Module Name
Ubuntu 20.04 Libgcrypt Cryptographic Module
Caveat
When operated in FIPS mode and installed, initialized and configured as specified in Section 9.1 of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
Embodiment
Multi-Chip Stand Alone
Description
The libgcrypt library implementation providing cryptographic services to Linux user space software components in general and to GnuPG in particular.
Tested Configuration(s)
- Ubuntu 20.04 LTS 64-bit running on IBM z15(TM) with z15(TM) without PAI [2] (single-user mode)
- Ubuntu 20.04 LTS 64-bit running on Supermicro SYS-1019P-WTR with Intel Xeon(R) Gold Skylake without PAA [1][2]
- Ubuntu 20.04 LTS 64-bit running on Supermicro SYS-1019P-WTR with Intel(R) Xeon(R) Gold Skylake with PAA [1][2]
Approved Algorithms
AES |
Certs. #A540, #A541, #A543, #A544 and #A1867 |
DRBG |
Certs. #A540, #A541, #A542, #A543, #A544 and #A1867 |
DSA |
Certs. #A540, #A541, #A542, #A543, #A544 and #A1867 |
ECDSA |
Certs. #A540, #A541, #A542, #A543, #A544 and #A1867 |
HMAC |
Certs. #A540, #A541, #A543, #A544, #A545 and #A1867 |
KTS |
AES Certs. #A540, #A541, #A543, #A544 and #A1867; key establishment methodology provides between 128 and 256 bits of encryption strength |
PBKDF |
vendor affirmed |
RSA |
Certs. #A540, #A541, #A542, #A543, #A544 and #A1867 |
SHA-3 |
Certs. #A540, #A541, #A542 and #A1867 |
SHS |
Certs. #A540, #A541, #A543, #A544, #A545 and #A1867 |
Triple-DES |
Certs. #A541 and #A1867 |
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)