CMVP Main Page

Validated FIPS 140-1 and FIPS 140-2 Cryptographic Modules

Historical, 1995-1997, 1998, 1999, 2000, 2001, 2002, 2003, 2004, 2005, 2006, 2007, 2008, 2009, 2010, 2011, 2012, 2013, 2014, 2015, 2016
All

Last Updated: 9/13/2016

It is important to note that the items on this list are cryptographic modules. A module may either be an embedded component of a product or application, or a complete product in-and-of-itself. If the cryptographic module is a component of a larger product or application, one should contact the product or application vendor in order to determine how the product utilizes the embedded validated cryptographic module. There may be a larger number of security products or applications available which use an embedded validated cryptographic module, than the number of modules which are found in this list. In addition, other vendors, who are not found in this list, may incorporate a validated cryptographic module from this list embedded into their own products.

When selecting a module from a vendor, verify that the module is either the product or application itself (e.g. VPN, SmartCard, USB memory token, etc.) or the module is embedded in a larger product or application (e.g. toolkit, etc.). If the module is embedded in a product or application, ask the product or application vendor to provide a signed letter or statement affirming that the unmodified validated cryptographic module is integrated in the solution; the module provides all the cryptographic services in the solution; and provide reference to the modules validation certificate number from this listing.

NOTE1: Module descriptions are provided by the module vendors and have not been verified for accuracy by the CMVP. The descriptions do not imply endorsement by the U.S. or Canadian Governments or NIST. Additionally, the descriptions may not necessarily reflect the capabilities of the modules when operated in the FIPS-Approved mode. The algorithms, protocols, and cryptographic functions listed as "other algorithms" (e.g. allowed or non-FIPS-Approved algorithms) have not been tested through the CMVP.

NOTE2: The operator of a cryptographic module is responsible for ensuring that the algorithms and key lengths are in compliance with the requirements of NIST SP 800-131A.

NOTE3: All questions regarding the implementation and/or use of any module located on the CMVP module validation lists should first be directed to the appropriate vendor point-of-contact (listed for each entry).

Please contact the CMVP if any errors are discovered or comments with suggestions for improvement of the validation listings.

Cert#Vendor / CST LabCryptographic ModuleModule
Type
Val.
Date
Level / Description
1079Secuware
Torre Picasso
Plaza Pablo Ruiz Picasso, s/n.
Madrid 28020
Spain

Jorge López Hernández-Ardieta
TEL: +34 915-649-149
FAX: +34 915-629-697


TEL: +34 608-271-936

CST Lab: NVLAP 200658-0
Secuware Security Framework - Crypt4000 Module
(Software Version: 4.0)
(When obtained, built, installed, protected and initialized as assumed by the Crypto Officer role and specified in Section 8.2 of the provided Security Policy. Section 8.2 of the provided Security Policy specifies the complete set of source files of this module. There shall be no additions, deletions or alterations of this set as used during module build. All source files shall be obtained via secure FTP. Any deviation from the specified verification, protection, installation and initialization procedures will result in a FIPS 140-2 non-compliant module.)

Validated to FIPS 140-2

Certificate

Security Policy
Software12/24/2008
01/26/2009
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows XP SP2 (single user mode)

-FIPS Approved algorithms: AES (Cert. #792); SHS (Cert. #905); HMAC (Cert. #513)

-Other algorithms: N/A

Multi-chip standalone

"The SCM is a function library implementing crypto services which is delivered to the final user as a SW cryptographic object module, running on Windows operating system in a General Purpose Computer. The logical cryptographic boundary for the SCM is the discrete block of object code containing the machine instructions and data generated from the SCM FIPS source, which will be allocated continuously in a main memory address space, as used by the calling application."
1076JVC KENWOOD Corporation
1-16-2, Hakusan, Midori-ku
Yokohama-shi, Kanagawa 226-8525
Japan

Tamaki Shimamura
TEL: +81 45 939 6254
FAX: +81 45 939 7093

Joe Watts
TEL: 678-474-4700
FAX: 678-474-4730

CST Lab: NVLAP 100432-0
Secure Cryptographic Module (SCM)
(Hardware Versions: P/N KWD-AE20, Version 1.0.0; Firmware Versions: A2.0.0 and A.2.0.1)
(When operated in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Hardware12/24/2008
01/26/2009
02/19/2010
12/07/2011
01/31/2012
Overall Level: 1

-Cryptographic Module Specification: Level 3
-EMI/EMC: Level 3

-FIPS Approved algorithms: AES (Certs. #831 and #832); SHS (Cert. #827)

-Other algorithms: DES; DES MAC; LFSR; AES MAC (AES Cert. #831, vendor affirmed; P25 AES OTAR)

Multi-chip embedded

"The Secure Cryptographic Module (SCM) meets overall FIPS 140-2 Level 1 requirements providing KENWOOD radios secure and encrypted digital communication. The SCM supports 256 bit key AES encryption as well as DES encryption."
1072RELM Wireless Corporation
7100 Technology Drive
West Melbourne, FL 32904
USA

Jim Holthaus
TEL: 402-896-6406
FAX: 785-856-1302

CST Lab: NVLAP 100432-0
FIPSCOM Cryptographic Module
(Hardware Versions: P/N 7011-30967-000, Versions 100808 and 100908; Firmware Versions: 0722-05072-001 and 0722-05073-002)
(When operated in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Hardware12/24/2008Overall Level: 1

-FIPS Approved algorithms: AES (Cert. #899); RSA (Cert. #139); SHS (Cert. #462)

-Other algorithms: DES

Multi-chip embedded

"The FIPSCOM is an embedded cryptographic module that provides encryption functions for secure digital communications products. The FIPSCOM can be incorporated into any BK Radio brand subscriber equipment requiring FIPS 140-2, Level 1 security."
1069

CST Lab: NVLAP 100432-0


Validated to FIPS 140-2

Certificate

Security Policy
Hardware12/09/2008
12/11/2009
Overall Level: 2

Multi-chip standalone
1057Vormetric, Inc.
2545 N. 1st Street
San Jose, CA 95131-1003
USA

Phil Scott
TEL: 408-961-2509
FAX: 408-844-8638

Frank Teruel
TEL: 408-961-6132
FAX: 408-844-8638

CST Lab: NVLAP 200017-0
NetBackup Media Server Encryption Option (MSEO) Driver
(Software Version: 6.1.0)

Validated to FIPS 140-2

Certificate

Security Policy
Software11/25/2008Overall Level: 1

-Design Assurance: Level 2

-Operational Environment: Tested as meeting Level 1 with Windows 2000 Advanced Server SP4
Windows 2003 Server Enterprise SP2 32-bit
Windows 2003 Server Enterprise SP2 64-bit
Windows 2003 Server Enterprise SP2 X64 Edition
Solaris 8 64-bit
Solaris 9 64-bit
Solaris 10 64-bit
Red Hat Linux Enterprise 4 Update 4 64-bit (single-user mode)

-FIPS Approved algorithms: AES (Cert. #809); SHS (Cert. #806); HMAC (Cert. #448);

-Other algorithms: N/A

Multi-chip standalone

"The "Powered by Vormetric", NetBackup Media Server Encryption Option (MSEO) product from Symantec, provides a cost-effective, easy to manage data encryption solution for securing enterprise backup tapes. It is based on robust encryption methods and provides a centralized approach for the encryption process and key management."
1054Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Tony Ureche
TEL: 800-MICROSOFT

CST Lab: NVLAP 200427-0
BitLocker™ Drive Encryption
(Software Versions: 6.0.6001.18000, 6.0.6001.18606, 6.0.6001.22861, 6.0.6002.18005, 6.0.6002.18411, 6.0.6002.22497 or 6.0.6002.22596)
(When operated in FIPS mode with Microsoft Kernel Mode Security Support Provider Interface and Microsoft Windows Cryptographic Primitives Library (Bcrypt.dll) validated to FIPS 140-2 under Cert. #1007 and Cert. #1008 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software11/25/2008
07/29/2009
01/20/2011
10/04/2011
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Windows Server 2008 (x86 version)
Windows Server 2008 (x64 version) (single-user mode)

-FIPS Approved algorithms: AES (Certs. #739 and #760); HMAC (Cert #415); SHS (Cert #753)

-Other algorithms: Elephant Diffuser

Multi-chip standalone

"Windows BitLocker Drive Encryption is a data protection feature available in Windows Vista Enterprise and Windows Vista Ultimate for client computers. BitLocker provides enhanced protection against data theft or exposure on computers that are lost or stolen, and more secure data deletion when BitLocker-protected computers are decommissioned."
1053Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Tony Ureche
TEL: 800-MICROSOFT

CST Lab: NVLAP 200427-0
BitLocker™ Drive Encryption
(Software Versions: 6.0.6001.18000, 6.0.6001.18606, 6.0.6001.22861,6.0.6002.18005, 6.0.6002.18411 or 6.0.6002.22596)
(When operated in FIPS mode with Microsoft Kernel Mode Security Support Provider Interface and Microsoft Windows Cryptographic Primitives Library (Bcrypt.dll) validated to FIPS 140-2 under Cert. #1000 and Cert. #1001 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software11/25/2008
07/29/2009
05/28/2010
10/04/2011
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Windows Vista Ultimate Edition SP1 (x86 Version)
Windows Vista Ultimate Edition SP1 (x64 version) (single-user mode)

-FIPS Approved algorithms: AES (Certs. #739 and #760); HMAC (Cert #415); SHS (Cert #753)

-Other algorithms: Elephant Diffuser

Multi-chip standalone

"Windows BitLocker Drive Encryption is a data protection feature available in Windows Vista Enterprise and Windows Vista Ultimate for client computers. BitLocker provides enhanced protection against data theft or exposure on computers that are lost or stolen, and more secure data deletion when BitLocker-protected computers are decommissioned."
1043Entrust, Inc.
One Hanover Park
16633 Dallas Parkway
Suite 800
Addison, TX 75001
USA

Entrust Sales

CST Lab: NVLAP 200017-0
Entrust Entelligence™ Kernel-Mode Cryptomodule
(Software Version: 1.1)

Validated to FIPS 140-2

Certificate

Security Policy

Vendor Product Link
Software10/15/2008
05/28/2014
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows XP Professional SP2
Microsoft Windows Vista Enterprise, 32-bit edition
Microsoft Windows Vista Ultimate SP1
64-bit edition (single-user mode)

-FIPS Approved algorithms: AES (Cert. #738); Triple-DES (Cert. #655); Triple-DES MAC (Triple-DES Cert. #655, vendor affirmed)

-Other algorithms: N/A

Multi-chip standalone

"The Entrust Entelligence Kernel-Mode Cryptomodule is a software module that implements AES encryption and decryption functions suitable for use in kernel-mode drivers on Windows platforms."
1024Inter-4, A Division of Sierra Nevada Corporation
1777 Montgomery Street
San Francisco, CA 94111
USA

Paul Matz
TEL: 415-771-4444
FAX: 415-771-8444

Dan Haddick
TEL: 415-771-4444
FAX: 415-771-8444

CST Lab: NVLAP 100432-0
STS Secure for Linux
(Software Version: 1.1)

Validated to FIPS 140-2

Certificate

Security Policy
Software09/24/2008Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Linux 2.6 (single user mode)

-FIPS Approved algorithms: DSA (Cert. #157); SHS (Cert. #425); AES (Cert. #350)

-Other algorithms: N/A

Multi-chip standalone

"The STS Secure for Linux is a FIPS 140-2 Level 1 software module, comprised of the Security Manager Application Service (SMA), Key Generator Application, and the AES NetFilter Driver, that runs on a general purpose computer. It is the basis for Inter-4's TACTI-NET networking technology. The primary purpose for the STS Secure software module is to provide data security for all network wireless and/or wired traffic."
1017Inter-4, A Division of Sierra Nevada Corporation
1777 Montgomery Street
San Francisco, CA 94111
USA

Paul Matz
TEL: 415-771-4444
FAX: 415-771-8444

Dan Haddick
TEL: 415-771-4444
FAX: 415-771-8444

CST Lab: NVLAP 100432-0
STS Secure for Windows CE
(Software Version: 1.2 5/30/2008)

Validated to FIPS 140-2

Certificate

Security Policy
Software09/02/2008
12/15/2008
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Windows CE 4.2 (single-user mode)

-FIPS Approved algorithms: DSA (Cert. #157); SHS (Cert. #425); AES (Cert. #350)

-Other algorithms: N/A

Multi-chip standalone

"The STS Secure for Windows CE is a FIPS 140-2 Level 1 software module, comprised of the Security Manager Application Service (SMA) & AES NDIS Filter Driver, that runs on a general purpose computer. It is the basis for Inter-4's Tactinet networking technology. The primary purpose for the STS Secure software module is to provide data security for all network wireless/wired traffic. In addition to data in transit (DIT), file based encryption protects files tranferred to/from the platform via external USB drives, and sensitive data at rest (DAR) stored internally is also encrypted and zeroizable."
1011Francotyp-Postalia GmbH
Triftweg 21-26
Birkenwerder D-16547
Germany

Hasbi Kabacaoglu
TEL: +49-3303-525-656
FAX: +49-3303-525-669

CST Lab: NVLAP 100432-0
Revenector2008
(Hardware Versions: P/Ns 58.0036.0001.00/07 and 58.0036.0006.00/04; Firmware Version: 8.20)

Validated to FIPS 140-2

Certificate

Security Policy
Hardware08/15/2008Overall Level: 3

-Physical Security: Level 3 + EFP

-FIPS Approved algorithms: RSA (Cert. #365); SHS (Cert. #765)

-Other algorithms: N/A

Multi-chip embedded

"Revenector2008 is an embedded security device that can enhance the security of various kinds of appliances and computerized devices. The hardware of the Revenector2008 is designed to protect critical security parameters as well as application specific revenues. Its firmware enables hosting systems to load or update signed application specific firmware."
1006Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Windows Server 2008 Code Integrity (ci.dll)
(Software Versions: 6.0.6001.18000 and 6.0.6002.18005)
(When operated in FIPS mode with Winload OS Loader (winload.exe) validated to FIPS 140-2 under Cert. #1005 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software08/15/2008
07/24/2009
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Server 2008 (x86 Version)
Microsoft Windows Server 2008 (x64 version)
Microsoft Windows Server 2008 (IA64 version) (single-user mode)

-FIPS Approved algorithms: RSA (Cert. #355); SHS (Cert. #753)

-Other algorithms: MD5

Multi-chip standalone

"This is a dynamically linked library that runs as ntoskrnl.exe. It verifies the integrity of executable files, including kernel mode drivers, critical system components and user mode crypto modules, before these files are loaded from disk into memory by the memory manager."
1005Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Windows Server 2008 Winload OS Loader (winload.exe)
(Software Versions: 6.0.6001.18000, 6.0.6001.18606, 6.0.6001.22861, 6.0.6002.18005, 6.0.6002.18411, 6.0.6002.22497 and 6.0.6002.22596)
(When operated in FIPS mode with Boot Manager (bootmgr) validated to FIPS 140-2 under Cert. #1004 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software08/15/2008
07/24/2009
01/20/2011
10/17/2011
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Server 2008 (x86 Version)
Microsoft Windows Server 2008 (x64 version)
Microsoft Windows Server 2008 (IA64 version) (single-user mode)

