Module Name
Red Hat Enterprise Linux GnuTLS Cryptographic Module
Historical Reason
SP 800-56Arev3 transition
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
Embodiment
Multi-Chip Stand Alone
Description
GnuTLS is a secure communications library implementing the TLS and DTLS protocols. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PCKS#12, and other required structures which is shipped with Red Hat Enterprise Linux 7.4.
Tested Configuration(s)
- Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 with PAA
- Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 without PAA (single-user mode)
Allowed Algorithms
Diffie-Hellman (CVL Certs. #1307 and #1309; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1307 and #1309, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength); MD5; NDRNG