Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Algorithm Validation Program

Description
The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be dowloaded from www.openssl.org/source/.
Version
2.0.2
Type
SOFTWARE
Vendor
OpenSSL Software Foundation, Inc.
1829 Mount Ephraim Road
Adamstown, MD 27101
USA
Contacts
Steve Marquess
info@openssfoundation.com
877-673-6775

Validations

Number
Date
Operating Environments
Algorithm Capabilities
DSA 693
10/5/2012
  • Android 4.1 on TI DM3730 (ARMv7)
  • Android 4.1 on TI DM3730 (ARMv7) with NEON
  • Android 4.2 on Nvidia Tegra 3 (ARMv7)
  • Android 4.2 on Nvidia Tegra 3 (ARMv7) with NEON
  • Apple iOS 5.0 on ARM Cortex A8 (ARMv7) with NEON
  • Apple OS X 10.7 on Intel Core i7-3615QM
  • NetBSD 5.1 on Intel Xeon 5500 (x86-64)
  • NetBSD 5.1 on PowerPC-e500
  • RHEL 6 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • RHEL 6 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • VMware Horizon Mobile 1.3 under VMware on Qualcomm MSM8X60 (ARMv7) with NEON
  • Windows 2008 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 2008 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 7 64-bit with AES-NI on Intel Core i5-2430M (x86)
HMAC 1363
10/5/2012
  • Android 4.1 on TI DM3730 (ARMv7)
  • Android 4.1 on TI DM3730 (ARMv7) with NEON
  • Android 4.2 on Nvidia Tegra 3 (ARMv7)
  • Android 4.2 on Nvidia Tegra 3 (ARMv7) with NEON
  • Apple iOS 5.0 on ARM Cortex A8 (ARMv7) with NEON
  • Apple OS X 10.7 on Intel Core i7-3615QM
  • NetBSD 5.1 on Intel Xeon 5500 (x86-64)
  • NetBSD 5.1 on PowerPC-e500
  • RHEL 6 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • RHEL 6 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • VMware Horizon Mobile 1.3 under VMware on Qualcomm MSM8X60 (ARMv7) with NEON
  • Windows 2008 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 2008 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 7 64-bit with AES-NI on Intel Core i5-2430M (x86)
TDES 1398
10/5/2012
  • Android 4.1 on TI DM3730 (ARMv7)
  • Android 4.1 on TI DM3730 (ARMv7) with NEON
  • Android 4.2 on Nvidia Tegra 3 (ARMv7)
  • Android 4.2 on Nvidia Tegra 3 (ARMv7) with NEON
  • Apple iOS 5.0 on ARM Cortex A8 (ARMv7) with NEON
  • Apple OS X 10.7 on Intel Core i7-3615QM
  • NetBSD 5.1 on Intel Xeon 5500 (x86-64)
  • NetBSD 5.1 on PowerPC-e500
  • RHEL 6 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • RHEL 6 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • VMware Horizon Mobile 1.3 under VMware on Qualcomm MSM8X60 (ARMv7) with NEON
  • Windows 2008 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 2008 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 7 64-bit with AES-NI on Intel Core i5-2430M (x86)
  • TDES-CBC
    • Direction: Decrypt, Encrypt
    • Keying Option: 1
  • TDES-CFB1
    • Direction: Decrypt, Encrypt
    • Keying Option: 1
  • TDES-CFB64
    • Direction: Decrypt, Encrypt
    • Keying Option: 1
  • TDES-CFB8
    • Direction: Decrypt, Encrypt
    • Keying Option: 1
  • TDES-CMAC
      • Capabilities:
        • Direction: Generation
        • Keying Option: 1
        • MAC: 16-64
        • Message Length: 0-524288
        • Block Size: Full, Partial
      • Capabilities:
        • Direction: Verification
        • Keying Option: 1
        • MAC: 16-64
        • Message Length: 0-524288
        • Block Size: Full, Partial
  • TDES-ECB
    • Direction: Decrypt, Encrypt
    • Keying Option: 1
  • TDES-OFB
    • Direction: Decrypt, Encrypt
    • Keying Option: 1
SHS 1923
10/5/2012
  • Android 4.1 on TI DM3730 (ARMv7)
  • Android 4.1 on TI DM3730 (ARMv7) with NEON
  • Android 4.2 on Nvidia Tegra 3 (ARMv7)
  • Android 4.2 on Nvidia Tegra 3 (ARMv7) with NEON
  • Apple iOS 5.0 on ARM Cortex A8 (ARMv7) with NEON
  • Apple OS X 10.7 on Intel Core i7-3615QM
  • NetBSD 5.1 on Intel Xeon 5500 (x86-64)
  • NetBSD 5.1 on PowerPC-e500
  • RHEL 6 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • RHEL 6 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • VMware Horizon Mobile 1.3 under VMware on Qualcomm MSM8X60 (ARMv7) with NEON
  • Windows 2008 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 2008 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 7 64-bit with AES-NI on Intel Core i5-2430M (x86)
  • SHA-1
    • Message Length: 0-65536 Increment 8
  • SHA-224
    • Message Length: 0-65536 Increment 8
  • SHA-256
    • Message Length: 0-65536 Increment 8
  • SHA-384
    • Message Length: 0-65536 Increment 8
  • SHA-512
    • Message Length: 0-65536 Increment 8
DRBG 264
10/5/2012
  • Android 4.1 on TI DM3730 (ARMv7)
  • Android 4.1 on TI DM3730 (ARMv7) with NEON
  • Android 4.2 on Nvidia Tegra 3 (ARMv7)
  • Android 4.2 on Nvidia Tegra 3 (ARMv7) with NEON
  • Apple iOS 5.0 on ARM Cortex A8 (ARMv7) with NEON
  • Apple OS X 10.7 on Intel Core i7-3615QM
  • NetBSD 5.1 on Intel Xeon 5500 (x86-64)
  • NetBSD 5.1 on PowerPC-e500
  • RHEL 6 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • RHEL 6 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • VMware Horizon Mobile 1.3 under VMware on Qualcomm MSM8X60 (ARMv7) with NEON
  • Windows 2008 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 2008 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 7 64-bit with AES-NI on Intel Core i5-2430M (x86)
  • Counter DRBG
    • Prediction Resistance: Yes, No
      • Capabilities:
        • Mode: AES-128
        • Derivation Function Enabled: No
      • Capabilities:
        • Mode: AES-128
        • Derivation Function Enabled: Yes
      • Capabilities:
        • Mode: AES-192
        • Derivation Function Enabled: No
      • Capabilities:
        • Mode: AES-192
        • Derivation Function Enabled: Yes
      • Capabilities:
        • Mode: AES-256
        • Derivation Function Enabled: No
      • Capabilities:
        • Mode: AES-256
        • Derivation Function Enabled: Yes
    Prerequisites:
  • Dual EC DRBG:
    • Prediction Resistance: Enabled, Not Enabled
    • P-256 Modes: SHA-1, SHA2-224, SHA2-256, SHA2-384, SHA2-512
    • P-384 Modes: SHA2-224, SHA2-256, SHA2-384, SHA2-512
    • P-521 Modes: SHA2-256, SHA2-384, SHA2-512
    Prerequisites:
  • Hash DRBG
    • Prediction Resistance: Yes, No
      • Capabilities:
        • Mode: SHA-1
      • Capabilities:
        • Mode: SHA2-224
      • Capabilities:
        • Mode: SHA2-256
      • Capabilities:
        • Mode: SHA2-384
      • Capabilities:
        • Mode: SHA2-512
    Prerequisites:
  • HMAC DRBG
    • Prediction Resistance: Yes, No
      • Capabilities:
        • Mode: SHA-1
      • Capabilities:
        • Mode: SHA2-224
      • Capabilities:
        • Mode: SHA2-256
      • Capabilities:
        • Mode: SHA2-384
      • Capabilities:
        • Mode: SHA2-512/256
    Prerequisites:
AES 2234
10/5/2012
  • Android 4.1 on TI DM3730 (ARMv7)
  • Android 4.1 on TI DM3730 (ARMv7) with NEON
  • Android 4.2 on Nvidia Tegra 3 (ARMv7)
  • Android 4.2 on Nvidia Tegra 3 (ARMv7) with NEON
  • Apple iOS 5.0 on ARM Cortex A8 (ARMv7) with NEON
  • Apple OS X 10.7 on Intel Core i7-3615QM
  • NetBSD 5.1 on Intel Xeon 5500 (x86-64)
  • NetBSD 5.1 on PowerPC-e500
  • RHEL 6 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • RHEL 6 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • VMware Horizon Mobile 1.3 under VMware on Qualcomm MSM8X60 (ARMv7) with NEON
  • Windows 2008 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 2008 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 7 64-bit with AES-NI on Intel Core i5-2430M (x86)
  • AES-CBC
    • Direction: Decrypt, Encrypt
    • Key Length: 128, 192, 256
  • AES-CCM
    • Key Length: 128, 192, 256
    • Tag Length: 32, 48, 64, 80, 96, 112, 128
    • IV Length: 56, 64, 72, 80, 88, 96, 104
    • Payload Length: 0-256
    • AAD Length: 0-524288
  • AES-CFB1
    • Direction: Decrypt, Encrypt
    • Key Length: 128, 192, 256
  • AES-CFB128
    • Direction: Decrypt, Encrypt
    • Key Length: 128, 192, 256
  • AES-CFB8
    • Direction: Decrypt, Encrypt
    • Key Length: 128, 192, 256
  • AES-CMAC
      • Capabilities:
        • Direction: Generation, Verification
        • Key Length: 128, 192, 256
        • MAC: 16-128
        • Message Length: 0-524288
        • Block Size: Full, Partial
  • AES-CTR
    • Key Length: 128, 192, 256
    • Counter Source: External
  • AES-ECB
    • Direction: Decrypt, Encrypt
    • Key Length: 128, 192, 256
  • AES-GCM
    • Direction: Decrypt, Encrypt
    • IV Generation: Internal
    • IV Generation Mode: 8.2.1
