Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Algorithm Validation Program

Description
The Microsoft Windows Next Generation Cryptographic algorithm implementation provides enhanced support for AES, DRBG, DSA, ECDSA, RSA, HMAC, KAS, KDF, SHS (SHA), and Triple-DES. All implementations are packaged into a library used by Microsoft and other third-party applications.
Version
10.0.15254
Type
SOFTWARE
Vendor
Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA
Contacts
Mike Grimm
FIPS@microsoft.com
800-Microsoft

Validations

Number
Date
Operating Environments
Algorithm Capabilities
KAS 147
11/17/2017
  • Windows 10 Mobile (ARMv7) on Qualcomm Snapdragon 212 (A7) w/ Microsoft Lumia 650
  • Windows 10 Mobile (ARMv7) on Qualcomm Snapdragon 808 (A57, A53) w/ Microsoft Lumia 950
  • Windows 10 Mobile (ARMv7) on Qualcomm Snapdragon 810 (A57, A53) w/ Microsoft Lumia 950 XL
  • Windows 10 Mobile (ARMv7) on Qualcomm Snapdragon 820 (Kryo) w/ HP Elite x3
  • KAS-ECC
    • Scheme:
      • Ephemeral Unified:
        • KAS Role: Initiator, Responder
        • KDF without Key Confirmation:
          • KDF Option:
            • Concatenation:
          • Parameter Set:
            • EC:
              • Hash Algorithm: SHA2-256
              • Curve: P-256
              • MAC Option:
                • HMAC:
              • ED:
                • Hash Algorithm: SHA2-384
                • Curve: P-384
                • MAC Option:
                  • HMAC:
                • EE:
                  • Hash Algorithm: SHA2-512
                  • Curve: P-521
                  • MAC Option:
                    • HMAC:
            • One Pass DH:
              • KAS Role: Initiator, Responder
              • KDF without Key Confirmation:
                • Parameter Set:
                  • EC:
                    • Hash Algorithm: SHA2-256
                    • Curve: P-256
                    • MAC Option:
                      • HMAC:
                    • ED:
                      • Hash Algorithm: SHA2-384
                      • Curve: P-384
                      • MAC Option:
                        • HMAC:
                      • EE:
                        • Hash Algorithm: SHA2-512
                        • Curve: P-521
                        • MAC Option:
                          • HMAC:
                  • Static Unified:
                    • KAS Role: Initiator, Responder
                    • KDF without Key Confirmation:
                      • Parameter Set:
                        • EC:
                          • Hash Algorithm: SHA2-256
                          • Curve: P-256
                          • MAC Option:
                            • HMAC:
                          • ED:
                            • Hash Algorithm: SHA2-384
                            • Curve: P-384
                            • MAC Option:
                              • HMAC:
                            • EE:
                              • Hash Algorithm: SHA2-512
                              • Curve: P-521
                              • MAC Option:
                                • HMAC:
                      Prerequisites:
                    • KAS-FFC
                      • Function: Domain Parameter Generation, Domain Parameter Validation, Key Pair Generation, Partial Public Key Validation
                      • Scheme:
                        • dhEphem:
                          • KAS Role: Initiator, Responder
                          • KDF without Key Confirmation:
                            • Parameter Set:
                              • FB:
                                • Hash Algorithm: SHA2-256
                                • MAC Option:
                                  • HMAC:
                                • FC:
                                  • Hash Algorithm: SHA2-256
                                  • MAC Option:
                                    • HMAC:
                            • dhOneFlow:
                              • KAS Role: Initiator, Responder
                              • KDF without Key Confirmation:
                                • Parameter Set:
                                  • FB:
                                    • Hash Algorithm: SHA2-256
                                    • MAC Option:
                                      • HMAC:
                                    • FC:
                                      • Hash Algorithm: SHA2-256
                                      • MAC Option:
                                        • HMAC:
                                • dhStatic:
                                  • KAS Role: Initiator, Responder
                                  • KDF without Key Confirmation:
                                    • Parameter Set:
                                      • FB:
                                        • Hash Algorithm: SHA2-256
                                        • MAC Option:
                                          • HMAC:
                                        • FC:
                                          • Hash Algorithm: SHA2-256
                                          • MAC Option:
                                            • HMAC:
                                  Prerequisites: