Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #2844

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

Centrify Cryptographic Module

Standard

FIPS 140-2

Status

Historical

Historical Reason

Moved to historical list due to sunsetting

Overall Level

Caveat

When installed, initialized, and configured as specified in the Security Policy Section Secure Operation. The module generates cryptographic keys whose strengths are modified by available entropy

Security Level Exceptions

Physical Security: N/A
Mitigation of Other Attacks: N/A

Module Type

Software

Embodiment

Multi-Chip Stand Alone

Description

Centrify Cryptographic Module is a general purpose cryptographic library. The Centrify Cryptographic Module provides the cryptographic services for all Centrify products.

Tested Configuration(s)

AIX 7.2 (32-bit) running on a PowerPC Power7 Processor
AIX 7.2 (64-bit) running on a PowerPC Power7 Processor
Mac OS 10.11.5 running on a MacBook Pro Intel Core i7
Red Hat Enterprise Linux 7.2 running on a Intel Xeon E5620 x86_64

Approved Algorithms

AES	Cert. #4087
CVL	Cert. #903
DRBG	Cert. #1226
DSA	Cert. #1110
ECDSA	Cert. #923
HMAC	Cert. #2667
RSA	Cert. #2212
SHS	Cert. #3363
Triple-DES	Cert. #2232

Other Algorithms

EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)

Software Versions

2.0

Vendor

Centrify Corporation
3300 Tannery Way
Santa Clara, CA 95054
USA

Kitty Shih
kitty.shih@centrify.com

Related Files

Security Policy
Consolidated Certificate

Validation History

Date	Type	Lab
2/21/2017	Initial	EWA CANADA