    • Key Length: 128, 192, 256
    • Tag Length: 32, 64, 96, 104, 112, 120, 128
    • IV Length: 96
    • Payload Length: 504, 512, 1016, 1024
    • AAD Length: 504, 512, 1016, 1024
  • AES-OFB
    • Direction: Decrypt, Encrypt
    • Key Length: 128, 192, 256
  • AES-XTS
    • Direction: Decrypt, Encrypt
    • Key Length: 128
    • Block Size: Full, Partial
  • AES-XTS
    • Direction: Decrypt, Encrypt
    • Key Length: 256
    • Block Size: Full, Partial
RNG 1119
10/5/2012
  • Android 4.1 on TI DM3730 (ARMv7)
  • Android 4.1 on TI DM3730 (ARMv7) with NEON
  • Android 4.2 on Nvidia Tegra 3 (ARMv7)
  • Android 4.2 on Nvidia Tegra 3 (ARMv7) with NEON
  • Apple iOS 5.0 on ARM Cortex A8 (ARMv7) with NEON
  • Apple OS X 10.7 on Intel Core i7-3615QM
  • NetBSD 5.1 on Intel Xeon 5500 (x86-64)
  • NetBSD 5.1 on PowerPC-e500
  • RHEL 6 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • RHEL 6 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • VMware Horizon Mobile 1.3 under VMware on Qualcomm MSM8X60 (ARMv7) with NEON
  • Windows 2008 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 2008 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 7 64-bit with AES-NI on Intel Core i5-2430M (x86)
RSA 1145
10/5/2012
  • Android 4.1 on TI DM3730 (ARMv7)
  • Android 4.1 on TI DM3730 (ARMv7) with NEON
  • Android 4.2 on Nvidia Tegra 3 (ARMv7)
  • Android 4.2 on Nvidia Tegra 3 (ARMv7) with NEON
  • Apple iOS 5.0 on ARM Cortex A8 (ARMv7) with NEON
  • Apple OS X 10.7 on Intel Core i7-3615QM
  • NetBSD 5.1 on Intel Xeon 5500 (x86-64)
  • NetBSD 5.1 on PowerPC-e500
  • RHEL 6 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • RHEL 6 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • VMware Horizon Mobile 1.3 under VMware on Qualcomm MSM8X60 (ARMv7) with NEON
  • Windows 2008 32-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 2008 64-bit under vSphere on Intel Xeon E3-1220v2 (x86)
  • Windows 7 64-bit with AES-NI on Intel Core i5-2430M (x86)
  • RSA KeyGen (186-2)
    • Modulus Length: 1024, 1536, 2048, 3072, 4096
    • Public Key Value: 3, 17, 65537
    Prerequisites:
  • RSA SigGen (186-2)
      • Capabilities:
        • Signature Type: ANSI X9.31
        • Modulo: 1024, 1536, 2048, 3072, 4096
        • Hash Algorithm: SHA-1, SHA2-256, SHA2-384, SHA2-512
      • Capabilities:
        • Signature Type: PKCS 1.5
        • Modulo: 1024, 1536, 2048, 3072, 4096
        • Hash Algorithm: SHA-1, SHA2-224, SHA2-256, SHA2-384, SHA2-512
      • Capabilities:
        • Signature Type: PKCSPSS
        • Modulo: 1024, 1536, 2048, 3072, 4096
        • Hash Algorithm: SHA-1, SHA2-224, SHA2-256, SHA2-384, SHA2-512
    Prerequisites:
  • RSA SigVer (186-2)
      • Capabilities:
        • Signature Type: ANSI X9.31
          • Properties:
            • Modulo: 1024
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 1536
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 2048
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 3072
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 4096
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
      • Capabilities:
        • Signature Type: PKCS 1.5
          • Properties:
            • Modulo: 1024
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 1536
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 2048
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 3072
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 4096
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
      • Capabilities:
        • Signature Type: PKCSPSS
          • Properties:
            • Modulo: 1024
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 1536
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 2048
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 3072
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
          • Properties:
            • Modulo: 4096
              • Hash Pair:
                • Hash Algorithm: SHA-1
              • Hash Pair:
                • Hash Algorithm: SHA2-224
              • Hash Pair:
                • Hash Algorithm: SHA2-256
              • Hash Pair:
                • Hash Algorithm: SHA2-384
              • Hash Pair:
                • Hash Algorithm: SHA2-512
    Prerequisites: