/ Windows 2008 R2 64-bit; Intel Xeon w/ Windows 2012 64-bit 8/16/2013 CBC ( e/d; 256 );

"The Dell AppAssure Crypto Module provides data encryption functionality. The Module is a software component used by other software products to encrypt and decrypt data. The Module implements AES (Rijndael) CBC mode functions. Physically, the Module is a DLL file delivered with a file containing the DLL''s digital signature."

2600 Hewlett-Packard Development Company, L.P.
11445 Compaq Center Dr. W
Houston, TX 77070
USA

-Manny Novoa
TEL: (218) 514-9601

Blade System Virtual Connect

Version 1.5
MPC8347 w/ Embedded Linux with Kernel v2.6.32; MPC8535 w/ Embedded Linux with Kernel v2.6.32 8/16/2013 CBC ( e/d; 128 , 192 , 256 );

"HP Virtual Connect is a set of interconnect modules and embedded software for HP BladeSystem c-Class enclosures that controls the configuration and administration of server connections. The cryptographic functions of Virtual Connect provide security for remote administration by limiting access to HTTPS and SSH protocols only."

2599 Digital Monitoring Products, Inc.
2500 N. Partnership Boulevard
Springfield, MO 65803-8877
USA

-Terry Shelton
TEL: 417-831-9362
FAX: 417-831-1325

SCS-104

Version 102 (Firmware)
NXP LPC2468 8/16/2013 ECB ( e/d; 256 );

"The SCS-104 Line Card provides four digital dialer lines and a network connection for communication to DMP panels. Each card includes one shielded eight-pin modular connector for the network connection and a non-shielded eight-pin modular connector for up to four digital dialer lines."

2598 Toshiba Corporation
1-1, Shibaura 1-chome
Minato-ku, Tokyo 105-8001
Japan

-Akihiro Kimura
TEL: +81-45-890-2856
FAX: +81-45-890-2593

Toshiba Secure Cryptographic Suite for Enterprise SSD

Part # 88SS9036
N/A 8/16/2013 ECB ( e/d; 256 ); CBC ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (p) ))

"a library of unique software and hardware cipher solutions which are standard encryption algorithm-based to provide Toshiba enterprise SSD products and the systems using them a robust and secure data storage environment"

2597 NXP Semiconductors
Mikronweg 1
Gratkorn, 8101
Austria

-Markus Moesenbacher
TEL: +43 3124 299 652
FAX: +43 3124 299 270

NXP AES regular CMAC Component

Version AESR_CMAC_JCOP_242_R3 (Firmware)
Part # NXP P5CD081 Family
NXP P5CD081 Family 8/16/2013

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )
AES Val#2596

"Single Chip Module with NXP Secure Smart Card Controller of P5CD081 Family. P5CD081 Family comprises: P5CD145 V0A, P5CC145 V0A, P5CN145 V0A, P5CD081 V1A, P5CC081 V1A, P5CN081 V1A, P5CD145 V0B, P5CC145 V0B, and P5CD081 V1D."

2596 NXP Semiconductors
Mikronweg 1
Gratkorn, 8101
Austria

-Markus Moesenbacher
TEL: +43 3124 299 652
FAX: +43 3124 299 270

NXP AES regular Component

Version AESR_JCOP_242_R3 (Firmware)
Part # NXP P5CD081 Family
NXP P5CD081 Family 8/16/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Single Chip Module with NXP Secure Smart Card Controller of P5CD081 Family. P5CD081 Family comprises: P5CD145 V0A, P5CC145 V0A, P5CN145 V0A, P5CD081 V1A, P5CC081 V1A, P5CN081 V1A, P5CD145 V0B, P5CC145 V0B, and P5CD081 V1D."

2595 Digital Monitoring Products, Inc.
2500 N. Partnership Boulevard
Springfield, MO 65803-8877
USA

-Terry Shelton
TEL: (417) 831-9362
FAX: (417) 447-9698

-Leanna Bremenkamp
TEL: (417) 831-9362
FAX: (417) 447-9698

XR550Encryption

Version 102 (Firmware)
NXP ARM Cortex 8/16/2013 ECB ( e/d; 256 );

"The DMP XR550 Series panel is a 12 VDC, combined access control, burglary, and fire communicator panel with battery backup. The XR550 Series provides eight on-board burglary zones and two on-board 12 VDS Class B powered zones with reset capability to provide for 2-wire smoke detectors, relays, or other latching devices."

2594 Cambium Networks Limited
Linhay Business Park
Ashburton
Newton Abbot, Devon TQ12 7UP
United Kingdom

-Mark Thomas
TEL: +44 1364 655586
FAX: +44 1364 654625

AES Stream Encryption

Version Helion Fast AES Core 120918 (Firmware)
Mentor Graphics ModelSim 8/16/2013 CFB128 ( e only; 128 , 192 , 256 );

"AES Stream Encryption provides AES encryption with 128-bit, 192-bit and 256-bit key size for the multiplexed data stream transmitted and received at the wireless port. Encryption and decryption is implemented in FPGA, and based on a Helion Technologies IP Core."

2593 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: 651-628-1633
FAX: 651-628-2706

McAfee Core Cryptographic Module_Disk Handler

Version 1.0
Intel Core i7 with AES-NI w/ McAfee Endpoint Encryption Preboot OS; Intel Core i3 without AES-NI w/ McAfee Endpoint Encryption Preboot OS; Intel Core i5 with AES-NI w/ McAfee Endpoint Encryption Preboot OS 8/16/2013 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

"This Cryptographic algorithm module provides cryptographic functionality for McAfee''s Endpoint Encryption product range."

11/19/13: Updated implementation information;
12/17/13: Added new tested information;
01/09/14: Updated implementation information;

2592 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: 651-628-1633
FAX: 651-628-2706

McAfee Core Cryptographic Module MFE

Version 1.0
Intel Core i5 with AES-NI and RdRand w/ Windows 8 running in 64-bit UEFI mode; Intel Core i3 without AES-NI w/ McAfee Endpoint Encryption Preboot OS; Intel Core i5 with AES-NI w/ McAfee Endpoint Encryption Preboot OS; Intel Core i7 with AES-NI w/ McAfee Endpoint Encryption Preboot OS; Intel Core i3 without AES-NI, with RdRand w/ Windows 8 running in 64-bit UEFI mode; Intel Core i7 with AES-NI and RdRand w/ Windows 8 running in 64-bit UEFI mode; Intel Core i5 without AES-NI or RdRand w/ Windows 8 running in 32-bit UEFI mode; Intel Atom without AES-NI or RdRand w/ Windows 8 running in 32-bit UEFI mode; Intel Core 2 Duo without AES-NI or RdRand w/ Macintosh platform running EFI preboot; Intel Xeon without AES-NI or RdRand w/ Macintosh platform running EFI preboot; Intel Core i3 with AES-NI and RdRand w/ Macintosh platform running EFI preboot; Intel Core i5 with AES-NI and RdRand w/ Macintosh platform running EFI preboot; Intel Core i7 with AES-NI and RdRand w/ Macintosh platform running EFI preboot; Intel Core i3 without AES-NI or RdRand w/ Windows XP 32-bit; Intel Core i3 without AES-NI or RdRand w/ Windows 7 64-bit; Intel Core i7 with AES-NI and RdRand w/ Windows 7 64-bit; Intel Core i7 with AES-NI and RdRand w/ Windows 8 64-bit; Intel Atom without AES-NI or RdRand w/ Windows 8 32-bit; Intel Core 2 Duo without AES-NI or RdRand w/ MacOS X Lion v10.7; Intel Xeon without AES-NI or RdRand w/ MacOS X Mountain Lion v10.8; Intel Core i3 with AES-NI and RdRand w/ MacOS X Mountain Lion v10.8; Intel Core i5 with AES-NI and RdRand w/ MacOS X Lion v10.7; Intel Core i7 with AES-NI and RdRand w/ MacOS X Mountain Lion v10.8; Intel Core i5 with AES-NI but not RdRand w/ Windows Vista 32-bit; Intel Core i7 with AES-NI but not RdRand w/ Windows Vista 64-bit; Intel Core i5 with AES-NI but not RdRand w/ Windows 7 32-bit; Intel Core i5 with AES-NI and RdRand w/ Windows 8 32-bit; Intel Core i5 with AES-NI and RdRand w/ Windows 8 64-bit 8/16/2013 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB8 ( e/d; 256 );

"This Cryptographic algorithm module provides cryptographic functionality for McAfee''s Endpoint Encryption product range."

11/19/13: Updated implementation information;
12/18/13: Added new tested information;

2591 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: 651-628-1633
FAX: 651-628-2706

McAfee Core Cryptographic Module BSAFE

Version 1.0
Intel Core i5 with AES-NI and RdRand w/ Windows 8 running in 64-bit UEFI mode; Intel Core i3 without AES-NI w/ McAfee Endpoint Encryption Preboot OS; Intel Core i5 with AES-NI w/ McAfee Endpoint Encryption Preboot OS; Intel Core i7 with AES-NI w/ McAfee Endpoint Encryption Preboot OS; Intel Core i3 without AES-NI, with RdRand w/ Windows 8 running in 64-bit UEFI mode; Intel Core i7 with AES-NI and RdRand w/ Windows 8 running in 64-bit UEFI mode; Intel Core i5 without AES-NI or RdRand w/ Windows 8 running in 32-bit UEFI mode; Intel Atom without AES-NI or RdRand w/ Windows 8 running in 32-bit UEFI mode; Intel Core i3 with AES-NI and RdRand w/ MacOS X Mountain Lion v10.8; Intel Core i5 with AES-NI and RdRand w/ MacOS X Lion v10.7; Intel Core i7 with AES-NI and RdRand w/ MacOS X Mountain Lion v10.8; Intel Core i5 with AES-NI but not RdRand w/ Windows Vista 32-bit ; Intel Core i7 with AES-NI but not RdRand w/ Windows Vista 64-bit; Intel Core i5 with AES-NI but not RdRand w/ Windows 7 32-bit; Intel Core i5 with AES-NI and RdRand w/ Windows 8 32-bit; Intel Core i5 with AES-NI and RdRand w/ Windows 8 64-bit; Intel Core 2 Duo without AES-NI or RdRand w/ Macintosh platform running EFI preboot; Intel Xeon without AES-NI or RdRand w/ Macintosh platform running EFI preboot; Intel Core i3 with AES-NI and RdRand w/ Macintosh platform running EFI preboot; Intel Core i5 with AES-NI and RdRand w/ Macintosh platform running EFI preboot; Intel Core i7 with AES-NI and RdRand w/ Macintosh platform running EFI preboot; Intel Core i3 without AES-NI or RdRand w/ Windows XP 32-bit; Intel Core i3 without AES-NI or RdRand w/ Windows 7 64-bit; Intel Core i7 with AES-NI and RdRand w/ Windows 7 64-bit; Intel Core i7 with AES-NI and RdRand w/ Windows 8 64-bit; Intel Atom without AES-NI or RdRand w/ Windows 8 32-bit; Intel Core 2 Duo without AES-NI or RdRand w/ MacOS X Lion v10.7; Intel Xeon without AES-NI or RdRand w/ MacOS X Mountain Lion v10.8; 8/16/2013 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB128 ( e/d; 256 );

"This Cryptographic algorithm module provides cryptographic functionality for McAfee''s Endpoint Encryption product range."

11/19/13: Updated implementation;
12/17/13: Added new tested information;

2590 Integral Memory PLC.
Unit 6 Iron Bridge Close
Iron Bridge Business Park
Off Great Central Way
London, Middelsex NW10 0UF
United Kingdom

-Patrick Warley
TEL: +44 (0)20 8451 8700
FAX: +44 (0)20 8459 6301

-Samik Halai
TEL: +44 (0)20 8451 8704
FAX: +44 (0)20 8459 6301

AES Module

Part # PS2251-13 and PS2251-15
N/A 8/16/2013 ECB ( e/d; 256 ); CBC ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"The Integral Memory AES USB 3.0 drives are removable storage devices which encrypt data transferred onto them. They offer Premium AES 256 bit security, and come in various sizes."

2589 FRAMA AG
Unterdorf
Lauperswil, Bern CH-3438
Switzerland

-Beat Waelti
TEL: +41-34-49698-98
FAX: +41-34-49698-00

PSD-II by FRAMA

Version V2.0.6 (Firmware)
Part # FRM-II Version 1.2
firmware: running on built-in Fujitsu MB91302APM1R micro controller 8/16/2013 ECB ( e/d; 128 ); CBC ( e/d; 128 );

"The PSD-II (Postal Security Device-II) is a hardware/firmware cryptographic module to be used in automated franking machines."

2588 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CS Series Kernel Crypto Library

Version 2.6.32 (Firmware)
Intel Core 2 Duo LGA775; AMD Geode LX800 7/22/2013 ECB ( e only; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Externally ) ; IV Lengths Tested: ( 160 , 720 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 390

"The CS Series Kernel Crypto Library Module provides FIPS 140-2 approved cryptographic algorithms for the CS10 and CS100 Encryptors. Based upon OpenSSL the Kernel Crypto Library provides an Application Programming Interface (API) to support security relevant services."

09/12/13: Added new tested information;
09/30/13: Updated vendor information;

2587 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN1000 and CN3000 Series Common Crypto Library

Version 0.98 (Firmware)
Freescale MPC8280 7/22/2013 CFB128 ( e/d; 128 , 256 );

"The CN1000 and CN3000 Series Common Crypto Library Module provides FIPS 140-2 approved cryptographic algorithms for the CN1000 and CN3000 Series Encryptors. Based upon OpenSSL the Library provides an Application Programming Interface (API) to support security relevant services."

09/30/13: Updated vendor information;

2586 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6000 Series Common Crypto Library

Version 0.98 (Firmware)
Intel ATOM 7/22/2013 CFB128 ( e/d; 128 , 256 );

"The CN6000 Series Common Crypto Library Module provides FIPS 140-2 approved cryptographic algorithms for CN6000 Series Encryptors. Based upon OpenSSL the Common Crypto Library provides an Application Programming Interface (API) to support security relevant services."

09/30/13: Updated vendor information;

2585 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CS Series Common Crypto Library

Version 0.98 (Firmware)
Intel Core 2 Duo LGA775; AMD Geode LX800 7/22/2013 CFB128 ( e/d; 128 , 256 );

"The CS Series Common Crypto Library Module provides FIPS 140-2 approved cryptographic algorithms for the CS10 and CS100 Encryptors. Based upon OpenSSL the Library provides an Application Programming Interface (API) to support security relevant services."

2584 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6100 Ethernet Firmware Crypto Library

Version 1.3 (Firmware)
Xilinx XC6VLX195T 7/22/2013 ECB ( e only; 128 , 256 ); CTR ( int only; 128 , 256 )

"The CN6100 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN6000 Series Encryptor."

09/30/13: Updated vendor information;

2583 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6040 Fibre Channel Firmware Crypto Library

Version 1.2 (Firmware)
Xilinx XC6VLX130T 7/22/2013 CFB128 ( e/d; 256 );

"The CN6040 Fibre Channel Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN6000 Series Encryptor."

09/30/13: Updated vendor information;

2582 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN6040 Ethernet Firmware Crypto Library

Version 1.2 (Firmware)
Xilinx XC6VLX130T 7/22/2013 ECB ( e only; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"The CN6040 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN6000 Series Encryptor."

09/30/13: Updated vendor information;

2581 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN3000 SONET Firmware Crypto Library

Version 0.2 (Firmware)
Xilinx XC2VP50 7/22/2013 ECB ( e only; 256 ); CTR ( int only; 256 )

"The CN3000 SONET Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN3000 Series Encryptor."

09/30/13: Updated vendor information;

2580 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN3000 Ethernet Firmware Crypto Library

Version 2.2 (Firmware)
Xilinx XC4VLX100 7/22/2013 ECB ( e only; 128 , 256 ); CTR ( int only; 128 , 256 )

"The CN3000 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN3000 Series Encryptor."

09/30/13: Updated vendor information;

2579 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN1000 Fibre Channel Firmware Crypto Library

Version 2.0 (Firmware)
Altera EP2SGX60C 7/22/2013 CFB128 ( e/d; 256 );

"The CN1000 Fibre Channel Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN1000 Series Encryptor."

09/30/13: Updated vendor information;

2578 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN1000 Ethernet Firmware Crypto Library

Version 2.4 (Firmware)
Xilinx XC4VLX60 7/22/2013 ECB ( e only; 128 , 256 ); CFB128 ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"The CN1000 Ethernet Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN1000 Series Encryptor."

09/30/13: Updated vendor information;

2577 Senetas Corporation Ltd. and SafeNet Inc.
Level 1, 11 Queens Road
Melbourne, Victoria 3004
Australia

-John Weston
TEL: +61 3 9868 4555
FAX: +61 3 9821 4899

-Chris Brych
TEL: +1 613 221 5081
FAX: +1 613 723 5079

CN1000 SONET Firmware Crypto Library

Version 0.3 (Firmware)
Xilinx XC2VP40 7/22/2013 ECB ( e only; 256 ); CTR ( int only; 256 )

"The CN1000 SONET Crypto Library Module is a cryptographic accelerator that contains FIPS 140-2 approved cryptographic algorithms. This module provides encryption functionality for the CN1000 Series Encryptor."

09/30/13: Updated vendor information;

2576 Vidyo, Inc.
433 Hackensack Avenue
Hackensack, NJ 07601
USA

-Adi Regev
TEL: 201-467-4636

Cryptographic Security Kernel

Version 1.0
quad-core Nvidia Tegra 3 w/ Android 4.1.1; TI dual-core OMAP4470 w/ Kindle 8.4.3; dual-core Nvidia Tegra 2 w/ Android 4.1.1;quad-core Cortex A9 (T30L) w/ Android 4.2.2; quad-core Cortex-A9 w/ Android 4.1.2; dual-core ARM Cortex-A9 w/ Android 4.0.4; single-core ARM Cortex-A8 w/ Android 4.1.2; ARMv7s Apple A6X w/ iOS 6.1; ARMv7s Apple A6 w/ iOS 6.1 7/22/2013 ECB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Vidyo creates HD video conferencing products that leverage their patented Adaptive Video Layering Architecture technology, which provides continuous HD video streaming regardless of network conditions. The Vidyo Cryptographic Security Kernel supplies the cryptographic services necessary to support Vidyo''s secure video and data transmissions."

2575 Sourcefire, Inc.
9770 Patuxent Woods Drive
Columbia, Maryland 21046
USA

-Quang Trinh
TEL: 410-910-9554

Sourcefire 3D System Cryptographic Module

Version 1.0
Intel Xeon w/ Linux v5.2, 64-bit; Intel Xeon w/ Linux v5.2, 32-bit 7/22/2013 CBC ( e/d; 128 , 192 , 256 );

"The Sourcefire 3D System Cryptographic Module is a library that provides cryptographic functions for the Sourcefire 3D System line of appliances."

2574 Oracle Corporation
500 Oracle Parkway
Redwood Shores, CA 94065
USA

-Security Evaluations Manager
TEL: 781-442-0451

Oracle Solaris Kernel Cryptographic Framework with SPARC T4/T5

Version 1.1
SPARC T4 w/ Oracle Solaris 11.1; SPARC T5 w/ Oracle Solaris 11.1 7/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 256 , 1024 , 160 ) ; AAD Lengths tested: ( 0 , 256 , 1024 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Oracle Solaris OS uses the Oracle Solaris Userland Cryptographic Framework module for cryptographic functionality for any applications running in user space through one of the three exposed APIs. The module includes the SPARC T4 and SPARC T5 processor special instruction sets for hardware-accelerated cryptography."

11/18/13: Updated implementation information;
01/08/14: Updated vendor information information;

2573 Oracle Corporation
500 Oracle Parkway
Redwood Shores, CA 94065
USA

-Security Evaluations Manager
TEL: 781-442-0451

Oracle Solaris Kernel Cryptographic Library

Version 1.1
Intel Xeon E5 series with AES-NI w/ Oracle Solaris 11.1; SPARC 64 w/ Oracle Solaris 11.1; Intel Xeon w/ Oracle Solaris 11.1 7/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 256 , 1024 , 160 ) ; AAD Lengths tested: ( 0 , 256 , 1024 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Oracle Solaris OS utilizes the Oracle Solaris Kernel Cryptographic Framework module to provide cryptographic functionality for any kernel-level processes that require it, via Oracle-proprietary APIs."

08/12/13: Added new tested information;
11/18/13: Updated implementation information;
01/08/14: Updated vendor information;

2572 Oracle Corporation
500 Oracle Parkway
Redwood Shores, CA 94065
USA

-Security Evaluations Manager
TEL: 781-442-0451

Oracle Solaris Userland Cryptographic Framework with SPARC T4/T5

Version 1.1
SPARC T4 w/ Oracle Solaris 11.1; SPARC T5 w/ Oracle Solaris 11.1 7/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 256 , 1024 , 160 ) ; AAD Lengths tested: ( 0 , 256 , 1024 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"The Oracle Solaris OS uses the Oracle Solaris Userland Cryptographic Framework module for cryptographic functionality for any applications running in user space through one of the three exposed APIs. The module includes the SPARC T4 and SPARC T5 processor special instruction sets for hardware-accelerated cryptography."

11/18/13: Updated implementation information;
01/09/14: Updated vendor information;

2571 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-James Reardon
TEL: 651-628-5346

McAfee Database Security Sensor Cryptographic Module

Version 1.0
IBM PowerPC w/ AIX 6.1; Itanium w/ HP-UX 11.31; Intel Xeon w/ RHEL 5.9; Intel Xeon w/ CentOS 5.5; Intel Xeon w/ SUSe 11 patch 2; Sparc 64 w/ Solaris 10; AMD Opteron w/ Windows Server 2008 R2; Intel Xeon w/ Windows Server 2008 7/15/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The McAfee Database Security Sensor Cryptographic Module Version 1.0 provides the necessary services to support the cryptographic features and functions of McAfee''s line of Database Security Sensor products."

10/29/13:Added ECB CFB8 CFB128 and OFB testing

2570 Stanley Security Solutions, Inc.
1707 Orlando Central Parkway
Suite 500
Orlando, FL 32809
USA

-Mr. Christopher Harris
TEL: (407) 206-7415

Stanley Global Reader

Version 2.00.03 (Firmware)
NXP LPC1752 7/15/2013 CBC ( e/d; 128 );

"The algorithm is used in a contact-less RFID reader for secure transactions with Mifare Desfire EV1 transponders. The reader is used as part of an access control system."

2569 Oracle Corporation
500 Oracle Parkway
Redwood Shores, CA 94065
USA

-Security Evaluations Manager
TEL: 781-442-0451

Oracle Solaris Userland Cryptographic Library

Version 1.1
Intel Xeon E5 series with AES-NI w/ Oracle Solaris 11.1; SPARC 64 w/ Oracle Solaris 11.1; Intel Xeon w/ Oracle Solaris 11.1 7/15/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 256 , 1024 , 160 ) ; AAD Lengths tested: ( 0 , 256 , 1024 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

"The Oracle Solaris OS utilizes the Oracle Solaris Userland Cryptographic Framework module for cryptographic functionality for applications running in user space. It exposes three public interfaces to provide cryptography to any application designed to utilize them."

08/12/13: Added new tested information;
11/18/13: Updated implementation information;
01/09/14: Updated vendor information;

2568 Certicom Corp.
4701 Tahoe Blvd.
Building A
Missisauga, ON L4W 0B5
Canada

-Certicom Sales
TEL: 1-905-507-4220
FAX: 1-905-507-4230

-Ian Laidlaw
TEL: 1-289-261-4277
FAX: 1-905-507-4230

Security Builder® FIPS Core

Version 6.1
Intel x86 (Xeon X5650) w/ CentOS Linux 32-bit; Intel x64 (Xeon X5650) w/ CentOS Linux 64-bit; Intel x86 (Xeon X5650) w/ Windows XP 32-bit; Intel x64 (Xeon X5650) w/ Windows XP 64-bit; ARMv7 w/ QNX Neutrino 8.0 7/15/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 10 11 12 13 (Tag Length(s): 8 10 12 14 16 )

CMAC (Generation ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )
PT Lengths Tested: ( 0 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 , 80 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Security Builder® FIPS Core provides application developers with cryptographic tools to easily integrate encryption, digital signatures and other security mechanisms into C-based apps for FIPS 140-2 and Suite B security. It can also be used with Certicom''s PKI, IPSec and SSL modules."

2567 Arista Networks Inc.
5453 Great America Pkwy
Santa Clara, CA 95054
USA

-Richard Whitney
TEL: 703-627-6092
FAX: 408-538-8920

OpenSSL

Version 1.0.0e-fips (Firmware)
AMD Turion™ II Neo N41H Dual-Core ;  Intel Pentium; Intel Xeon 7/15/2013 CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"The OpenSSL library implements a variety of FIPS approved algorithms to ensure that data can be transported, encrypted, and hashed in a secure manner."

05/06/14: Updated vendor and implementation information;
07/18/14: Added new tested information;

2566 Neopost Technologies, S.A.
113 Rue Jean Marin Naudin
BAGNEUX, 92220
France

-Nathalie Tortellier
TEL: +33 01 45 36 30 72
FAX: +33 01 45 36 30 10

Neopost PSD

Version A0018326A (Firmware)
Part # A0014227B
NXP LPC 3220 32-bit ARM microcontroller 7/5/2013

CMAC (Generation ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) AES Val#2565

"Neopost Postal Secure Device (PSD) for low to high range of franking machines"

2565 Neopost Technologies, S.A.
113 Rue Jean Marin Naudin
BAGNEUX, 92220
France

-Nathalie Tortellier
TEL: +33 01 45 36 30 72
FAX: +33 01 45 36 30 10

Neopost PSD

Version A0018322A (Firmware)
Part # A0014227B
NXP LPC 3220 32-bit ARM microcontroller 7/5/2013 CBC ( e/d; 128 );

"Neopost Postal Secure Device (PSD) for low to high range of franking machines"

2564 NXP Semiconductors
Mikronweg 1
Gratkorn, 8101
Austria

-Markus Moesenbacher
TEL: +43 3124 299 652
FAX: +43 3124 299 270

NXP AES CMAC Component

Version AES_CMAC_JCOP_242_R3 (Firmware)
Part # NXP P5CD081 Family
NXP P5CD081 Family 7/5/2013

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )
AES Val#2561

"Single Chip Module with NXP Secure Smart Card Controller of P5CD081 Family. P5CD081 Family comprises: P5CD145 V0A, P5CC145 V0A, P5CN145 V0A, P5CD081 V1A, P5CC081 V1A, P5CN081 V1A, P5CD145 V0B, P5CC145 V0B, and P5CD081 V1D."

2563 Blue Ridge Networks
14120 Parke Long Court, Suite 103
Chantilly, VA 20151
USA

-Nancy Canty
TEL: 703-633-7331

BorderGuard Cryptographic Module

Version 2.0 (Firmware)
AMCC 440GX 7/5/2013 CBC ( e/d; 128 , 192 , 256 );

CMAC (Generation/Verification ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 16 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )

"Cryptographic algorithms implemented in the BorderGuard DPF1 firmware."

2562 IBM Corporation
1 New Orchard Road
Armonk, NY 10504
USA

-Smita Dutta
TEL: 301-803-2540

Cryptographic Security Kernel (CSK)

Version 2.0 (Firmware)
Intel Xeon 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"IBM® Security QRadar® SIEM consolidates log source event data from thousands of devices endpoints and applications distributed throughout a network. The IBM Security QRadar SIEM provides a secure platform that meets FIPS 140-2 Level 2 requirements while allowing organizations to meet current and emerging compliance mandates."

2561 NXP Semiconductors
Mikronweg 1
Gratkorn, 8101
Austria

-Markus Moesenbacher
TEL: +43 3124 299 652
FAX: +43 3124 299 270

NXP AES Component

Version AES_JCOP_242_R3 (Firmware)
Part # NXP P5CD081 Family
NXP P5CD081 Family 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Single Chip Module with NXP Secure Smart Card Controller of P5CD081 Family. P5CD081 Family comprises: P5CD145 V0A, P5CC145 V0A, P5CN145 V0A, P5CD081 V1A, P5CC081 V1A, P5CN081 V1A, P5CD145 V0B, P5CC145 V0B, and P5CD081 V1D."

2560 Blue Coat Systems, Inc.
420 N. Mary Avenue
Sunnyvale, California 94085-4121
USA

-Diana Robinson
TEL: +1 (845) 454-6397

-Tammy Green
TEL: +1 (801) 999-2973

SGOS 6.5 Cryptographic Library

Version 3.1.1 (Firmware)
AMD64 Opteron (Istanbul); AMD64 Opteron (Shanghai); Intel Clarkdale; Intel Lynnfield; VIA NANO 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The SGOS 6.5 Cryptographic Library provides the necessary cryptographic services to Blue Coat’s proprietary operating system (SGOS 6.5), developed specifically for use on their family of Unified Security and Optimization solutions for business assurance."

2559 Imation Corp.
Discovery Bldg. 1A-041
Oakdale, MN 55128
USA

-Larry Hamid
TEL: 819-595-6130

RC-IRONKEY-CRYPTO

Version 1.0 (Firmware)
Part # 294.012
Imation 294.012 7/5/2013 ECB ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"The IronKey Workspace W700 includes Super Speed hardware-based 256-bit AES cryptography engine for encryption and decryption and RAM buffers via USB. It also includes RSA-2048, HMAC, and SHA-256 algorithms."

2558 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

CiscoSSL FIPS Object Module (Assembler)

Version 2.1
ARMv7 w/ Android 4.0; PowerPC, Freescale's PowerQUICC III Processor Family w/ Linux 2.6 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 24 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Partial ; Msg Len(s) Min: 0 Max: 64 ; Tag Len(s) Min: 16 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) ) KS: XTS_256( (e/d) ))

"The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."

2556 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

ACT-2Lite

Part # 15-14497-02(AT90S072)
N/A 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 256 )

"ACT-2Lite is an ASSP which is based on a smart card hardware platform with custom ROM code provided by Cisco."

12/20/13: Updated implementation information;

2555 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

McAfee Linux libgcrypt Cryptographic Engine

Version 1.4.5-9
Xeon E5540 w/ MLOS v2.2 running on VMware ESXi 4.1; Xeon E5540 w/ MLOS v2.2 running on VMware ESXi 5.0 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

2554 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

McAfee Linux libgcrypt Cryptographic Engine

Version 1.4.5-9 (Firmware)
Celeron E3400; Core i3; Xeon E5540 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

2553 Juniper Networks
1194 N. Mathilda Ave.
Sunnyvale, CA 94089
USA

-Robert Smith
TEL: 408-933-6866

Juniper Networks Pulse Cryptographic Module

Version 1.0
Intel Pentium E2160 (x86) w/ IVE OS 1.1; Intel Xeon E5530 (x86) w/ IVE OS 1.1 on VMware ESX; Intel Xeon x5670 (x86) with AES-NI w/ IVE OS 1.1 on VMware ESXi; Intel Core i5-2430M (x86) 64-bit with AES-NI w/ Microsoft Windows 7; Intel Core i5-2430M (x86) 32-bit with AES-NI w/ Microsoft Windows 7; Intel Core i7-3615QM (x86) with AES-NI w/ OS X 10.8; Intel Xeon x5670 (x86) w/ IVE OS 1.1 on VMware ESXi; Intel Core i7-3615QM (x86) w/ OS X 10.8 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Juniper Networks Pulse Cryptographic Module provides secure cryptographic services. It enables dynamic SSL VPN, NAC, mobile security, online meetings and collaboration, and application acceleration while removing the complexities of device type and security state, location, identity, and adherence to policies."

2552 Shure Inc.
5800 W Touhy Ave
Niles, IL 60714
USA

-Mr. Chris Frantisak
TEL: 847-600-8995

Shure AES FPGA Core

Version 1.0 (Firmware)
Modelsim PE 10.1d 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Shure AES reusable IP core for ASICs and FPGAs supports encryption and decryption using 128, 192 and 256-bit AES keys. It provides cryptographic services in Shure wired/wireless digital audio products."

08/06/13: Updated implementation information;

2551 A10 Networks, Inc.
3 West Plumeria Drive
San Jose, CA 95134
USA

-John Chiong
TEL: +1 408 325-8668

A10 Networks SoftAX Data Plane FIPS Library

Version 1.0
Intel Xeon w/ Redhat Enterprise Linux 5 running on KVM 0.14; Intel Xeon w/ Redhat Enterprise Linux 5 running on VMWare ESXi 4.0; Intel Xeon w/ Redhat Enterprise Linux 5 running on Citrix XenServer 6.0 7/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"SoftAX, part of A10 Networks'' award-winning AX Series Application Delivery Controller (ADC) family, is designed to meet the growing needs of organizations that require a flexible and easy-to-deploy application delivery and server load balancer solution running within a virtualized infrastructure."

08/15/13: Added new tested information;

2550 SafeNet, Inc.
4690 Millennium Drive
Belcamp, MD 21017
USA

-Chris Brych
TEL: 613-221-5081
FAX: 613-723-5079

Crypdll Cryptographic Library for ProtectV StartGuard

Version 1.0
Intel Xeon E5620 w/ VMware ESXi 5.0 6/28/2013 CBC ( e/d; 256 );

"CRYPdll Cryptographic Library provides AES cryptographic services for the SafeNet ProtectV StartGuard cryptographic module."

2549 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco IOS-XE

Version 3.7.2tS (Firmware)
Freescale Semiconductor 8548 Power QUICC; Intel Xeon 6/28/2013 CBC ( e/d; 128 , 192 , 256 );

"The ASR 1000 Routers accelerate services by offering performance and resiliency with optimized, intelligent services."

07/03/13: Updated implementation information;

2548 Cisco Systems, Inc.
170 W. Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

ONS Encryption Card Firmware Algorithms

Version 1.0 (Firmware)
Freescale P1010 6/28/2013 ECB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Firmware algorithm implementations for the ONS encryption cards."

2547 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Generic, A6)

Version 4.0
Apple A6 w/ iOS 7 6/28/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 380

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software."

2546 Cisco Systems, Inc.
170 W. Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

ONS Controller Card Firmware Algorithms

Version 1.0 (Firmware)
Freescale MPC8568E 6/28/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

"Firmware algorithm implementations for the ONS controller cards."

2545 AFORE Solutions Inc.
2680 Queensview Drive
Unit 150
Ottawa, ON K2B 8J9
Canada

-Tim Bramble
TEL: 613-224-5995 ext 232
FAX: 613-224-5410

-Hans Johnsen
TEL: 613-224-5995 ext 257
FAX: 613-224-5410

CloudLink Crypto Module

Version 1.0
Intel Xeon E5-2420 with AES-NI w/ Linux Ubuntu 12.04 with VMWare ESXi 5.1.0; Intel Xeon E5-2420 w/ Ubuntu Linux 12.04 with VMWare ESXi 5.1.0 6/28/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 1024 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 , 1024 ) ; IV Lengths Tested: ( 128 , 256 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The CloudLink Cryptographic Module is a general purpose cryptographic library which provides cryptographic services for all CloudLink application modules."

02/21/14: Updated implementation information;
03/10/14: Updated implementation information;

2544 BlackBerry
295 Phillip Street
Waterloo, ON N2L3W8
Canada

-Eric Jen
TEL: +1 561-289-0214

BlackBerry Algorithm Library for Secure Work Space

Version 1.0
Intel Xeon 3430 w/ Ubuntu 12.04; Intel Xeon 3430 w/ Ubuntu 12.04 on ESXi 5.1; AMD Opteron 275 w/ Ubuntu 12.04; AMD Opteron 275 w/ Ubuntu 12.04 on ESXi 5.1; ARMv7-based A5 processor w/ iOS 5.0; ARM v7s -- Apple A6 w/ iOS 6.0; ARMv7-based Qualcomm Snapdragon processor w/ Android v4.1 6/28/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The BlackBerry Algorithm Library for Secure Work Space provides a suite of cryptographic services utilized by the BlackBerry Cryptographic Library for the BlackBerry Secure Work Space (BBSWS). BBSWS provides the secure operation and management of iOS and Android devices when used in conjunction with BlackBerry® mobile device management solutions."

2543 Bomgar Corporation
578 Highland Colony Parkway
Paragon Centre, Suite 300
Ridgeland, MS 39157
USA

-Main Office
TEL: 601-519-0123
FAX: 601-510-9080

-Victor Wolff
TEL: 703-483-5515
FAX: 601-510-9080

Bomgar Cryptographic Engine

Version 1.2.1 (Firmware)
Intel® Xeon 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The Bomgar Cryptographic Engine provides the cryptographic functionality required by the Bomgar B200, B300, and B400 Remote Support appliances. These appliances allow support professionals to connect securely to remote clients and co-workers via the Internet, providing complete desktop access for remote support."

2542 Fujitsu limited
4-1-1 Kamikodanaka
Nakahara-ku
Kawasaki, Kanagawa 211-8588
Japan

-Eugene Owens
TEL: 408-746-6486
FAX: 408-746-8016

-Hiroyuki Miura

ETERNUS DX400/DX8000 Controller Module

Version V20L80-1000 (Firmware)
Intel(R) XEON(R) 6/20/2013 ECB ( e/d; 128 , 256 );

XTS( KS: XTS_128( (e/d) (f) )

"ETERNUS DX400/DX8000 Controller Module is a module which manages the whole disk storage system. In order to prevent a data leakage by removal of disks, the disk encryption mechanism encrypts data on the disks. This encryption function is valid if the Disk Encryption mechanism is activated through GUI."

2541 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Generic, i7 32bit)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 375

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software."

2540 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Generic, i5 32bit)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 374

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software compiled for 32bit word size."

2539 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized block chaining modes, i7 32bit)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 373

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS compiled for 32bit word size."

2538 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized block chaining modes, i5 32bit)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 372

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS compiled for 32bit word size."

2537 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic block chaining modes, i7 32bit)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS compiled for 32bit word size."

2536 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic block chaining modes, i5 32bit)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS compiled for 32bit word size."

2535 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i7 32bit)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation compiled for 32bit word size."

2534 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i5 32bit)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation compiled for 32bit word size."

2533 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, i7 32bit)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 371

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES compiled for 32bit word size."

2532 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, i5 32bit)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 370

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES compiled for 32bit word size."

2531 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Generic, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 369

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software."

2530 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic block chaining modes, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

2529 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized block chaining modes, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 368

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

2528 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

2527 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 367

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

2524 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Generic, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 366

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software."

2523 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with generic block chaining modes, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

2521 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (AES-NI with optimized block chaining modes, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 365

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

2520 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Gladman AES, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

2519 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Module (Assembler AES, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 1024 , 120 , 960 ) ; AAD Lengths tested: ( 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 364

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

2518 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (Generic, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and generic, non-optimized software."

2517 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with generic block chaining modes, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

2516 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with optimized block chaining modes, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

2515 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (Assembler AES, i7)

Version 4.0
Intel i7 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

2514 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (Generic, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and generic, non-optimized software."

2513 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with generic block chaining modes, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set using the generic block chaining modes of CBC and XTS."

2512 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (AES-NI with optimized block chaining modes, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and the AES-NI Intel instruction set with an accellerated implementation for CBC and XTS."

2511 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple OSX CoreCrypto Kernel Module (Assembler AES, i5)

Version 4.0
Intel i5 w/ OSX 10.9 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

2509 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Generic, A5)

Version 4.0
Apple A5 w/ iOS 7 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 357

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software."

2508 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Generic, A4)

Version 4.0
Apple A4 w/ iOS 7 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 0 , 0 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 356

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and generic, non-optimized software."

2507 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Hardware AES, A6)

Version 4.0
Apple A6 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES hardware offered by the processor."

2506 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Hardware AES, A5)

Version 4.0
Apple A5 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES hardware offered by the processor."

2505 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Hardware AES, A4)

Version 4.0
Apple A4 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the AES hardware offered by the processor."

2504 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A6)

Version 4.0
Apple A6 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

2503 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A5)

Version 4.0
Apple A5 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

2502 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Gladman AES, A4)

Version 4.0
Apple A4 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and the Gladman AES CBC implementation."

2501 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A6)

Version 4.0
Apple A6 w/ iOS 7 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 355

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

2500 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A5)

Version 4.0
Apple A5 w/ iOS 7 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 354

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

2499 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Module (Assembler AES, A4)

Version 4.0
Apple A4 w/ iOS 7 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 128 , 1024 , 120 , 960 ) ; AAD Lengths tested: ( 128 , 1024 , 120 , 960 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported
DRBG: Val# 353

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to user space and assembler optimized AES."

2498 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Generic, A6)

Version 4.0
Apple A6 w/ iOS 7 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and generic, non-optimized software."

2497 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Generic, A5)

Version 4.0
Apple A5 w/ iOS 7 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and generic, non-optimized software."

2496 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Generic, A4)

Version 4.0
Apple A4 w/ iOS 7 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and generic, non-optimized software."

2495 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A6)

Version 4.0
Apple A6 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

2494 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A5)

Version 4.0
Apple A5 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

2493 Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

-Shawn Geddis

Apple iOS CoreCrypto Kernel Module (Assembler AES, A4)

Version 4.0
Apple A4 w/ iOS 7 6/20/2013 CBC ( e/d; 128 , 192 , 256 );

"Cryptographic library offering various cryptographic mechanisms to Apple frameworks. The testing applies to kernel space and assembler optimized AES."

2492 Freescale Semiconductor, Inc.
7700 West Parmer Lane
Austin, TX 78729
USA

-Geoffrey Waters
TEL: 512-996-5815
FAX: 512-996-7866

-Tom Tkacik
TEL: 480-814-3299
FAX: 480-814-3660

AESA 4.3

Version CAVP_AESA_4.3_C290R1 (Firmware)
Chronologic VCS simulator, vcs D-2010.06-04 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 112 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 112 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 112 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 64 , 192 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 64 , 192 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"Freescale''s AESA 4.3 is included in the C29x family of security co-processors."

2491 Freescale Semiconductor, Inc.
7700 West Parmer Lane
Austin, TX 78729
USA

-Geoffrey Waters
TEL: 512-996-5815
FAX: 512-996-7866

-Tom Tkacik
TEL: 480-814-3299
FAX: 480-814-3660

AESA 4.2

Version CAVP_AESA_4.2_P5040R1 (Firmware)
Chronologic VCS simulator, vcs D-2010.06-04 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 112 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 112 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 112 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 64 , 192 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 64 , 192 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"Freescale''s AESA 4.2 is included in multiple QorIQ Integrated Communications Processor, including: P4080r3 and P5040."

2490 Freescale Semiconductor, Inc.
7700 West Parmer Lane
Austin, TX 78729
USA

-Geoffrey Waters
TEL: 512-996-5815
FAX: 512-996-7866

-Tom Tkacik
TEL: 480-814-3299
FAX: 480-814-3660

AESA 4.1

Version CAVP_AESA_4.1_T4240R1 (Firmware)
Chronologic VCS simulator, vcs D-2010.06-04 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 32 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 112 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 112 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 112 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 64 , 192 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 64 , 192 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"Freescale''s AESA 4.1 is included in multiple QorIQ Integrated Communications Processor, including: T4240r1 & r2, T2080, T1040, and QorIQ Qonverge products B4860, PSC9131, and PSC9132."

2489 OpenPeak, Inc.
1750 Clint Moore Road
Boca Raton, FL 33487
USA

-Eric Jen
TEL: +1 561-893-7881

-Howard A. Kwon
TEL: +1 561 893 7930
FAX: +1 561 208 8026

OpenPeak Cryptographic Security Module

Version 1.0.1
Intel Xeon 3430 w/ Ubuntu 12.04; Intel Xeon 3430 w/ Ubuntu 12.04 on ESXi 5.1; AMD Opteron 275 w/ Ubuntu 12.04; AMD Opteron 275 w/ Ubuntu 12.04 on ESXi 5.1; ARM v7 -- Apple A5 w/ iOS 5.0; ARMv7-based A6 processor w/ iOS 6.0; IARMv7-based Qualcomm Snapdragon processor w/ Android v4.1 6/20/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The OpenPeak Cryptographic Security Library provides advanced cryptographic functionalities for the OpenPeak Cryptographic Security Module (OCSM). The OCSM provides a secure encrypted container for enterprise-managed applications, content and data to enable a highly secure mobile workspace."

2488 Hewlett Packard India Software Operations Pvt Ltd
Sy. No. 192, Whitefield Road
Mahadevpura Post
Bangalore, Karnataka 560048
India

-Rahul Philip Mampallil
TEL: +91 80 33841568

-Karthik Bhagawan
TEL: +91 80 25166873
FAX: +91 80 28533522

HP-UX Kernel Cryptographic Module

Version 1.0
Intel Itanium w/ HP-UX 11i v3 6/7/2013 CBC ( e/d; 128 , 192 , 256 );

"HP-UX Kernel Crypto Module (HP-UX KCM) is a kernel-space shared library in the HP-UX OS containing core cryptographic algorithms in one central place. It implements asymmetric, symmetric, message authentication, and digest operations used by various HP-UX products. It is available on HP-UX 11i v3 OS on HP Integrity Platform."

2487 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

McAfee Linux OpenSSL

Version 1.01
Xeon w/ MLOS v2.2 running on VMware ESXi 4.1; Xeon w/ MLOS v2.2 running on VMware ESXi 5.0 6/7/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"McAfee Linux cryptographic modules provide cryptographic services for McAfee Linux and security appliance products built upon this platform. McAfee Linux is an operating system built with a focus on the needs of security appliances."

2486 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

McAfee Linux OpenSSL

Version 1.01 (Firmware)
Celeron; Intel Core i3; Xeon 6/7/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"McAfee Linux cryptographic modules provide cryptographic services for McAfee Linux and security appliance products built upon this platform. McAfee Linux is an operating system built with a focus on the needs of security appliances."

2485 RSA, The Security Division of EMC
174 Middlesex Turnpike
Bedford, MA 01730
USA

-Damon Hopley
TEL: 781-515-6355

RSA BSAFE Crypto-C Micro Edition (ME)

Version 3.0.0.20
PowerPC e500v2 w/ VxWorks General Purpose Platform 6.8 5/31/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

"RSA BSAFE® Crypto-C ME software is designed to help protect sensitive data as it is stored using strong encryption techniques to provide a persistent level of protection. The software supports a wide range of industry standard encryption algorithms offering developers the flexibility to choose the appropriate option to meet their requirements."

2484 OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamstown, MD 27101
USA

-Steve Marquess
TEL: 877-673-6775

OpenSSL FIPS Object Module

Version 2.0.5
Freescale i.MX27 926ejs (ARMv5TEJ) w/ eCos 3; Freescale i.MX25 (ARMv4) w/ QNX 6.4; Apple A6X Soc (ARMv7s) w/ iOS 6.1; Intel Xeon E3-1220 w/ VMware Horizon Workspace 1.5 under vSphere; Intel Xeon E3-1220 w/ AES-NI w/ VMware Horizon Workspace 1.5 under vSphere; AM335x Cortex-A8 (ARMv7) w/ Ubuntu 13.04; ARM926 (ARMv5TEJ) w/ Linux 3.8; AM335x Cortex-A8 (ARMv7) with NEON w/ Ubuntu 13.04; Intel Xeon E5-2430L (x86) without AES-NI w/ Linux 3.4 64-bit under Citrix XenServer; Intel Xeon E5-2430L (x86) with AES-NI w/ Linux 3.4 64-bit under Citrix XenServer; Intel Xeon E5-2430L (x86) without AES-NI w/ Linux 3.4 64-bit on under VMware ESX; Intel Xeon E5-2430L (x86) with AES-NI w/ Linux 3.4 64-bit under VMware ESX; Intel Xeon E5-2430L (x86) without AES-NI w/ Linux 3.4 64-bit under Microsoft Hyper-V; Intel Xeon E5-2430L (x86) with AES-NI w/ Linux 3.4 64-bit under Microsoft Hyper-V; Apple A5 / ARM Cortex-A9 (ARMv7) without NEON w/ iOS 6.0; Apple A5 / ARM Cortex-A9 (ARMv7) with NEON w/ iOS 6.0; Intel Xeon E5-2430L (x86) with AES-NI w/ PexOS 1.0 on x86 under vSphere; Intel Xeon E5-2430L (x86) without AES-NI w/ PexOS 1.0 on x86 under vSphere 5/31/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/."

07/17/13: added 2 new Operating Environments;
08/06/13: Updated implementation information;
08/13/13: Added new tested information;
10/25/13: Added new tested information;
11/14/13: Added new tested information;
11/29/13: Updated implementation information;

2483 Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

-Global Certification Team

Adaptive Security Appliance OS

Version 9.1.5 (Firmware)
AMD Geode; Intel Celeron; Intel Pentium 4; Intel Xeon 7500; 5/24/2013 CBC ( e/d; 128 , 192 , 256 );

"Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA 5500 Series Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environment."

10/08/2014: Implementation version number changed

2482 Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

-Global Certification Team

Adaptive Security Appliance OS

Version 9.1.5 (Firmware)
Intel Core i3-540; Intel Xeon 3400; Intel Xeon 5500; Intel Xeon 5600; Intel Pentium G6900 5/24/2013 CBC ( e/d; 128 , 192 , 256 );

"Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA 5500 Series Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environment."

10/08/2014: Implementation version number changed

2481 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

RSA Bsafe Crypto-J

Version 4.1 (Firmware)
Intel Celeron; Intel Xeon 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )
PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 160 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 8 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

2480 Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

-Global Certification Team

Cavium Nitrox PX (CN1520)

Part # CN1520-350BG256-G, v1.2
N/A 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 104 ) ; AAD Lengths tested: ( 0 , 128 , 8 , 104 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#1407

"Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA 5500 Series Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environment."

2479 Broadcom Corporation
5300 California Avenue
Irvine, CA 92617
USA

-Mark Litvack
TEL: 949-926-5000

XLP800/400 series of processors

Part # XLP800/400 series Revision B2
N/A 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The XLP800, XLP400 and XLP300 series of multi-core processors can deliver an unprecedented 160Gbps throughput and 240 million packets-per-second of application performance for next-generation 3G/4G mobile wireless infrastructure, enterprise, storage, security, metro, edge and core infrastructure network applications."

2478 Broadcom Corporation
5300 California Avenue
Irvine, CA 92617
USA

-Mark Litvack
TEL: 949-926-5000

XLP800/400 series of processors

Part # XLP800/400 series Revision B1
N/A 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The XLP800, XLP400 and XLP300 series of multi-core processors can deliver an unprecedented 160Gbps throughput and 240 million packets-per-second of application performance for next-generation 3G/4G mobile wireless infrastructure, enterprise, storage, security, metro, edge and core infrastructure network applications."

2477 Broadcom Corporation
5300 California Avenue
Irvine, CA 92617
USA

-Mark Litvack
TEL: 949-926-5000

XLP300 series of processors

Part # XLP300 series Revision B1
N/A 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The XLP800, XLP400 and XLP300 series of multi-core processors can deliver an unprecedented 160Gbps throughput and 240 million packets-per-second of application performance for next-generation 3G/4G mobile wireless infrastructure, enterprise, storage, security, metro, edge and core infrastructure network applications."

2476 Broadcom Corporation
5300 California Avenue
Irvine, CA 92617
USA

-Mark Litvack
TEL: 949-926-5000

XLP300 series of processors

Part # XLP300 series Revision B0
N/A 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 1 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 1 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 0 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The XLP800, XLP400 and XLP300 series of multi-core processors can deliver an unprecedented 160Gbps throughput and 240 million packets-per-second of application performance for next-generation 3G/4G mobile wireless infrastructure, enterprise, storage, security, metro, edge and core infrastructure network applications."

2475 Juniper Networks, Inc
1194 N. Mathilda Ave
Sunnyvale, CA 94089
USA

-Sharath Sridhar
TEL: +91 80 30538736
FAX: +91 80 30538824

OpenSSL

Version Junos 12.1R6.6 (Firmware)
ARM v5, Marvell's Feroceon processor Family; PowerPC, Freescale's PowerQUICC III Processor Family 5/24/2013 CBC ( e/d; 128 , 192 , 256 );

"Comprehensive, scalable switching solutions specifically designed to meet the needs of both enterprises and service providers. All of our switches - modular and fixed platforms - run on one common operating system- Junos."

2474 Silicon Motion Technology Corp.
8F-1, No. 36, Taiyuan St.
Jhubei City, Hsinchu County 30265
Taiwan

-Cash Lo
TEL: +886-3-5526888
FAX: +886-3-5526988

Silicon Motion Cryptographic Library

Version 1.0 (Firmware)
Cadence NC-verilog hardware simulator v10.20 5/24/2013 ECB ( e/d; 128 , 192 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"Silicon Motion Crypto Library is a hardware cryptographic library providing core cryptographic functionality for Silicon Motion security products which are capable to develop complex and flexible security applications."

2473 Hewlett-Packard Company
153 Taylor Street
Littleton, MA 01460
USA

-Boby Joseph
TEL: 1-978-264-5379
FAX: 1-978-264-5522

HP Comware

Version 7
RMI XLS408 dual-core,1000MHz,MIPS w/ ComwareV7 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"Comware V7 cryptographic library is a software library that provides cryptographic functions within HP devices."

2472 Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

-Global Certification Team

Cavium Nitrox PX (CN1610)

Part # CN1610-350BG233
N/A 5/24/2013 CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 104 ) ; AAD Lengths tested: ( 0 , 128 , 8 , 104 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA 5500 Series Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environment."

2471 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - CmacNist800108Aes128

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) AES Val#2460

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2470 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - CmacAes128

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) AES Val#2459

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2469 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-James Reardon
TEL: 651-628-5346

NSM - RSA BSAFE Crypto-J

Version 6.1.0.0.2
Intel Core 2 Quad (Intel 64 instruction set) w/ Microsoft Windows Server 2008 R2 5/24/2013 CBC ( e/d; 128 , 256 ); CFB128 ( e/d; 128 , 256 );

"McAfee Network Security Manager (NSM) is the management console for McAfee Network Security Platform IPS. The NSM gives admins control and real-time data, so that they can manage, configure, and monitor NSP. The NSM Application Crypto Module provides cryptographic services for the Network Security Manager application."

2468 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-James Reardon
TEL: 651-628-5346

NSM OpenSSL

Version 1.6
Intel Core 2 Quad (Intel 64 instruction set) w/ Microsoft Windows Server 2008 R2 5/24/2013 CBC ( e/d; 128 , 256 );

"McAfee Network Security Manager (NSM) is the management console for McAfee Network Security Platform IPS. The NSM gives admins control and real-time data, so that they can manage, configure, and monitor NSP. The NSM Secure UI Crypto Module provides cryptography for serving the NSM console through a TLS session."

2467 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesWrapFromPlainEncrypt

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 , 192 , 256 ); CBC ( e only; 128 , 192 , 256 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2466 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesWrapEncrypt

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 CBC ( e only; 128 , 192 , 256 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2465 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesUnwrapEncrypt

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2464 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesUnwrapDecrypt

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( d only; 128 , 192 , 256 ); CBC ( d only; 128 , 192 , 256 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2463 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesNist800108CmacSign

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2462 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesNist800108CmacDerive

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2461 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesEncryptDerive

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 , 192 , 256 ); CBC ( e only; 128 , 192 , 256 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2460 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCmacSign

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2459 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCmacDerive

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2458 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCipherHsEncrypt256

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 256 ); CBC ( e only; 256 ); CTR ( ext only; 256 )

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2457 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCipherHsEncrypt192

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 192 ); CBC ( e only; 192 ); CTR ( ext only; 192 )

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2456 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCipherHsEncrypt128

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 ); CBC ( e only; 128 ); CTR ( ext only; 128 )

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2455 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCipherHsDecrypt256

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( d only; 256 ); CBC ( d only; 256 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2454 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCipherHsDecrypt192

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( d only; 192 ); CBC ( d only; 192 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2453 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCipherHsDecrypt128

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( d only; 128 ); CBC ( d only; 128 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2452 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCipherEncrypt

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( e only; 128 , 192 , 256 ); CBC ( e only; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2451 whiteCryption Corporation
920 Stewart Drive
Suite #100
Sunnyvale, CA 94085
USA

-Alex Bessonov
TEL: 408-616-1647

whiteCryption SKB - AesCipherDecrypt

Version 4.6.0
Nvidia Tegra 4 w/ Android 4.2 5/24/2013 ECB ( d only; 128 , 192 , 256 ); CBC ( d only; 128 , 192 , 256 );

"whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."

2450 Qualcomm Atheros
1700 Technology Drive
San Jose, CA 95110
USA

-David Quan
TEL: 1-408-652-0631

-Mohsen Limam
TEL: 1-408-652-0631

Qualcomm Atheros AES-128w10i

Version AES-128w10i (Firmware)
Chronologic VCS Version (Verilog simulator) D-2010.06-SP1 5/24/2013 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 22 - 30 ) (Payload Length Range: 1 - 8 ( Nonce Length(s): 13 (Tag Length(s): 8

"The AR1xxx, AR4xxx, AR54xx, AR6xxx, AR91xx, AR92xx, AR93xx, AR94xx, AR95xx, AR98xx, QCA1xxx, QCA4xxx, QCA54xx, QCA6xxx, QCA92xx, QCA93xx, QCA94xx, QCA95xx, QCA96xx, and QCA98xx are families of chips that support 802.11 WIFI technologies."

2449 Qualcomm Atheros
1700 Technology Drive
San Jose, CA 95110
USA

-David Quan
TEL: 1-408-652-0631

-Mohsen Limam
TEL: 1-408-652-0664

Qualcomm Atheros AES-128w5i

Version AES-128w5i (Firmware)
Chronologic VCS (Verilog simulator) Version D-2010.06-SP1 5/24/2013 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 22 - 30 ) (Payload Length Range: 1 - 8 ( Nonce Length(s): 13 (Tag Length(s): 8

"The AR1xxx, AR4xxx, AR54xx, AR6xxx, AR91xx, AR92xx, AR93xx, AR94xx, AR95xx, AR98xx, QCA1xxx, QCA4xxx, QCA54xx, QCA6xxx, QCA92xx, QCA93xx, QCA94xx, QCA95xx, QCA96xx, and QCA98xx are families of chips that support 802.11 WIFI technologies."

2448 Toshiba Corporation
1-1, Shibaura 1-chome
Minato-ku, Tokyo 105-8001
Japan

-Hiroshi Ito
TEL: +81-45-776-5624
FAX: +81-45-776-4104

Toshiba Secure Cryptographic Suite for Mobile HDD

Part # GDM460002733
N/A 5/24/2013 CBC ( e/d; 256 );

"a library of unique software and hardware cipher solutions which are standard encryption algorithm-based to provide Toshiba mobile HDD products and the systems using them a robust and secure data storage environment"

04/24/14: Updated vendor information;

2447 Toshiba Corporation
1-1, Shibaura 1-chome
Minato-ku, Tokyo 105-8001
Japan

-Hiroshi Ito
TEL: +81-45-776-5624
FAX: +81-45-776-4104

Toshiba Secure Cryptographic Suite for Mobile HDD

Version FN001S (Firmware)
Cortex-R4 5/24/2013 ECB ( e only; 256 ); CBC ( e/d; 256 ); CTR ( ext only; 256 )

"a library of unique software and hardware cipher solutions which are standard encryption algorithm-based to provide Toshiba mobile HDD products and the systems using them a robust and secure data storage environment"

04/24/14: Updated vendor information;

2446 Axway Inc.
2600 Bridge Parkway Suite 201
Redwood City, California 94065
USA

-Prabhakar Mangam
TEL: 650-801-3157
FAX: 650-801-3101

-Anubhav Soni
TEL: 650-801-3217
FAX: 650-801-3101

Axway Security Kernel

Version 3.0
Intel Xeon E5-2620 w/ Microsoft Windows 2012 64bit; Intel Xeon E5-2620 w/ RHEL 6.3 64bit; Sun UltraSparc T1 w/ Solaris 10 64bit; 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Axway Validation Authority Suite - a collection of products that provide flexible and robust OCSP/SCVP certificate validation solution for standard and custom desktop and server applications, supporting established security standards and technologies. These products may be used together or integrated with existing solutions."

2445 McAfee, Inc.
2821 Mission College Blvd.
Santa Clara, CA 95054
USA

-Mark Hanson
TEL: +1 651 628 1633
FAX: +1 651 628 2706

RSA Bsafe Crypto-J

Version 4.1
Intel Xeon w/ McAfee Linux 2.2 running on VMware ESXi 5.0 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 )
PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 160 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 8 , 160 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"McAfee Firewall Enterprise Control Center simplifies the management of multiple McAfee Firewall Enterprise appliances. Control Center enables centralized management and monitoring of the McAfee Firewall Enterprise solutions, allowing network administrators to centrally define firewall policy, deploy updates and inventory their firewall products."

2444 Cisco Systems, Inc.
170 West Tasman Dr.
San Jose, CA 95134
USA

-Global Certification Team

Adaptive Security Appliance Onboard Acceleration

Part # CN1620-400BG233-P-G
N/A 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 104 ) ; AAD Lengths tested: ( 0 , 128 , 8 , 104 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2050

"Cisco ASA Security Appliance Series deliver robust user and application policy enforcement, multi-vector attack protection, and secure connectivity services in cost-effective, easy-to-deploy solutions. The ASA 5500 Series Adaptive Security Appliances provide comprehensive security, performance, and reliability for network environment."

2443 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on Windows 64-bit x86-64 for 64 bits

Version 8.2.2.0
Intel Core i7-2600 with AES-NI w/ Microsoft Windows Server 2008 64-bit 5/24/2013

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )
AES Val#2172

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )
AES Val#2172

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported AES Val#2172

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2442 Certicom Corp.
4701 Tahoe Blvd.
Building A
Missisauga, ON L4W 0B5
Canada

-Certicom Sales
TEL: 1-800-561-6100
FAX: 1-905-507-4230

SB GSE-C Crypto Core

Version 2.0.5
Intel Xeon X5650 w/ CentOS 5.4 Linux 5/24/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"Security Builder GSE is a standards-based cryptographic toolkit that supports optimized Elliptic Curve Cryptography and provides application developers with sophisticated tools to flexibly integrate encryption, digital signatures and other security mechanisms into both mobile and server-based applications."

2441 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL zSeries-64 for 64 bits

Version 8.2.2.0
IBM zSeries z196 64-bit with CPACF hardware support w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2214

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2440 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL zSeries-64 for 32 bits

Version 8.2.2.0
IBM zSeries z196 64-bit with CPACF hardware support w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2213

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2439 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on Windows 64-bit x86-64 for 64 bits

Version 8.2.2.0
Intel Core i7-2600 w/ Microsoft Windows Server 2008 64-bit 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2170

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2438 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on Windows 64-bit x86-64 for 32 bits

Version 8.2.2.0
Intel Core i7-2600 with AES-NI w/ Microsoft Windows Server 2008 64-bit 5/24/2013

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )
AES Val#2171

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )
AES Val#2171

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported AES Val#2171

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2437 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on Windows 64-bit x86-64 for 32 bits

Version 8.2.2.0
Intel Core i7-2600 w/ Microsoft Windows Server 2008 64-bit 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2179

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2436 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on Windows 32-bit x86-64 for 32 bits

Version 8.2.2.0
AMD Opteron X86_64 w/ Microsoft Windows Server 2008 32-bit 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2169

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2435 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on Solaris UltraSparc-64 for 64 bits

Version 8.2.2.0
Sun UltraSPARC T1 64-bit w/ Sun Solaris 10 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2167

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2434 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on Solaris UltraSparc-64 for 32 bits

Version 8.2.2.0
Sun UltraSPARC T1 64-bit w/ Sun Solaris 10 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2166

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2433 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL zSeries-64 for 64 bits

Version 8.2.2.0
IBM zSeries z196 64-bit with CPACF hardware support w/ Red Hat Enterprise Linux Server 5 5/24/2013

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )
AES Val#2214

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )
AES Val#2214

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2432 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL zSeries-64 for 64 bits

Version 8.2.2.0
IBM zSeries z196 64-bit w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2165

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2431 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL zSeries-64 for 32 bits

Version 8.2.2.0
IBM zSeries z196 64-bit with CPACF hardware support w/ Red Hat Enterprise Linux Server 5 5/24/2013

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )
AES Val#2213

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )
AES Val#2213

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2430 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL zSeries-64 for 32 bits

Version 8.2.2.0
IBM zSeries z196 64-bit w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2162

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2429 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL x86-64 for 64 bits

Version 8.2.2.0
Intel Core i7-2600 with AES-NI w/ Red Hat Enterprise Linux Server 5 5/24/2013

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )
AES Val#2164

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )
AES Val#2164

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported AES Val#2164

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2428 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL x86-64 for 64 bits

Version 8.2.2.0
Intel Core i7-2600 w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2161

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2427 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL x86-64 for 32 bits

Version 8.2.2.0
Intel Core i7-2600 with AES-NI w/ Red Hat Enterprise Linux Server 5 5/24/2013

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )
AES Val#2163

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 8 Max: 16 )
AES Val#2163

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported AES Val#2163

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2426 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL x86-64 for 32 bits

Version 8.2.2.0
Intel Core i7-2600 w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2160

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2425 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL PPC64 for 64 bits

Version 8.2.2.0
IBM PowerPC 970 w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2159

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2424 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL PPC64 for 32 bits

Version 8.2.2.0
IBM PowerPC 970 w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2158

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2423 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on RHEL 32-bit x86-64 for 32 bits

Version 8.2.2.0
AMD Opteron X86_64 w/ Red Hat Enterprise Linux Server 5 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2157

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2422 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on AIX PowerPC-64 for 64 bits

Version 8.2.2.0
IBM PowerPC 5 64-bit w/ IBM AIX 6.1 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2156

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2421 IBM® Corporation
Seabank Centre
12 - 14 Marine Parade
Southport, QLD 4215
Australia

-Peter Waltenberg
TEL: +61 7 5552 4016
FAX: +61 7 5571 0420

ICC Algorithmic Core on AIX PowerPC-64 for 32 bits

Version 8.2.2.0
IBM PowerPC 5 64-bit w/ IBM AIX 6.1 5/24/2013

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 8 , 248 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 8 , 248 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2155

"ICC is a C language implementation of cryptographic functions based on the cryptographic library provided by the OpenSSL project. This enables IBM products to use an open source solution for cryptography and a FIPS 140-2 certified cryptographic provider."

2420 Juniper Networks, Inc
1194 N. Mathilda Ave
Sunnyvale, CA 94089
USA

-Sharath Sridhar
TEL: +91 80 30538736
FAX: +91 80 30538824

SSH_IPSEC

Version Junos 12.1R6.6 (Firmware)
PowerPC, Freescale's PowerQUICC III Processor Family; ARM v5, Marvell's Feroceon processor Family 5/24/2013 CBC ( e/d; 128 , 192 , 256 );

"Comprehensive, scalable switching solutions specifically designed to meet the needs of both enterprises and service providers. All of our switches - modular and fixed platforms - run on one common operating system- Junos."

06/10/13: Updated implementation information;

2419 Juniper Networks, Inc
1194 N. Mathilda Ave
Sunnyvale, CA 94089
USA

-Sharath Sridhar
TEL: +91 80 30538736
FAX: +91 80 30538824

QuickSec

Version Junos 12.1R6.6 (Firmware)
PowerPC, Freescale's PowerQUICC III Processor Family; ARM v5, Marvell's Feroceon processor Family 5/24/2013 CBC ( e/d; 128 , 192 , 256 );

"Comprehensive, scalable switching solutions specifically designed to meet the needs of both enterprises and service providers. All of our switches - modular and fixed platforms - run on one common operating system- Junos."

06/10/13: Updated implementation information;

2418 Aviat Networks
5200 Great America Parkway
Santa Clara, California 95054
USA

-Ruth French
TEL: +44 1698 717200

Secure Management

Version 7.7 (Firmware)
Motorola MPC866 5/10/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); CFB128 ( e/d; 256 );

"Eclipse Intelligent Node Unit (INUe). The module provides data security by encrypting the payload traffic on the microwave link between up to three radios. It also provides the Strong Encryption Suite for secure module management and uses AES encryption to secure SNMP v3 management traffic."

2417 Comtech EF Data Corporation
2114 West 7th Street
Tempe, Arizona 85281
USA

-Wallace Davis
TEL: 480.333.2189

TRANSEC Cryptographic Engine

Version 2.1.1 (Firmware)
AMCC PowerPC 440EP 5/10/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Comtech EF Data FIPS Security Module features an FPGA to perform bulk encryption/decryption for Ethernet data traffic via Comtech Satellite Modems, as well as firmware to provide the cryptographic functions needed to act as a endpoint for TLS management and control traffic."

2416 N-Partner Technology Inc.
9F-B1, No.499, Zhongming S.Rd., West Dist.
Taichung City, n/a 40347
Taiwan

-Max Tsai
TEL: +886-4-23752865
FAX: +886-4-23757458

N-Partner Cryptographic Library

Version 1.0.0
Intel Xeon w/ Linux Kernel 2.6.30 64-bit 5/10/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The N-Partner Cryptographic library is a software-based cryptographic module integrated into N-Reporter and N-Cloud Series Products. "

2415 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-2951

FortiGate-VM 4.0 MR3 SSL Cryptographic Library

Version 4.0 MR3
Xeon E Series w/ FortiOS 5/10/2013 CBC ( e/d; 128 , 192 , 256 );

"FortiGate virtual appliances offer protection from a broad array of threats, with support for all of the security and networking services offered by the FortiOS operating system."

2414 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-2951

FortiGate-VM 4.0 MR3 FIPS Cryptographic Library

Version 4.0 MR3
Xeon E Series w/ FortiOS 5/10/2013 CBC ( e/d; 128 , 192 , 256 );

"FortiGate virtual appliances offer protection from a broad array of threats, with support for all of the security and networking services offered by the FortiOS operating system."

2413 HP
153 Taylor Street
Littleton, MA 01460
USA

-Boby Joseph
TEL: 978-264-5379
FAX: 978-254-5522

HP Comware

Version 5.2
Broadcom BCM5836,264MHz,MIPS w/ Comware V5.2; Freescale MPC8349,553MHz,PowerPC w/ Comware V5.2; Freescale MPC8544,667MHz,PowerPC w/ Comware V5.2; RMI(Netlogic) XLS408,1GHz,MIPS w/ Comware V5.2; Broadcom BCM112x,600MHz,MIPS w/ Comware V5.2 5/10/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Comware cryptographic library is a software library that provides cryptographic functions within HP devices."

2412 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000C CCM Firmware Implementation

Version 2.1 (Firmware)
ARM 962EJS 5/10/2013

CCM (KS: 256 ) (Assoc. Data Len Range: 0 - 0 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 12 13 (Tag Length(s): 16 )
AES Val#2404

"The Oracle StorageTek T10000C Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world’s fastest write speeds to a native 5 TB of magnetic tape storage; making it ideal for data center operations with growing data volume."

2411 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung OpenSSL Cryptographic Module

Version SecOpenSSL2.0.3
ARMv7 w/ Android Jelly Bean 4.2 5/10/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 512 , 1024 ) ; AAD Lengths tested: ( 0 , 512 , 1024 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"General purpose cryptographic services available for Android used by Samsung devices to provide secure cryptography. Salt length 0, 1 and 2 has been tested for RSASSA-PSS."

01/16/14: Updated implementation information;

2410 Authora, Inc.
1319 Dexter Ave. N., Suite 010
Seattle, WA 98109
USA

-Tia Walker
TEL: 206.783.8000
FAX: 206.217.0623

Authora Cryptographic Algorithm Implementation

Version 1.0
Intel Core w/ Windows Server 2008 5/10/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 16 Max: 16 )

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"Authora Cryptographic Algorithm Implementation implements advanced cryptographic algorithms, including symmetric and asymmetric cryptography, as well as key generation and random number generation. It is used by a family of Authora products including Authora Edge and Zendit."

2409 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung FIPS BC for mobile phone and tablet

Version SBC1.45_2.1
ARMv7 w/ Android Jelly Bean 4.2 5/10/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"General purpose cryptographic services available for Java-based Bouncycastle used by Samsung devices to provide secure cryptography. Salt length 0, 1 and 2 has been tested for RSASSA-PSS."

08/28/13: Updated implementation information;

2408 IntelliProp Inc.
105 S. Sunset St., Suite N
Longmont, CO 80501
USA

-Erich Hanke
TEL: 303-774-0535 x206

-Larry Cleland
TEL: 303-774-0535 x202

IPC-BL120A-ZM

Part # 1.67a
N/A 5/10/2013 ECB ( e/d; 128 , 256 );

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) ))

"The IntelliProp AES-XTS Encryption IP core."

2407 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000C AES used in CTR DRBG

Version 2.1 (Firmware)
ARM 962EJS 5/10/2013 ECB ( e only; 256 );

"The Oracle StorageTek T10000C Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world’s fastest write speeds to a native 5 TB of magnetic tape storage; making it ideal for data center operations with growing data volume."

2406 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000C AES used in TLS1.0

Version 2.1 (Firmware)
ARM 962EJS 5/10/2013 CBC ( e/d; 256 );

"The Oracle StorageTek T10000C Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world’s fastest write speeds to a native 5 TB of magnetic tape storage; making it ideal for data center operations with growing data volume."

2405 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000C OKM Agent AES

Version 2.1 (Firmware)
ARM 962EJS 5/10/2013 ECB ( e/d; 256 );

"The Oracle StorageTek T10000C Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world’s fastest write speeds to a native 5 TB of magnetic tape storage; making it ideal for data center operations with growing data volume."

2404 Oracle America, Inc.
500 Oracle Parkway
Redwood City, CA 94065
United States

-Linda Gallops
TEL: 704-972-5018
FAX: 704-321-9273

T10000C AES used in CCM

Version 2.1 (Firmware)
ARM 962EJS 5/10/2013 ECB ( e only; 256 );

"The Oracle StorageTek T10000C Tape Drive blends the highest capacity, performance, reliability, and data security to support demanding, 24/7 data center operations. It delivers the world’s fastest write speeds to a native 5 TB of magnetic tape storage; making it ideal for data center operations with growing data volume."

2403 N/A N/A N/A 5/10/2013 N/A
2402 N/A N/A N/A 5/10/2013 N/A
2401 Software House, a Brand of Tyco International
6 Technology Park Drive
Westford, MA 01886
USA

-Rick Focke
TEL: 978-577-4266

-Lou Mikitarian
TEL: 978-577-4125

C*CURE Cryptographic Engine

Version 2.0
Atmel 9260 w/ Windows CE 5.0; Atmel G45 w/ Embedded Linux with Kernel v2.6.39.4; Motorola PPC 860 w/ Windows CE 3.0; Intel Xeon w/ Windows Server 2008 R2; ARM v7 i.MX6Q w/ Ubuntu Linux 12.04.2 4/30/2013 CBC ( e/d; 256 );

"The C*CURE Cryptographic Engine provides cryptographic services for the C*CURE 9000 security management system and the iSTAR Edge, iSTAR Pro, and iSTAR Ultra physical access controllers. C*CURE security management systems offer advanced access control and alarm/event monitoring for small and large facilities alike."

02/14/14: Added new tested information;

2400 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS FortiASIC CP6 Cryptographic Library

Part # CP6
N/A 4/30/2013 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiASIC CP6 Cryptographic Library v5.0 running on Intel x86 compatible processors."

2399 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS SSL Cryptographic Library

Version 5.0 (Firmware)
Intel Celeron 4/30/2013 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiOS SSL Cryptographic Library v5.0 running on Intel x86 and ARM compatible processors."

2398 Fortinet Inc.
1090 Kifer Road
Sunnyvale, CA 94086-5301
USA

-Alan Kaye
TEL: 613-225-9381 x7416
FAX: 613-225-9951

FortiOS FIPS Cryptographic Library

Version 5.0 (Firmware)
FortiOS 4/30/2013 CBC ( e/d; 128 , 192 , 256 );

"This document focuses on the software implementation of the Fortinet FortiOS FIPS Cryptographic Library v5.0 running on Intel x86 and ARM compatible processors."

2397 Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

-John Bordwine
TEL: 703-885-3854

Symantec DLP Crypto Engine

Version 1.0
Intel i5 w/ Microsoft Windows 7 32-bit; Intel i5 w/ Microsoft Windows Server 2008 R2 64-bit; Intel i5 w/ Apple Mac OS X 10.7 64-bit; Intel i5 w/ Apple Mac OS X 10.7 32-bit 4/30/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"Cryptographic engine for Symantec DLP"

2396 Juniper Networks, Inc
1194 N. Mathilda Ave
Sunnyvale, CA 94089
USA

-Sharath Sridhar
TEL: +91 80 30538736
FAX: +91 80 30538824

Kernel

Version Junos 12.1R6.6 (Firmware)
ARM v5, Marvell's Feroceon processor Family; PowerPC, Freescale's PowerQUICC III Processor Family 4/30/2013 CBC ( e/d; 128 );

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 16 Max: 2^16 ; Tag Len(s) Min: 12 Max: 16 )

"Comprehensive, scalable switching solutions specifically designed to meet the needs of both enterprises and service providers. All of our switches - modular and fixed platforms - run on one common operating system- Junos."

06/10/13: Updated implementation information;

2395 Motorola Solutions, Inc.
6480 Via Del Oro
San Jose, CA 95119
USA

-Ashot Andreasyan
TEL: 408-826-3203
FAX: 408-528-2883

Open SSL Crypto library-AES

Version v1_0_1_0 (Firmware)
Free Scale MPC-7457; Free Scale MPC-8568E 4/30/2013 ECB ( e/d; 128 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 );

"The 1.0.1c crypto library is used for protecting security parameters and key exchange protocol messages; authenticating a user; generating cryptographic and key encryption keys in GGM8000 and s6000 transport gateways."

08/27/13: Updated implementation information;

2394 OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamstown, MD 27101
USA

-Steve Marquess
TEL: 877-673-6775

OpenSSL FIPS Object Module

Version 2.0.4
MIPS 24Kc w/ OpenWRT 2.6 4/30/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/."

2393 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung Key Management Module

Version KM1.3
ARMv7 w/ Android Jelly Bean 4.2 4/30/2013 ECB ( e/d; 256 );

"General purpose Key derivation and authentication services library for Linux used by Samsung devices."

11/14/13: Updated implementation information;

2392 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Kyung-Hee Lee
TEL: +82-10-9397-1589

Samsung Kernel Cryptographic Module

Version SCK1.4.1.2
ARMv7 w/ Android Jelly Bean 4.2 4/30/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( int only; 128 , 192 , 256 )

"General purpose Cryptographic services available for Linux kernel used by Samsung devices to provide secured services."

2391 Juniper Networks, Inc.
1194 N. Mathilda Ave.
Sunnyvale, CA 94089
USA

-Tim Huntley

JUNOS 12.1 X44 for SRX Series Platforms, Routing Engine

Version 12.1
Cavium Octeon CN5020 w/ JUNOS 12.1X44-D15.5-Domestic (SRX100); Cavium Octeon CN5020 w/ JUNOS 12.1X44-D15.5-FIPS (SRX100); Cavium Octeon CN5230 w/ JUNOS 12.1X44- D15.5-Domestic (SRX240); Cavium Octeon CN5230 w/ JUNOS 12.1X44- D15.5-FIPS (SRX240); Cavium Octeon CN6335 w/JUNOS 12.1X44- D15.5-Domestic (SRX550); Cavium Octeon CN6335 w/ JUNOS 12.1X44- D15.5-FIPS (SRX550); Cavium Octeon CN5645 w/ JUNOS 12.1X44- D15.5-Domestic (SRX650); Cavium Octeon CN5645 w/ JUNOS 12.1X44- D15.5-FIPS (SRX650); Motorola MPC8544E, PowerQUIC III Processor w/ JUNOS 12.1X44- D15.5-Domestic (SRX1400); Motorola MPC8544E, PowerQUIC III Processor w/ JUNOS 12.1X44- D15.5-FIPS (SRX1400); Intel 1.3GHz CPU Celeron M w/ JUNOS 12.1X44- D15.5-Domestic (SRX5000 with SPC-2); Intel 1.3GHz CPU Celeron M w/ JUNOS 12.1X44- D15.5-FIPS (SRX5000 with SPC-2); Intel 1.3GHz CPU Celeron M w/ JUNOS 12.1X44- D15.5-Domestic (SRX5000 with SPC-4); Intel 1.3GHz CPU Celeron M w/ JUNOS 12.1X44- D15.5-FIPS (SRX5000 with SPC-4); 4/30/2013 CBC ( e/d; 128 , 192 , 256 );

"Juniper Networks, Inc. JUNOS 12.1 X44 for SRX Series Platforms supports the definition of and enforces information flow policies among network nodes. The routers provide for stateful inspection of every packet that traverses the network and provide central management to manage the network security policy."

09/10/13: Updated implementation information;

2390 Microsemi Corporation
1281 Win Hentschel Blvd
West Lafayette, IN 47906
USA

-Michael Mehlberg
TEL: (571) 319-3343
FAX: (765) 775-1038

-General Inquiries
TEL: (765) 775-1004
FAX: (765) 775-1038

XTS-AES Tweakable Block Cipher

Version 4.4 (Firmware)
Mentor Graphics Modelsim PE 6.6 Revision: 2010.01 4/23/2013

XTS( KS: XTS_128( (e/d) (f) ) KS: XTS_256( (e/d) (f) )) AES Val#2389

"Microsemi''s XTS-AES reusable IP core for ASICs and FPGAs supports 128, 192 and 256-bit AES keys, encryption and decryption, and whole block length-preserving ciphering. This core is developed by cleared US citizens for Government/Defense systems."

2389 Microsemi Corporation
1281 Win Hentschel Blvd
West Lafayette, IN 47906
USA

-Michael Mehlberg
TEL: (571) 319-3343
FAX: (765) 775-1038

-General Inquiries
TEL: (765) 775-1004
FAX: (765) 775-1038

AES Module

Version 4.4 (Firmware)
Mentor Graphics Modelsim PE 6.6 Revision: 2010.01 4/23/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

"Microsemi''s AES reusable IP core for ASICs and FPGAs supports all key lengths, NIST recommended block modes, encryption and/or decryption, and configurable size/throughput optimization settings. This core is developed by cleared US citizens for Government/Defense systems."

2388 Netronome Systems, Inc.
3159 Unionville Drive
Suite 100
Cranberry Twp, PA 16066
USA

-David Wells
TEL: +44 1223 372461
FAX: +44 8701 991231

-Roelof du Toit
TEL: +1 724 778 3290
FAX: +1 724 778 3295

Netronome SSL Inspector Appliance model SI-10000

Version 3.5.2
Part # SI-10000
SI-10000 has two Intel E5620 quad core CPUs and 24GB of memory. w/ Linux x86_64 4/23/2013 CBC ( e/d; 128 , 256 );

"The SSL Inspector is a transparent SSL proxy designed to detect SSL traffic and then under policy control to "inspect" the traffic. Inspection involves decrypting and re-encrypting the traffic to gain access to the clear text data and then passing this data to an associated security appliance that needs to see decrypted traffic."

2387 IBM
9032 South Rita Road
Tucson, AZ 85744
USA

-Christine Knibloe
TEL: 520-799-2486

TS1140 AES-GCM Write

Part # P/N: 0000066Y8800
N/A 4/23/2013 ECB ( e only; 256 );

GCM (KS: AES_256( ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 128 , 512 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The hardware ASIC implementation provides AES-GCM encryption."

2385 IBM
9032 South Rita Road
Tucson, AZ 85744
USA

-Christine Knibloe
TEL: (520) 799-2486

TS1140 Cryptographic Firmware Library

Version P/N: 35P2401 (Firmware)
PPC 405 4/23/2013 ECB ( e/d; 256 );

"Firmware cryptographic implementation that adds secure key channel capabilities to the IBM TS1140."

2384 IBM
9032 South Rita Road
Tucson, AZ 85744
USA

-Christine Knibloe
TEL: (520) 799-2486

TS1140 AES-GCM Read

Part # P/N: 0000066Y8800
N/A 4/23/2013 ECB ( e only; 256 );

GCM (KS: AES_256( ) Tag Length(s): 128 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 128 , 1024 ) ; AAD Lengths tested: ( 128 , 512 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Not_Supported

"The hardware ASIC implementation provides AES-GCM decryption."

2381 CoCo Communications
800 5th Ave
Seattle, WA 98104
USA

-David Weidenkopf
TEL: 206-812-5783

CoCo OpenSSL AES-NI Algorithms for Intel x86

Version 2.1
x86 32-bit with AES-NI w/ Vyatta 6.4 4/23/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 1024 , 1024 ) ; AAD Lengths tested: ( 1024 , 1024 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The CoCo OpenSSL Crypto Module is an OpenSSL cryptographic library that provides cryptographic services to its calling applications."

03/31/014: Updated implementation information;

2380 Lexmark International, Inc.
740 West New Circle Road
Lexington, KY 40550
USA

-Graydon Dodson
TEL: (859) 232-6483

Crypto Module (kernel)

Version 2.10
Marvell 88PA6170C1 (ARMv7 dual core) w/ Lexmark Linux v3.0.0 4/23/2013 CBC ( e/d; 128 , 192 , 256 );

"The Crypto Module (user/kernel) provides cryptographic services to the firmware in Lexmark products."

2379 Lexmark International, Inc.
740 West New Circle Road
Lexington, KY 40550
USA

-Graydon Dodson
TEL: (859) 232-6483

Crypto Module (user)

Version 2.10
Marvell 88PA6170C1 (ARMv7 dual core) w/ Lexmark Linux v3.0.0 4/23/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"The Crypto Module (user/kernel) provides cryptographic services to the firmware in Lexmark products."

2378 Motorola Solutions, Inc.
6480 Via Del Oro
San Jose, CA 95119
USA

-Udayan Borkar
TEL: 408-528-2361
FAX: 408-528-2903

-Colin Cooper
TEL: 408-528-2871
FAX: 408-528-2903

AES3

Version 3.0 (Firmware)
Cavium Octeon Plus CN5000 Family 4/12/2013 ECB ( e only; 128 );

"In WiNG 5, WLAN (802.11i) code uses "AES encryption" to wrap the GTK (Group Temporal Key: Used to authenticate broadcast routing messages)."

2377 Motorola Solutions, Inc.
6480 Via Del Oro
San Jose, CA 95119
USA

-Udayan Borkar
TEL: 408-528-2361
FAX: 408-528-2903

-Colin Cooper
TEL: 408-528-2871
FAX: 408-528-2903

OpenSSL

Version 1.2.3 (Firmware)
Cavium Octeon Plus CN5000 Family 4/12/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 );

"OpenSSL is a third party open source code, which provides cryptographic services to user space daemons. The device uses openssl-fips-1.2.3 version. Wing5 userspace daemons (RADIUS, ntp, openssh, rim, net-snmp, mapsh, etc) using openssl crypto services call fips_mode_set() from their respective initialization functions."

2376 Hewlett–Packard Development Company, L.P.
3000 Hanover Street
Palo Alto, CA 94304
USA

-Mihai Damian
TEL: 1-650-236-5870

-Sameer Popli
TEL: 1-650-236-5874

NonStop Krypton Kernel Module

Version 1.0
Intel(R) Xeon(R) E5-2658 w/ Debian Linux HPTE Version 5.0.0 4/5/2013 CBC ( e/d; 256 );

XTS( ) KS: XTS_256( (e/d) (f) ))

"Hewlett-Packard''s NonStop platform is used in complex computing environments, where business-critical applications need 24 x 7 availability, extreme scalability, and fault-tolerance. NonStop plays an important role in major industries and markets, including finance, healthcare, telecommunications, manufacturing, retail, and government."

2375 Hewlett–Packard Development Company, L.P.
3000 Hanover Street
Palo Alto, CA 94304
USA

-Mihai Damian
TEL: 1-650-236-5870

-Sameer Popli
TEL: 1-650-236-5874

HP NSVLE C API Library

Version 0.3
Intel(R) Xeon(R) E5-2658 w/ Debian Linux HPTE Version 5.0.0 4/5/2013 CBC ( e/d; 128 , 256 );

"Hewlett-Packard''s NonStop platform is used in complex computing environments, where business-critical applications need 24 x 7 availability, extreme scalability, and fault-tolerance. NonStop plays an important role in major industries and markets, including finance, healthcare, telecommunications, manufacturing, retail, and government."

2374 Riverbed Technology, Inc.
199 Fremont Street
San Francisco, CA 94105
USA

-Joe Tomasello
TEL: 415-344-5756

-Andy Pang
TEL: 415-247-7341

Riverbed Cryptographic Security Module

Version 1.0
Intel Xeon (x86-64) w/ RiOS 8.0 32-bit; Intel Xeon (x86-64) w/ RiOS 8.0 64-bit; Intel Xeon E3-1220v2 (x86_64) w/ RiOS 8.0 64-bit running on VMware ESXi 5.1; Intel Xeon E3-1220v2 (x86_64) w/ AES-NI w/ RiOS 8.0 64-bit running on VMware ESXi 5.1; Intel Xeon E3-1220v2 (x86_64) w/ Stingray OS 4.0 running on VMware ESXi 5.1; Intel Xeon E3-1220v2 (x86_64) w/ AES-NI w/ Stingray OS 4.0 running on VMware ESXi 5.1; Intel Xeon E31220 (x86_64) w/ AES-NI w/ RiOS 8.0 64-bit; AMD Opteron 4122 (x86_64) w/ Granite OS 2.0; Intel Xeon E31220 (x86_64) w/ Granite OS 2.0 on VMware ESXi 5.1; Intel Xeon E31220 (x86_64) w /AES-NI w/ Granite OS 2.0 on VMware ESXi 5.1; Intel Xeon E5620 w/ Whitewater OS 3.0; Intel Xeon E5620 with AES-NI w/ Whit; ewater OS 3.0; Intel Xeon E31220 (x86) w/ Whitewater OS 3.0 under VMware ESXi 5.1; Intel Xeon E31220 (x86) with AES-NI w/ Whitewater OS 3.0 under VMware ESXi 5.1; AMD Opteron 2376 w/ Interceptor OS 4.5 ;  Intel Xeon E31220 w/ RiOS 8.6 32-bit; Intel Xeon E31220 w/ RiOS 8.6 64-bit; Intel Xeon E5-2430L w/ RiOS 8.6 64-bit under VMware ESXi 5.1; Intel Xeon E5-2430L with AES-NI w/ RiOS 8.6 64-bit under VMware ESXi 5.1; Intel Xeon E31220 with AES-NI w/ RiOS 8.6 64-bit; Intel Xeon w/ Steelhead Mobile Controller 4.6; Intel Xeon with AES-NI w/ Steelhead Mobile Controller 4.6; Intel Xeon E5-2430L w/ Steelhead Mobile Controller 4.6 under VMware ESXi 5.1; Intel Xeon E5-2430L with AES-NI w/ Steelhead Mobile Controller 4.6 under VMware ESXi 5.1 4/12/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Riverbed Cryptographic Security Module provides the cryptographic functionality for a variety of Riverbed''s platforms including Steelhead and Granite appliances. These network appliances deliver a scalable Wide Area Data Services (WDS) solution, transparently and securely optimizing performance across an enterprise network"

08/28/13: Added new tested information;
12/13/13: Added new tested information;
09/10/14: Added new tested information;
09/17/14: Added new tested information;

2373 Cummings Engineering Consultants, Inc.
145 S. 79th St., Suite 26
Chandler, AZ 85226
USA

-Darren Cummings
TEL: 480-809-6024

Cummings Engineering's Secure Mobility Suite B Crypto Module

Version 1.1
ARM Cortex A8 (ARMv7) w/ Apple iOS 5.0; Intel Core i7-3615QM w/ Apple OS X 10.7 4/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The cryptographic module used by the Cummings Engineering suite of products which allow for efficient and effective deployment of robust secure communications capability on commercial off the shelf (COTS) devices, such as Smartphones and Tablets, as well as speciality communications devices."

2372 SAP AG
Albert-Einstein-Allee 3
Bensheim, NRW 64625
Germany

-Stephan André
TEL: +49-6251-708-1730
FAX: +49-6227-78-55975

-Thomas Rothe
TEL: +49-6251-708-2339
FAX: +49-6227-78-55989

SAP NW SSO 2.0 Secure Login Library Crypto Kernel

Version 2.0.0.1.32 32/64-bit
Intel Xeon w/ Mac OS X 10.7 64-bit 4/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 1000 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 16 , 1008 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

"SAP NW SSO 2.0 Secure Login Library Crypto Kernel v2.0.0.1.32 is a shared library, i.e. it consists of software only. SAP NW SSO 2.0 Secure Login Library Crypto Kernel provides an API in terms of C++ methods for key management and operation of cryptographic functions."

2371 SAP AG
Albert-Einstein-Allee 3
Bensheim, NRW 64625
Germany

-Stephan André
TEL: +49-6251-708-1730
FAX: +49-6227-78-55975

-Thomas Rothe
TEL: +49-6251-708-2339
FAX: +49-6227-78-55989

SAP NW SSO 2.0 Secure Login Library Crypto Kernel

Version 2.0.0.1.32 64-bit
Intel Xeon with AES-NI w/ Linux 2.6.32; AMD Opteron w/ Linux 2.6.32; IBM POWER7 (PowerPC) w/ Linux 2.6.32 on hypervisor VMware ESX 5.0.0; AMD Opteron w/ Linux 2.6.16; IBM S/390 (2817) w/ Linux 2.6.5 on hypervisor VMware ESX 4.1.0; IBM POWER6 (PowerPC) w/ Linux 2.6.16 on hypervisor VMware ESX 4.1.0; AMD Opteron w/ Linux 2.6.5; IBM S/390 (2817) w/ Linux 2.6.5 on hypervisor VMware ESX 4.1.0; IBM POWER5 (PowerPC) w/ Linux 2.6.5 on hypervisor VMware ESX 5.0.0; Intel Itanium 2 w/ Linux 2.6.5; Intel Itanium 2 w/ Linux 2.4.19; Intel Xeon w/ Solaris 5.10 64-bit; SPARC64 V w/ Solaris 5.10 64-bit; UltraSPARC III+ w/ Solaris 5.9 64-bit; SPARC64 III w/ Solaris 5.8 64-bit; Alpha 21264B (EV6) w/ True64 Unix 5.1; Intel Xeon w/ Mac OS X 10.7 64-bit; Intel Core i5 with AES-NI w/ Windows 7 Enterprise SP1 64-bit; AMD Opteron w/ Windows Server 2008 R2 on hypervisor VMware ESX 4.1.0; HP 9000/800/rp3440 (PA-RISC2.0) w/ HP-UX 11.31 64-bit; Intel Itanium 2 w/ HP-UX 11.31 64-bit; Intel Itanium 2 w/ HP-UX 11.23 64-bit; HP 9000/800/L3000-7x (PA-RISC2.0) w/ HP-UX 11.11 64-bit; HP 9000/800/L3000-5x (PA-RISC2.0) w/ HP-UX 11.00 64-bit; IBM POWER7 (PowerPC) w/ AIX 6.1 64-bit on hypervisor VMware ESX 4.1.0; IBM POWER4 (PowerPC) w/ AIX 5.2 64-bit; IBM POWER4 (PowerPC) w/ AIX 5.1 64-bit 4/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Externally ) ; PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 1000 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 16 , 1008 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

"SAP NW SSO 2.0 Secure Login Library Crypto Kernel v2.0.0.1.32 is a shared library, i.e. it consists of software only. SAP NW SSO 2.0 Secure Login Library Crypto Kernel provides an API in terms of C++ methods for key management and operation of cryptographic functions."

2370 SAP AG
Albert-Einstein-Allee 3
Bensheim, NRW 64625
Germany

-Stephan André
TEL: +49-6251-708-1730
FAX: +49-6227-78-55975

-Thomas Rothe
TEL: +49-6251-708-2339
FAX: +49-6227-78-55989

SAP NW SSO 2.0 Secure Login Library Crypto Kernel

Version 2.0.0.1.32 32-bit
Intel Pentium III w/ Linux 2.6.27 on hypervisor VMware ESX 4.1.0; Intel Xeon with AES-NI w/ Linux 2.6.32; Intel Pentium III w/ Linux 2.6.5; Intel Xeon w/ Linux 2.4.21; Intel Xeon w/ Linux 2.4.18; Intel Xeon w/ Solaris 5.10 64-bit; SPARC64 V w/ Solaris 5.10 64-bit; UltraSPARC III+ w/ Solaris 5.9 64-bit; SPARC64 III w/ Solaris 5.8 64-bit; Intel Xeon w/ Mac OS X 10.7 64-bit; Intel Core i5 with AES-NI w/ Windows 7 Enterprise SP1 64-bit; AMD Opteron w/ Windows Server 2008 R2 on hypervisor VMware ESX 4.1.0; HP 9000/800/rp3440 (PA-RISC2.0) w/ HP-UX 11.31 64-bit; HP 9000/800/L3000-7x (PA-RISC2.0) w/ HP-UX 11.11 64-bit; HP 9000/800/L3000-5x (PA-RISC2.0) w/ HP-UX 11.00 64-bit; IBM POWER7 (PowerPC) w/ AIX 6.1 64-bit on hypervisor VMware ESX 4.1.0; IBM POWER4 (PowerPC) w/ AIX 5.2 64-bit; IBM POWER4 (PowerPC) w/ AIX 5.1 64-bit 4/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( int/ext; 128 , 192 , 256 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
PT Lengths Tested: ( 0 , 128 , 1024 , 8 , 1000 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 16 , 1008 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

"SAP NW SSO 2.0 Secure Login Library Crypto Kernel v2.0.0.1.32 is a shared library, i.e. it consists of software only. SAP NW SSO 2.0 Secure Login Library Crypto Kernel provides an API in terms of C++ methods for key management and operation of cryptographic functions."

2369 Altera Canada
58 Glencoe Drive
Mount Pearl, Newfoundland A1N 4S9
Canada

-Diane Corrigan
TEL: 709.747.4387

-Shawn Nicholl
TEL: 709.747.4125

AES-XTS+GMAC Library

Version XTS_GMAC_1.0 (Firmware)
Modelsim Altera 10.1b (simulator) 4/5/2013

GCM (KS: AES_256( e/d ) Tag Length(s): 128 )
AAD Lengths tested: ( 256 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported AES Val#2352

XTS( ) KS: XTS_256( (e/d) (f) )) AES Val#2352

"FPGA core. AES-XTS 256 bit Key, 128 bit multiple length text. Associated GMAC, 256 bit key, 128 bit multiple text length."

2368 Altera Canada
58 Glencoe Drive
Mount Pearl, Newfoundland A1N 4S9
Canada

-Diane Corrigan
TEL: 709.747.4387

-Shawn Nicholl
TEL: 709.747.4125

AES-XTS+GCM Library

Version XTS_GCM_1.0 (Firmware)
Modelsim Altera 10.1b (simulator) 4/5/2013

GCM (KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 256 , 1024 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported AES Val#2352

XTS( ) KS: XTS_256( (e/d) (f) ))

"FPGA core. AES-XTS 256 bit Key, 128 bit multiple length text. Associated GCM, 256 bit key, 128 bit multiple text length."

2367 CoCo Communications
800 5th Ave
Seattle, WA 98104
USA

-David Weidenkopf
TEL: 206-812-5783

CoCo OpenSSL Algorithms for Intel x86

Version 2.1
x86 32bit w/ Vyatta 6.4 4/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 1024 , 1024 ) ; AAD Lengths tested: ( 1024 , 1024 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The CoCo OpenSSL Crypto Module is an OpenSSL cryptographic library that provides cryptographic services to its calling applications."

03/31/14: Updated implementation information;

2366 CoCo Communications
800 5th Ave
Seattle, WA 98104
USA

-David Weidenkopf
TEL: 206-812-5783

CoCo OpenSSL Algorithms for AMD Geode

Version 2.1
AMD Geode 32bit w/ Red Hat Enterprise Linux 6 4/5/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 1024 , 1024 ) ; AAD Lengths tested: ( 1024 , 1024 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The CoCo OpenSSL Crypto Module is an OpenSSL cryptographic library that provides cryptographic services to its calling applications."

04/30/13: Updated implementation information;
03/31/14: Updated implementation information;

2365 HGST, Inc.
5601 Great Oaks Parkway
San Jose, California 95119
US

-Rajesh Kukreja
TEL: 408-717-6261
FAX: 408-717-9494

-Jithendra Bethur
TEL: 408-717-5951
FAX: 408-717-9494

TcgCryptoLib

Version SOCFWLIB-0015 (Firmware)
ARM Cortex R4 3/29/2013 ECB ( e/d; 256 ); KW ( AE , AD , AES-256 , FWD , 256 , 256 , 256 ) AES Val#2365

"HGST SEDs implement TCG Storage specifications. They satisfy the performance & security requirements of demanding enterprise applications. Embedded FIPS 140-2 modules have hardware encryption, cryptographic erase, independently authorized data bands and authenticated, protected FW download."

10/21/13: Updated the implementation with new test; 10/14/14: Updated the implementation vendor, poc1, poc2, implementation description, added AES-Key-Wrapping

2364 Toshiba Corporation Social Infrastructure Systems Company
1, Komukai, Toshiba-cho, Saiwai-ku
Kawasaki, Kanagawa 212-8583
Japan

-Hiroki Fukuoka
TEL: +81-44-549-8323

TSBIC CryptoLib

Version 1.0.0
Intel Core i7 w/ Windows 7 Professional 32-bit 3/29/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 4 Max: 16 )

"TSBIC CryptoLib is a general-purpose library which ensures high security to the applications requiring standard cryptographic algorithms."

2363 Xilinx, Inc.
2100 Logic Drive
San Jose, CA 95124
USA

-Jason Moore
TEL: 505-798-4863

7 Series and Zynq AES/MAC

Part # 7 Series and Zynq
N/A 3/29/2013 CBC ( d only; 256 );

"A Verilog implementation that has been synthesized into our 7 Series and Zynq products. This implementation has been governed in our internal revision control system. This implementation can be simulated via a synopsys VCS simulation/testbench framework."

04/12/13: Updated implementation information;

2362 Pure Storage, Inc.
650 Castro Street
Suite #400
Mountain View, CA 94041
USA

-Marco Sanvido
TEL: 800-379-7873
FAX: 650-625-9667

-Ethan Miller
TEL: 800-379-7873
FAX: 650-625-9667

Flash Array

Version 3.0 (Firmware)
Intel Xeon E5-2670 3/29/2013 ECB ( e/d; 128 , 256 ); CTR ( int only; 128 , 256 )

"The Flash Array is a storage array based on Flash memory technology instead of hard drives. The Pure Storage FlashArray features both in-line and global data deduplication in combination with non-volatile RAM (NV-RAM) cache that runs continuously."

05/06/13: Added new tested information;

2361 WatchGuard Technologies, Inc.
505 Fifth Avenue South, Suite 500
Seattle, Washington 98104
USA

-Peter Eng
TEL: 206 613-6608
FAX: 206 613-0888

XTM Cryptographic Module

Version 11.6.5 (Firmware)
Intel E3 3/22/2013 CBC ( e/d; 128 , 192 , 256 );

"WatchGuard XTM security appliances are designed to protect organizations from various security and productivity threats, including viruses, network attacks, intrusion attempts, Trojan horses, harmful or counterproductive URLs, spam, and more, while also providing secure Virtual Private Network (VPN) connections among workplaces and remote users."

2360 WatchGuard Technologies, Inc.
505 Fifth Avenue South, Suite 500
Seattle, Washington 98104
USA

-Peter Eng
TEL: 206 613-6608
FAX: 206 613-0888

XTM Cryptographic Processor for XTM800, XTM1500, XTM2500

Part # DH8910CC
N/A 3/22/2013 CBC ( e/d; 128 , 192 , 256 );

"WatchGuard XTM security appliances are designed to protect organizations from various security and productivity threats, including viruses, network attacks, intrusion attempts, Trojan horses, harmful or counterproductive URLs, spam, and more, while also providing secure Virtual Private Network (VPN) connections among workplaces and remote users."

2359 Brocade Communications Systems, Inc.
130 Holger Way
San Jose, CA 95134
USA

-Chris Marks
TEL: 408-333-0480
FAX: 408-333-8101

-Sunil Chitnis
TEL: 408-333-2444
FAX: 408-333-4887

FIPS 140-2 Certification for Brocade® MLXe® and CER 2000 Series

Version BRCD-IP-CRYPTO-VER-2.0 (Firmware)
Freescale MPC 7448, RISC, 1700 MHZ; Freescale MPC 7447, RISC, 1000 MHZ; Freescale MPC 8544, PowerQUICC III, 800 MHZ 3/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"The Brocade cryptographic library implements crypto operations in software. The Brocade MLX Series is highly optimized for IP Ethernet deployments, providing symmetric scaling and industry-leading wire-speed port capacity without compromising the performance of advanced capabilities such as IPv6, MPLS, and MPLS Virtual Private Networks (VPNs)."

2358 Feitian Technologies Co., Ltd
Floor 17th, Tower B, Huizhi Mansion, No.9 Xueqing Road
Beijing, Beijing 100085
China

-Erik
TEL: (+86)010-62304466-831
FAX: (+86)010-62304477

-Guo Yu Yi
TEL: (+86)010-62304466-342
FAX: (+86)010-62304477

FEITIAN-FIPS-Cryptographic Library V1.0.0

Version 1.0.0 (Firmware)
Part # SLE78CLFX4000PM
Infineon SLE78CLFX4000PM 3/22/2013

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 1 Max: 16 )
AES Val#2357

"FEITIAN-FIPS-Cryptographic Library V1.0.0 implements AES, TDES, CMAC, TDES MAC, SHA1, SHA256, SHA512, DRBG, RSA, and KDF, and operates on Infineon SLE78CLFX4000PM for FEITIAN-FIPS-JCOS V1.0.0, which is smart card complied with Java Card 2.2.2 and Global Platform 2.2.1."

03/29/13: Updated implementation information;

2357 Feitian Technologies Co., Ltd
Floor 17th, Tower B, Huizhi Mansion, No.9 Xueqing Road
Beijing, Beijing 100085
China

-Erik
TEL: (+86)010-62304466-831
FAX: (+86)010-62304477

-Guo Yu Yi
TEL: (+86)010-62304466-342
FAX: (+86)010-62304477

FEITIAN-FIPS-Cryptographic Library V1.0.0

Part # SLE78CLFX4000PM
N/A 3/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"FEITIAN-FIPS-Cryptographic Library V1.0.0 implements AES, TDES, CMAC, TDES MAC, SHA1, SHA256, SHA512, DRBG, RSA, and KDF, and operates on Infineon SLE78CLFX4000PM for FEITIAN-FIPS-JCOS V1.0.0, which is smart card complied with Java Card 2.2.2 and Global Platform 2.2.1."

03/29/13: Updated implementation information;

2356 Mocana Corporation
350 Sansome Street
Suite 1010
San Francisco, CA 94104
USA

-Sales
TEL: +1-415-617-0055
FAX: +1-415-617-0056

Mocana Cryptographic Library

Version 5.5fs
ARMv7 w/ iOS6 3/22/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 0 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.2 ) ) ; PT Lengths Tested: ( 0 , 128 , 256 , 136 , 264 ) ; AAD Lengths tested: ( 0 , 128 , 256 , 136 , 264 ) ; IV Lengths Tested: ( 128 , 128 ) ; OtherIVLen_Supported
GMAC_Not_Supported
RNG: Val# 1078

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Mocana Cryptographic Module is the engine of Mocana’s Device Security Framework - a software framework that secures all aspects of a system. The Device Security Framework helps applications and device designers reduce development costs and dramatically enhance cryptographic preformance. For details see www.mocana.com."

2355 Comtech Mobile Datacom Corporation
20430 Century Boulevard
Germantown, MD 20874
USA

-Vladislav Grinchenko
TEL: 240-686-3365

-Ryon Coleman
TEL: 240-686-3305

Comtech Mobile Datacom Corp Cryptographic Library (libcmscrypto)

Version 1.2
Intel x64 w/ Red Hat Enterprise Linux 6.3 on KVM version libvirt 0.9.10-21.e16_3.7 on Red Hat Enterprise Linus 6 3/22/2013 CBC ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 );

"libcmscrypto is a library implemented in the Comtech Mobile Datacom Corp. products and provides the basic cryptographic functionality that includes Advanced Encryption Standard (AES) algorithm, Triple-DES, SHA1 message digest, HMAC SHA-1 Keyed-Hash message authentication code."

01/09/14: Updated implementation information;

2354 Nuvoton Technology Corporation
No. 4, Creation Rd. III
Hsinchu Science Park, n/a 300
Taiwan, R.O.C.

-Rachel Menda-Shabat
TEL: +972-9-9702000
FAX: +972-9-9702001

-Leonid Azriel
TEL: +972-9-9702000
FAX: +972-9-9702001

Nuvoton NPCT4xx/NPCT5xx TPM 1.2

Part # FD5C37
N/A 3/15/2013 ECB ( e only; 128 ); CTR ( ext only; 128 )

"Nuvoton TPM (Trusted Platform Module), a TCG 1.2 compliant security processor with embedded firmware"

2353 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Ross Choi
TEL: 972-761-7628

-Kyung-Hee Lee
TEL: +82-10-6640-8499

Samsung FIPS BC for mobile phone and tablet

Version SBC1.45_2.0
ARM7 w/ Android Jelly Bean 4.1 3/8/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 );

"General purpose cryptographic services available for Java-based Bouncycastle used by Samsung devices to provide secure cryptography. Salt length 0, 1 and 2 has been tested for RSASSA-PSS."

2352 Altera Canada
58 Glencoe Drive
Mount Pearl, Newfoundland A1N 4S9
Canada

-Diane Corrigan
TEL: 709.747.4387

-Shawn Nicholl
TEL: 709.747.4125

AES-256 Core

Version 1.0 (Firmware)
Modelsim Altera 10.1b (simulator) 3/8/2013 ECB ( e/d; 256 );

"FPGA Core."

2351 Samsung Electronics Co., Ltd
R4 416, Maetan 3-dong, Yeongtong-gu
Suwon-si, Gyeonggi-do 443-742
Korea

-Ross Choi
TEL: 972-761-7628

-Kyung-Hee Lee
TEL: +82-10-6640-8499

Samsung OpenSSL Cryptographic Module

Version SecOpenSSL2.0.3
ARMv7 w/ Android Jelly Bean 4.1 3/8/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 512 , 1024 ) ; AAD Lengths tested: ( 0 , 512 , 1024 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"General purpose cryptographic services available for Android used by Samsung devices to provide secure cryptography. Salt length 0, 1 and 2 has been tested for RSASSA-PSS."

01/16/14: Updated implementation information;

2350 Digital Monitoring Products, Inc.
2500 N. Partnership Boulevard
Springfield, MO 65803-8877
USA

-Terry Shelton
TEL: (417)831-9362
FAX: (417)447-9698

-Leanna Bremenkamp
TEL: (417)831-9362
FAX: (417)447-9698

XR550Encryption

Version 100 (Firmware)
NXP ARM Cortex 3/8/2013 ECB ( e/d; 128 );

"The DMP XR550 Series panel is a 12 VDC, combined access control, burglary, and fire communicator panel with battery backup. The XR550 Series provides eight on-board burglary zones and two on-board 12 VDC Class B powered zones with reset capability to provide for 2-wire smoke detectors, relays, or other latching devices."

2349 Haivision, Inc.
4445 Garand
Montreal, Quebec H4R 2H9
Canada

-Jean Dube
TEL: 514-334-5445 x8263

Haivision Crypto Module

Version 2.1.1
ARM v5TEJ w/ Linux 2.6 2/26/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); CFB128 ( e/d; 128 ); CTR ( int only; 256 )

"OpenSSL FIPS Object Module 2.0 (CMVP Cert. #1747)"

2348 Canon Inc.
30-2
Shimomaruko 3-chome
Ohta-ku, Tokyo 146-8501
Japan

-Yoichi Toyokura
TEL: +81-3-3758-2111
FAX: +81-3-3758-1160

Canon MFP Security Chip

Part # 2.02
N/A 2/21/2013 CBC ( e/d; 128 , 256 );

"Canon MFP Security Chip provides high-performance data encryption and decryption via SATA interface."

2347 GoldKey Security Corporation
26900 E. Pink Hill Rd
Independence, MO 64057
USA

-GoldKey Sales & Customer Service
TEL: (816) 220-3000

-Jon Thomas
TEL: 567-270-3830

GoldKey Cryptographic Algorithms

Version 7.13 (Firmware)
Arca2S 2/21/2013 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CTR ( ext only; 256 )

"Cryptographic algorithm implementation for GoldKey Products"

03/18/13: Updated implementation information;
03/27/13: Updated implementation information;
10/25/13: Updated implementation information;
07/23/14: Updated implementation informaiton;

2346 Cavium, Inc.
2315 N.First Street
San Jose, CA 95131
USA

-Tasha Castaneda
TEL: 1-408-943-7100

-YJ Kim
TEL: 1-408-943-7100

OCTEON II CN6700/CN6800 Series Die

Part # CN6740/CN6750/CN6760/CN6860/CN6870/CN6880, -SCP and -AAP options Version #-Y22
N/A 2/21/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 1000 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 1000 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"The Octeon II CN 6XXX family of multi-core MIPS64 processors targets datacenter, routers, switches, control plane, base stations, and UTM applications. Part numbers: CN6010 CN6020 CN6120 CN6130 CN6220 CN6230 CN6330 CN6335 CN6630 CN6635 CN6640 CN6645 CN6740 CN6750 CN6760 CN6860 CN6870 CN6880, all with -SCP and -AAP options."

2345 Cavium, Inc.
2315 N.First Street
San Jose, CA 95131
USA

-Tasha Castaneda
TEL: 1-408-943-7100

-YJ Kim
TEL: 1-408-943-7100

OCTEON II CN6600 Series Die

Part # CN6630/CN6635/CN6640/CN6645, -SCP and -AAP options Version # -Y
N/A 2/21/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 1000 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 1000 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"The Octeon II CN 6XXX family of multi-core MIPS64 processors targets datacenter, routers, switches, control plane, base stations, and UTM applications. Part numbers: CN6010 CN6020 CN6120 CN6130 CN6220 CN6230 CN6330 CN6335 CN6630 CN6635 CN6640 CN6645 CN6740 CN6750 CN6760 CN6860 CN6870 CN6880, all with -SCP and -AAP options."

2344 Cavium, Inc.
2315 N.First Street
San Jose, CA 95131
USA

-Tasha Castaneda
TEL: 1-408-943-7100

-YJ Kim
TEL: 1-408-943-7100

OCTEON II CN6000/CN6100 Series Die

Part # CN6010/CN6020/CN6120/CN6130, -SCP and -AAP options
N/A 2/21/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 1000 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 1000 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"The Octeon II CN 6XXX family of multi-core MIPS64 processors targets datacenter, routers, switches, control plane, base stations, and UTM applications. Part numbers: CN6010 CN6020 CN6120 CN6130 CN6220 CN6230 CN6330 CN6335 CN6630 CN6635 CN6640 CN6645 CN6740 CN6750 CN6760 CN6860 CN6870 CN6880, all with -SCP and -AAP options."

2343 Cavium, Inc.
2315 N.First Street
San Jose, CA 95131
USA

-Tasha Castaneda
TEL: 1-408-943-7100

-YJ Kim
TEL: 1-408-943-7100

OCTEON II CN6200/CN6300 Series Die

Part # CN6220/CN6230/CN6330/CN6335, -SCP and -AAP options Version # -Y
N/A 2/19/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

GCM (KS: AES_128( e/d ) Tag Length(s): 128 ) (KS: AES_192( e/d ) Tag Length(s): 128 )
(KS: AES_256( e/d ) Tag Length(s): 128 )
PT Lengths Tested: ( 0 , 128 , 1024 , 120 , 1000 ) ; AAD Lengths tested: ( 0 , 128 , 1024 , 120 , 1000 ) ; IV Lengths Tested: ( 8 , 1024 ) ; 96BitIV_Supported
GMAC_Supported

"The Octeon II CN 6XXX family of multi-core MIPS64 processors targets datacenter, routers, switches, control plane, base stations, and UTM applications. Part numbers: CN6010 CN6020 CN6120 CN6130 CN6220 CN6230 CN6330 CN6335 CN6630 CN6635 CN6640 CN6645 CN6740 CN6750 CN6760 CN6860 CN6870 CN6880, all with -SCP and -AAP options."

2342 OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamstown, MD 27101
USA

-Steve Marquess
TEL: 877-673-6775

OpenSSL FIPS Object Module

Version 2.0.3
Freescale i.MX53xA (ARMv7) with NEON w/ Windows Embedded Compact 7; Freescale i.MX53xD (ARMv7) with NEON w/ Windows Embedded Compact 7; Qualcomm Snapdragon APQ8060 (ARMv7) with NEON w/ Android 4.0 2/19/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Not_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/."

02/21/13: Added new tested information;
02/26/13: Updated implementation information;
04/10/13: Added new tested information;
04/24/13: Updated implementation information;

2341 Advance Computing and Engineering Solutions. (ACES)
H. No. 156, St 5, F11-1
Islamabad, n/a 44000
Pakistan

-Dr. Mehreen Afzal
TEL: +923009878534
FAX: +92-51-2224453

-Dr. Mureed Hussain
TEL: +923238556816
FAX: +92-51-2224453

Tahir Pak Crypto Library

Version 2.1.1
DELL PowerEdge T110 II 11th Generation Server w/ RHEL 5.3 evaluated at EAL4+ 2/19/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 );

"TPCL (Tahir Pak Crypto Library) provides FIPS approved Cryptographic functions to consuming applications via an Application Programming Interface (API)."

03/12/13: Updated implementation information;

2340 N/A N/A N/A 2/19/2013 N/A
2339 CipherCloud, Inc.
99 Almaden Blvd., Suite 720
San Jose, CA 95113
USA

-Varun Badhwar
TEL: 1 (415) 683-0062

Cryptographic Module for CipherCloud Gateway

Version 1.0
Intel Xeon E5645 w/ CentOS 6.3 with Java JRE 1.6.0 2/19/2013 ECB ( e/d; 256 ); CBC ( e/d; 256 ); CFB128 ( e/d; 256 );

"The CipherCloud Encryption gateway provides FIPS approved cryptographic algorithms to protect sensitive data stored in public cloud environments, while preserving advanced operations such as searching, sorting and reporting."

07/12/13: Updated implementation information;

2338 Kony, Inc.
7380 West Sand Lake Rd. #390
Orlando, FL 32819
USA

-Matthew Terry
TEL: 407-730-5669
FAX: 407-404-3738

Kony Cryptographic Library

Version 2.0
Qualcomm QSD 8250 (ARMv7) w/ Android 2.2; Qualcomm QSD 8250 (ARMv7) with NEON w/ Android 2.2; TI OMAP 3621 (ARMv7) w/ Android 3.0; TI OMAP 3621 (ARMv7) with NEON w/ Android 3.0; TI DM3730 (ARMv7) w/ Android 4.0; TI DM3730 (ARMv7) with NEON w/ Android 4.0; ARM Cortex-A8 (ARMv7) with NEON w/ Apple iOS 5.0; ARMv7 Cortex-A8 (ARMv7) with NEON w/ Apple iOS 6.0; ARM Cortex-A8 (ARMv7) without NEON w/ Apple iOS 5.0; ARM Cortex-A8 (ARMv7) without NEON w/ Apple iOS 6.0 2/19/2013 ECB ( e/d; 128 , 192 , 256 ); CBC ( e/d; 128 , 192 , 256 ); CFB1 ( e/d; 128 , 192 , 256 ); CFB8 ( e/d; 128 , 192 , 256 ); CFB128 ( e/d; 128 , 192 , 256 ); OFB ( e/d; 128 , 192 , 256 ); CTR ( ext only; 128 , 192 , 256 )

CCM (KS: 128 , 192 , 256 ) (Assoc. Data Len Range: 0 - 0 , 2^16 ) (Payload Length Range: 0 - 32 ( Nonce Length(s): 7 8 9 10 11 12 13 (Tag Length(s): 4 6 8 10 12 14 16 )

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 192; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 ) (KS: 256; Block Size(s): Full / Partial ; Msg Len(s) Min: 0 Max: 2^16 ; Tag Len(s) Min: 2 Max: 16 )

GCM (KS: AES_128( e/d ) Tag Length(s): 128 120 112 104 96 64 32 ) (KS: AES_192( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
(KS: AES_256( e/d ) Tag Length(s): 128 120 112 104 96 64 32 )
IV Generated: ( Internally (using Section 8.2.1 ) ) ; PT Lengths Tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; AAD Lengths tested: ( 0 , 512 , 1024 , 504 , 1016 ) ; IV Lengths Tested: ( 96 , 1024 ) ; 96BitIV_Supported ; OtherIVLen_Supported
GMAC_Supported

XTS( KS: XTS_128( (e/d) (f/p) ) KS: XTS_256( (e/d) (f/p) ))

"The Kony Cryptographic Library v2.0 is a full featured cryptographic module used in Kony mobile and multi-channel application platforms and the KonyOne Platform."

08/09/13: Added new tested information;
08/27/13: Updated implementation information;
08/30/13: Updated vendor information;

2337 N/A N/A N/A 2/19/2013 N/A
2336 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP1142 & AP1042 88W8363P

Part # Marvell 88W8363P
N/A 2/19/2013 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 22 - 30 ) (Payload Length Range: 10 - 20 ( Nonce Length(s): 13 (Tag Length(s): 8

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 512 ; Tag Len(s) Min: 1 Max: 16 )

"The Cisco Aironet Access Points deliver the versatility, high capacity and enterprise-class features required for small, medium and large Government indoor and outdoor wireless deployments. In FIPS 140-2 mode of operation, the Cisco APs support the IEEE 802.11i and IEEE 802.1x standards and AES for WPA2 encryption."

2335 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP3502 & AP1262 88W8364

Part # Marvell 88W8364
N/A 2/19/2013 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 22 - 30 ) (Payload Length Range: 10 - 20 ( Nonce Length(s): 13 (Tag Length(s): 8

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 512 ; Tag Len(s) Min: 1 Max: 16 )

"The Cisco Aironet Access Points deliver the versatility, high capacity and enterprise-class features required for small, medium and large Government indoor and outdoor wireless deployments. In FIPS 140-2 mode of operation, the Cisco APs support the IEEE 802.11i and IEEE 802.1x standards and AES for WPA2 encryption."

2334 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP3602 & AP2602 88W8764C

Part # Marvell 88W8764C
N/A 2/19/2013 ECB ( e only; 128 );

CCM (KS: 128 ) (Assoc. Data Len Range: 22 - 30 ) (Payload Length Range: 10 - 20 ( Nonce Length(s): 13 (Tag Length(s): 8

CMAC (Generation/Verification ) (KS: 128; Block Size(s): Full / Partial ; Msg Len(s) Min: 32 Max: 512 ; Tag Len(s) Min: 1 Max: 16 )

"The Cisco Aironet Access Points deliver the versatility, high capacity and enterprise-class features required for small, medium and large Government indoor and outdoor wireless deployments. In FIPS 140-2 mode of operation, the Cisco APs support the IEEE 802.11i and IEEE 802.1x standards and AES for WPA2 encryption."

2333 Atmel Corporation
2325 Orchard Parkway
San Jose, CA 95131
US

-Jim Hallman
TEL: (919) 846-3391

-Todd Slack
TEL: (719) 540-3021

AT97SC3204-X4

Part # AT97SC3204-X4
N/A 1/31/2013 ECB ( e/d; 128 ); CTR ( int only; 128 )

"The AT97SC3204 is a single chip cryptographic module used for cryptographic key generation, key storage and key management as well as generation and secure storage for digital certificates."

04/03/14: Added implementation information and updated vendor information;

2332 Bosch Security Systems
130 Perinton Parkway
Fairport, NY 14450
USA

-Jon Wolski
TEL: (585) 678-3323
FAX: (585) 678-3263

-Malcolm Bugler
TEL: (585) 678-3240
FAX: (585) 678-3263

B-Series AES CBC

Version B-3.03.002 (Firmware)
Renesas RX62N 1/31/2013 CBC ( e/d; 128 , 192 , 256 );

"US-1B Security Control Panel"

2331 Bosch Security Systems
130 Perinton Parkway
Fairport, NY 14450
USA

-Jon Wolski
TEL: (585) 678-3323
FAX: (585) 678-3263

-Malcolm Bugler
TEL: (585) 678-3240
FAX: (585) 678-3263

GV4 AES CBC

Version G-1.17.001 (Firmware)
Renesas RX62N 1/31/2013 CBC ( e/d; 128 , 192 , 256 );

"GV4 Security Control Panel"

2330 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Palani Karuppan
TEL: 408-525-2747

-Muukund Chikerali

5508 OpenSSL

Version OPENSSL-0.9.8g-7.0.0 (Firmware)
Cavium Octeon Plus 5600 Family 1/31/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 );

"Cisco WLAN Controller 5508 provides centralized control, management and scalability for small, medium and large-scale Government WLAN networks using APs joined over secure DTLS connection and support IEEE 802.11i security standard with WPA2 to enable a Secure Wireless Architecture."

02/07/13: Updated vendor information;

2329 A10 Networks, Inc.
3 West Plumeria Drive
San Jose, CA 95134
USA

-John Chiong
TEL: +1 408 325-8668

A10 Networks Data Plane FIPS Library CNN3550

Part # CNN3550
N/A 1/31/2013 CBC ( e/d; 128 , 192 , 256 );

"The AX Series Advanced Traffic Manager is designed to meet the growing demands of Web sites, carriers and enterprises. The AX offers intelligent Layer 4-7 application processing capabilities with industry-leading performance and scalability to meet critical business requirements at competitive prices."

2328 Tait Limited
558 Wairakei Road
Burnside
PO Box 1645
Christchurch, Christchurch 8053
New Zealand

-Gordon Martin
TEL: +64-3-358-6622

-Wei Li Jiang
TEL: +64-3-357-0747

TEL_TDES_AES

Version 2.0 (Firmware)
Texas Instruments TMS320C5505 1/31/2013 ECB ( e/d; 128 , 256 ); CBC ( e/d; 128 , 256 ); OFB ( e/d; 128 , 256 );

"Firmware implementation of the FIPS 140-2 certified Crypto Module, used to provide security features in the Tait Communications range of digital radios and base station equipment."

02/05/13: Updated implementation information;
04/15/13: Updated implementation information;

2327 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP3602 & AP2602 HW DTLS

Part # Freescale SC1023
N/A 1/31/2013 CBC ( e/d; 128 );

"The Cisco Aironet Access Points deliver the versatility, high capacity and enterprise-class features required for small, medium and large Government indoor and outdoor wireless deployments. In FIPS 140-2 mode of operation, the Cisco APs support the IEEE 802.11i and IEEE 802.1x standards and AES for WPA2 encryption."

2326 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP3502 & AP1262 HW DTLS

Part # AMCC 460EXr
N/A 1/31/2013 CBC ( e/d; 128 );

"The Cisco Aironet Access Points deliver the versatility, high capacity and enterprise-class features required for small, medium and large Government indoor and outdoor wireless deployments. In FIPS 140-2 mode of operation, the Cisco APs support the IEEE 802.11i and IEEE 802.1x standards and AES for WPA2 encryption."

2325 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP1142 & AP1042 HW DTLS

Part # AMCC 405EX
N/A 1/31/2013 CBC ( e/d; 128 );

"The Cisco Aironet Access Points deliver the versatility, high capacity and enterprise-class features required for small, medium and large Government indoor and outdoor wireless deployments. In FIPS 140-2 mode of operation, the Cisco APs support the IEEE 802.11i and IEEE 802.1x standards and AES for WPA2 encryption."

2324 Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134
USA

-Global Certification Team

Cisco AP1131 & AP1242 A506