-FIPS Approved algorithms: AES (Certs. #739 and #760); RSA (Cert. #355); SHS (Cert. #753)

-Other algorithms: MD5

Multi-chip standalone

"This is the OS loader. It loads the boot-critical driver image files and the OS kernel image file itself."
1004Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Windows Server 2008 Boot Manager (bootmgr)
(Software Versions: 6.0.6001.18000, 6.0.6002.18005 and 6.0.6002.22497)
(When operated in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software08/15/2008
07/24/2009
01/20/2011
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Server 2008 (x86 Version)
Microsoft Windows Server 2008 (x64 version)
Microsoft Windows Server 2008 (IA64 version) (single-user mode)

-FIPS Approved algorithms: AES (Certs. #739 and #760); HMAC (Cert. #415); RSA (Cert. #355); SHS (Cert. #753)

-Other algorithms: N/A

Multi-chip standalone

"This is the system boot manager, called by the bootstrapping code that resides in the boot sector. It checks its own integrity and then checks the integrity of the OS loader and launches it."
993Oracle Corporation
500 Eldorado Blvd.
Bldg 5
Broomfield, CO 80021
USA

David Hostetter
TEL: 303-272-7126

CST Lab: NVLAP 100432-0
Key Token
(Hardware Version: P/N 314478004 Version G; Firmware Version: 1.20)

Validated to FIPS 140-2

Certificate

Security Policy
Hardware11/06/2008
05/05/2010
Overall Level: 1

-FIPS Approved algorithms: AES (Cert. #636)

-Other algorithms: N/A

Multi-chip standalone

"The Key Token is a part of the larger Encrypted Data-At-Rest Solution (EDRS). The primary purpose for this device is to provide secure key storage and key transport between the two other EDRS components. The additional two components that the EDRS includes are the Key Management Station (KMS) and the Encrypting Tape Drive (ETD)."
980Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Windows Vista Code Integrity (ci.dll)
(Software Versions: 6.0.6001.18000, 6.0.6001.18023, 6.0.6001.22120 and 6.0.6002.18005)
(When operated in FIPS mode with Winload OS Loader (winload.exe) validated to FIPS 140-2 under Cert. #979 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software07/21/2008
07/29/2009
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Vista Ultimate Edition SP1 (x86 Version)
Microsoft Windows Vista Ultimate Edition SP1 (x64 version) (single-user mode)

-FIPS Approved algorithms: RSA (Cert. #354); SHS (Cert. #753)

-Other algorithms: MD5

Multi-chip standalone

"This is a dynamically linked library that runs as ntoskrnl.exe. It verifies the integrity of executable files, including kernel mode drivers, critical system components and user mode crypto modules, before these files are loaded from disk into memory by the memory manager."
979Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Windows Vista Winload OS Loader (winload.exe)
(Software Versions: 6.0.6001.18000, 6.0.6001.18027, 6.0.6001.18606, 6.0.6001.22125, 6.0.6001.22861, 6.0.6002.18005, 6.0.6002.18411 and 6.0.6002.22596)
(When operated in FIPS mode with Boot Manager (bootmgr) validated to FIPS 140-2 under Cert. #978 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software07/21/2008
07/29/2009
10/17/2011
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Vista Ultimate Edition SP1 (x86 Version)
Microsoft Windows Vista Ultimate Edition SP1 (x64 version) (single-user mode)

-FIPS Approved algorithms: AES (Certs. #739 and 760); RSA (Cert. #354); SHS (Cert. #753)

