Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Algorithm Validation Program

Product Name
Description
GnuTLS supported by Nettle is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure ommunications protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and other required structures.
Version
5.0
Type
SOFTWARE
Vendor
Red Hat, Inc.
100 E. Davie Street
Raleigh, NC 27601
USA
Contacts
Jaroslav Reznik
jreznik@redhat.com

Validations

Number
Date
Operating Environments
Algorithm Capabilities
DRBG 1575
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
AES 4659
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
  • AES-CBC
    • Direction: Decrypt, Encrypt
    • Key Length: 128, 192, 256
  • AES-GCM
    • Direction: Decrypt, Encrypt
    • Key Length: 128, 256
    • Tag Length: 32, 64, 96, 104, 112, 120, 128
    • IV Length: 96
    • Payload Length: 0, 120, 128, 248, 256
    • AAD Length: 0, 120, 128, 248, 256
SHS 3818
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
  • SHA-1
    • Message Length: 0-65536 Increment 8
  • SHA-224
    • Message Length: 0-65536 Increment 8
  • SHA-256
    • Message Length: 0-65536 Increment 8
  • SHA-384
    • Message Length: 0-65536 Increment 8
  • SHA-512
    • Message Length: 0-65536 Increment 8
Component 1310
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
DSA 1234
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
  • DSA KeyGen (186-4)
      • Capabilities:
        • L: 2048
        • N: 224
      • Capabilities:
        • L: 2048
        • N: 256
      • Capabilities:
        • L: 3072
        • N: 256
    Prerequisites:
  • DSA PQGGen (186-4)
      • Capabilities:
        • L: 2048
        • N: 224
        • Hash Algorithm: SHA2-384
      • Capabilities:
        • L: 2048
        • N: 256
        • Hash Algorithm: SHA2-384
      • Capabilities:
        • L: 3072
        • N: 256
        • Hash Algorithm: SHA2-384
    Prerequisites:
  • DSA PQGVer (186-4)
      • Capabilities:
        • L: 2048
        • N: 224
        • Hash Algorithm: SHA2-384
      • Capabilities:
        • L: 2048
        • N: 256
        • Hash Algorithm: SHA2-384
      • Capabilities:
        • L: 3072
        • N: 256
        • Hash Algorithm: SHA2-384
    Prerequisites:
  • DSA SigGen (186-4)
      • Capabilities:
        • L: 2048
        • N: 224
        • Hash Algorithm: SHA2-224, SHA2-256, SHA2-384, SHA2-512
      • Capabilities:
        • L: 2048
        • N: 256
        • Hash Algorithm: SHA2-256, SHA2-384, SHA2-512
      • Capabilities:
        • L: 3072
        • N: 256
        • Hash Algorithm: SHA2-256, SHA2-384, SHA2-512
    Prerequisites:
  • DSA SigVer (186-4)
      • Capabilities:
        • L: 1024
        • N: 160
        • Hash Algorithm: SHA-1, SHA2-224, SHA2-256, SHA2-384, SHA2-512
      • Capabilities:
        • L: 2048
        • N: 224
        • Hash Algorithm: SHA2-224, SHA2-256, SHA2-384, SHA2-512
      • Capabilities:
        • L: 2048
        • N: 256
        • Hash Algorithm: SHA2-256, SHA2-384, SHA2-512
      • Capabilities:
        • L: 3072
        • N: 256
        • Hash Algorithm: SHA2-256, SHA2-384, SHA2-512
    Prerequisites:
TDES 2480
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
  • TDES-CBC
    • Direction: Decrypt, Encrypt
    • Keying Option: 1
Component 1309
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
  • KAS-ECC Component
    • Function: Domain Parameter Generation, Domain Parameter Validation, Full Public Key Validation, Key Pair Generation, Public Key Regeneration
    • Scheme:
      • Full Unified:
        • KAS Role: Initiator, Responder
        • KDF without Key Confirmation:
          • Parameter Set:
            • EC:
              • Hash Algorithm: SHA2-256
              • Curve: P-256
            • ED:
              • Hash Algorithm: SHA2-384
              • Curve: P-384
            • EE:
              • Hash Algorithm: SHA2-512
              • Curve: P-521
    Prerequisites:
  • KAS-FFC Component
    • Function: Domain Parameter Generation, Domain Parameter Validation, Full Public Key Validation, Key Pair Generation, Public Key Regeneration
    • Scheme:
      • dhEphem:
        • KAS Role: Initiator, Responder
        • KDF without Key Confirmation:
          • Parameter Set:
            • FB:
              • Hash Algorithm: SHA2-224
            • FC:
              • Hash Algorithm: SHA2-256
    Prerequisites:
HMAC 3087
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
RSA 2543
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)
  • RSA KeyGen (186-4)
      • Capabilities:
        • Key Generation Mode: B.3.2
          • Properties:
            • Modulo: 2048
            • Hash Algorithm: SHA2-384
          • Properties:
            • Modulo: 3072
            • Hash Algorithm: SHA2-384
    • Public Exponent Mode: Random
    Prerequisites:
  • RSA SigGen (186-4)
      • Capabilities:
        • Signature Type: PKCS 1.5
          • Properties:
            • Modulo: 2048
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 3072
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
    Prerequisites:
  • RSA SigVer (186-4)
      • Capabilities:
        • Signature Type: PKCS 1.5
          • Properties:
            • Modulo: 1024
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 2048
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 3072
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
    Prerequisites:
ECDSA 1147
8/4/2017
  • Red Hat Enterprise Linux 7.4 on Intel x86 (64-bit)