Module Name
Oracle ILOM OpenSSL FIPS Object Module
Historical Reason
186-2 transition
Caveat
When built, installed, protected and initialized as assumed by the Crypto Officer role and as specified in the provided Security Policy. Appendix A of the provided Security Policy specifies the actual distribution tar file containing the source code of this module. There shall be no additions, deletions or alterations to the tar file contents as used during module build. The distribution tar file shall be verified as specified in Appendix A of the provided Security Policy. Installation and protection shall be completed as specified in Appendix A of the provided Security Policy. Initialization shall be invoked as per Section 4 of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a non FIPS 140-2 compliant module
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Oracle ILOM OpenSSL FIPS Object Module is a software library providing a C language application program interface (API) for use by other processes that require cryptographic functionality and is classified by FIPS 1402 as a software module, multichip standalone module embodiment.
Tested Configuration(s)
- Oracle ILOM OS v3.0 running on Oracle ILOM SP v3 (ARM 7) with PAA (gcc Compiler Version 4.9)
- Oracle ILOM OS v3.0 running on Oracle ILOM SP v3 (ARM 7) without PAA (gcc Compiler Version 4.9)
- Oracle ILOM OS v3.0 running on Oracle ILOM SP v4 (ARM 5) without PAA (gcc Compiler Version 4.9)
- Oracle ILOM OS v4.0 on Oracle ILOM SP v5 (ARM 11) without PAA (gcc Compiler Version 4.9) (single-user mode)
Allowed Algorithms
EC Diffie-Hellman; RSA (encrypt/decrypt)