-Other algorithms: MD5

Multi-chip standalone

"This is the OS loader. It loads the boot-critical driver image files and the OS kernel image file itself."
978Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Windows Vista Boot Manager (bootmgr)
(Software Versions: 6.0.6001.18000 and 6.0.6002.18005)
(When operated in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software07/21/2008
07/24/2009
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Vista Ultimate Edition SP1 (x86 Version)
Microsoft Windows Vista Ultimate Edition SP1 (x64 version) (single-user mode)

-FIPS Approved algorithms: AES (Certs. #739 and 760); HMAC (Cert.#415); RSA (Cert. #354); SHS (Cert. #753)

-Other algorithms: N/A

Multi-chip standalone

"This is the system boot manager, called by the bootstrapping code that resides in the boot sector. It checks its own integrity and then checks the integrity of the OS loader and launches it."
953Semtek Innovative Solutions Corporation
12777 High Bluff Drive
San Diego, CA 92130
USA

Patrick Farrell
TEL: 858-436-2270
FAX: 858-436-2280

CST Lab: NVLAP 100432-0
Cipher Cryptographic Module
(Hardware Version: P/N 7000-0008; Firmware Version: 1.00)

Validated to FIPS 140-2

Certificate

Security Policy
Hardware06/05/2008
06/23/2008
Overall Level: 3

-FIPS Approved algorithms: AES (Cert. #720); Triple-DES (Cert. #643)

-Other algorithms: N/A

Single-chip

"The Cipher Cryptographic Module is a hardware module that provides physical protection for cryptographic keys and sensitive application code. The module can be used by point-of-sale manufacturers as a secure, drop-in solution to provide cardholder data encryption."
947Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Tony Ureche
TEL: 800-MICROSOFT

CST Lab: NVLAP 200427-0
BitLocker™ Drive Encryption
(Software Version: 6.0.6000.16386)
(When operated in FIPS mode with Microsoft Kernel Mode Security Support Provider Interface and Microsoft Windows Cryptographic Primitives Library (Bcrypt.dll) validated to FIPS 140-2 under Cert. #891 and Cert. #892 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software05/22/2008
08/22/2008
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Windows Vista Ultimate Edition (x86 Version) and Windows Vista Ultimate Edition (x64 version) (single-user mode)

-FIPS Approved algorithms: AES (Cert #715); HMAC (Cert #386); SHS (Cert #737)

-Other algorithms: Elephant Diffuser

Multi-chip standalone

"Windows BitLocker Drive Encryption is a data protection feature available in Windows Vista Enterprise and Windows Vista Ultimate for client computers. BitLocker provides enhanced protection against data theft or exposure on computers that are lost or stolen, and more secure data deletion when BitLocker-protected computers are decommissioned."
933Trapeze Networks
5753 W. Las Positas Blvd.
Pleasanton, CA 94588
USA

Ted Fornoles
TEL: 925-474-2602
FAX: 925-251-0642

CST Lab: NVLAP 100432-0
MP-422F Mobility Point
(Hardware Version: P/N MP-422F Rev. A; Firmware Versions: MSS 6.1.0.3, MSS 6.1.0.4 and MSS 6.1.1.2.0)

Validated to FIPS 140-2

Certificate

Security Policy
Hardware04/08/2008
11/06/2008
08/28/2009
Overall Level: 2

-FIPS Approved algorithms: AES CCM (Cert. #641); HMAC (Cert. #330); SHS (Cert. #676)

-Other algorithms: RSA (key wrapping; key establishment methodology provides 80 bits of encryption strength; non-compliant); MD5; RNG (non-compliant)

Multi-chip standalone

"Trapeze Networks delivers Smart Mobile WLAN network solutions, enabling govt. agencies and enterprises to deploy and manage scalable, secure, mobile applications. It supports the IEEE 802.11i security specification and wireless IDS, application-aware switching, location tracking, voice and seamless indoor/outdoor mobility. The Smart Mobile family of wireless products includes high-performance Mobility Exchange® LAN controllers and Mobility Point® access points for secure indoor and outdoor wireless networks, Mobility System Software® and RingMaster® lifecycle WLAN management software."
926

CST Lab: NVLAP 200427-0


Validated to FIPS 140-2

Certificate

Security Policy
Hardware03/11/2008
12/03/2008
Overall Level: 2

Multi-chip standalone
911Harris Corporation
221 Jefferson Ridge Parkway
Lynchburg, VA 24501
USA

Dennis L. Warheit
TEL: 434-455-9205

Shawn Bertrand
TEL: 978-905-3064

CST Lab: NVLAP 200427-0
Harris Corporation Wireless Systems Cryptographic Library (SECLIB)
(Software Version: R1A)
(When operated in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software02/07/2008
07/02/2010
04/10/2015
04/27/2016
Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Windows XP Professional SP2
Windows Server 2003 SP2
Windows 7 Enterprise SP1 running on a Dell Precision Workstation T3500
Windows 8.1 Pro running on a Dell Latitude 430
Android Kit Kat 4.4.2 running on a Samsung Galaxy S5 Active (single-user mode)

-FIPS Approved algorithms: AES (Cert. #637); HMAC (Cert. #328); SHS (Cert. #673); Triple-DES (Cert. #591)

-Other algorithms: AES MAC (AES Cert. #637; non-compliant); DES; DES MAC; NDRNG; RNG

Multi-chip standalone

"The Harris Corporation Wireless Systems Cryptographic Library is a software-based cryptographic module that provides encryption, authentication, and other security support services to various M/A-Com product applications. It specifically satisfies FIPS 140-2 Level 1 requirements."
890Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Code Integrity (ci.dll)
(Software Version: 6.0.6000.16386)
(When operated in FIPS mode with Winload OS Loader (winload.exe) validated to FIPS 140-2 under Cert. #889 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software01/10/2008Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Vista Ultimate Edition (x86 Version)
Microsoft Windows Vista Ultimate Edition (x64 version) (single-user mode)

-FIPS Approved algorithms: RSA (Cert. #255); SHS (Cert. #618)

-Other algorithms: N/A

Multi-chip standalone

"This is a dynamically linked library that runs as ntoskrnl.exe. It verifies the integrity of executable files, including kernel mode drivers, critical system components and user mode crypto modules, before these files are loaded from disk into memory by the memory manager."
889Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Winload OS Loader (winload.exe)
(Software Versions: 6.0.6000.16386, 6.0.6000.16476 and 6.0.6000.20586)
(When operated in FIPS mode with Boot Manager (bootmgr) validated to FIPS 140-2 under Cert. #888 operating in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software01/10/2008Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Vista Ultimate Edition (x86 Version)
Microsoft Windows Vista Ultimate Edition (x64 version) (single-user mode)

-FIPS Approved algorithms: AES (Cert. #424); RSA (Cert. #255); SHS (Cert. #618)

-Other algorithms: N/A

Multi-chip standalone

"This is the OS loader. It loads the boot-critical driver image files and theOS kernel image file itself."
888Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Dave Friant
TEL: 425-704-7984
FAX: 425-936-7329

CST Lab: NVLAP 200427-0
Boot Manager (bootmgr)
(Software Version: 6.0.6000.16386)
(When operated in FIPS mode)

Validated to FIPS 140-2

Certificate

Security Policy
Software01/10/2008Overall Level: 1

-Operational Environment: Tested as meeting Level 1 with Microsoft Windows Vista Ultimate Edition (x86 Version)
Microsoft Windows Vista Ultimate Edition (x64 version) (single-user mode)

-FIPS Approved algorithms: AES (Cert. #424); HMAC (Cert.#298); RSA (Cert. #255); SHS (Cert. #618)

-Other algorithms: N/A

Multi-chip standalone

"This is the system boot manager, called by the bootstrapping code that resides in the boot sector. It checks its own integrity and then checks the integrity of the OS loader and launches it."