Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program CMVP

Certificate #3550

Details

Module Name
VMware's OpenSSL FIPS Object Module
Standard
FIPS 140-2
Status
Active
Sunset Date
10/17/2024
Validation Dates
10/18/2019
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
VMware's OpenSSL FIPS Object Module v2.0.20-vmw is a general-purpose cryptographic module that provides FIPS-Approved cryptographic functions and services to various VMware's products and components.
Tested Configuration(s)
  • PhotonOS 1.0 on ESXi 6.7 running on a Dell PowerEdge R740 with Intel Xeon Gold 6126 with PAA
  • PhotonOS 1.0 on ESXi 6.7 running on a Dell PowerEdge R740 with Intel Xeon Gold 6126 without PAA
  • PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with Intel Xeon Gold 6126 with PAA
  • PhotonOS 2.0 on ESXi 6.7 running on a Dell PowerEdge R740 with Intel Xeon Gold 6126 without PAA
  • Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with Intel Xeon Gold 6126 with PAA
  • Ubuntu 16.04 on ESXi 6.7 running on a Dell PowerEdge R740 with Intel Xeon Gold 6126 without PAA
  • VMware SD-WAN OS 3.3 on a VMware SD-WAN Edge 3800 with Intel Xeon D-2187NT with PAA
  • VMware SD-WAN OS 3.3 on a VMware SD-WAN Edge 3800 with Intel Xeon D-2187NT without PAA (single-user mode)
  • VMware SD-WAN OS 3.3 on a VMware SD-WAN Edge 610 with Intel Atom C3308 with PAA
  • VMware SD-WAN OS 3.3 on a VMware SD-WAN Edge 610 with Intel Atom C3308 without PAA
  • VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with Intel Xeon Gold 6126 with PAA
  • VMware SD-WAN OS 3.3 on ESXi 6.7 running on a Dell PowerEdge R740 with Intel Xeon Gold 6126 without PAA
  • Within ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 with PAA
  • Within ESXi 6.7 running on a Dell PowerEdge R740 with an Intel Xeon Gold 6126 without PAA
FIPS Algorithms
AES Cert. #C470
CKG vendor affirmed
CVL Cert. #C470
DRBG Cert. #C470
DSA Cert. #C470
ECDSA Cert. #C470
HMAC Cert. #C470
KAS SP 800-56Arev2, vendor affirmed
RSA Cert. #C470
SHS Cert. #C470
Triple-DES Cert. #C470
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C470, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG: RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
2.0.20-vmw

Vendor

VMware, Inc.
3401 Hillview Ave
Palo Alto, CA 94304
USA

Manoj Maskara
mmaskara@vmware.com
Phone: 650-427-1000
Fax: 650-475-5001

Lab

CGI Information Systems & Management Consultants Inc
NVLAP Code: 200928-0