Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Algorithm Validation Program

Description
The Microsoft Windows Next Generation Cryptographic algorithm implementation provides enhanced support for AES, DRBG, DSA, ECDSA, RSA, HMAC, KAS, KDF, SHS (SHA), and Triple-DES. All implementations are packaged into a library used by Microsoft and other third-party applications.
Version
10.0.15063.674
Type
SOFTWARE
Vendor
Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA
Contacts
Mike Grimm
FIPS@microsoft.com
800-Microsoft

Validations

Number
Date
Operating Environments
Algorithm Capabilities
Component 1511
11/17/2017
  • Windows 10 (x64) on Intel Core i5 with AES-NI and without SHA Extensions w/ Microsoft Surface Hub
  • KDF IKEv1
      • Capabilities:
        • Authentication Method: Digital Signature
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 2048
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Pre-shared Key
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 2048
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Public Key Encryption
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 2048
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Digital Signature
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 256
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Pre-shared Key
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 256
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Public Key Encryption
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 256
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Digital Signature
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 384
        • Hash Algorithm: SHA2-384
      • Capabilities:
        • Authentication Method: Pre-shared Key
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 384
        • Hash Algorithm: SHA2-384
      • Capabilities:
        • Authentication Method: Public Key Encryption
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 384
        • Hash Algorithm: SHA2-384
    Prerequisites:
  • KDF IKEv2
      • Capabilities:
        • Responder Nonce Length: 192-1792
        • Diffie-Hellman Shared Secret Length: 2048
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Responder Nonce Length: 192-1792
        • Diffie-Hellman Shared Secret Length: 256
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Responder Nonce Length: 192-1792
        • Diffie-Hellman Shared Secret Length: 384
        • Hash Algorithm: SHA2-384
    Prerequisites:
  • KDF TLS
    • TLS Version: v1.0/1.1, v1.2
    • Hash Algorithm: SHA2-256, SHA2-384
    Prerequisites: