Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Algorithm Validation Program CAVP

Description
The Microsoft Windows Cryptographic Primitives Library provides IKEv1, IKEv2, and TLS Key Derivation Function (KDF) primitives.
Version
6.3.9600
Type
SOFTWARE
Vendor
Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA
Contacts
Mike Grimm
FIPS@microsoft.com
800-Microsoft

Validations

Number
Date
Operating Environments
Algorithm Capabilities
Component 323
7/10/2014
  • Azure StorSimple Virtual Array Windows Server 2012 R2 on Hyper-V 6 on Windows Server 2012 R2 (x64) on Intel Xeon with AES-NI
    • Intel Xeon with AES-NI w/ Azure StorSimple Virtual Array Windows Server 2012 R2 on Hyper-V 6 on Windows Server 2012 R2 (x64)
  • Azure StorSimple Virtual Array Windows Server 2012 R2 on VMware Workstation 12 on Windows Server 2012 R2 (x64) on Intel Core i7 with AES-NI
    • Intel Core i7 with AES-NI w/ Azure StorSimple Virtual Array Windows Server 2012 R2 on VMware Workstation 12 on Windows Server 2012 R2 (x64)
  • Microsoft Surface Pro 2 with Windows 8.1 Pro on Intel Core i5 with AES-NI
    • Intel Core i5 with AES-NI w/ Microsoft Surface Pro 2 with Windows 8.1 Pro
  • Microsoft Surface Pro with Windows 8.1 Pro on Intel Core i5 with AES-NI
    • Intel Core i5 with AES-NI w/ Microsoft Surface Pro with Windows 8.1 Pro
  • Microsoft Windows 8.1 Enterprise (x64) on AMD A4 with AES-NI and PCLMULQDQ and SSSE3
    • AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows 8.1 Enterprise (x64)
  • Microsoft Windows 8.1 Enterprise (x64) on AMD A4 without AES-NI or PCLMULQDQ or SSSE3
    • AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows 8.1 Enterprise (x64)
  • Microsoft Windows 8.1 Enterprise (x64) on AMD Athlon 64 X2 without AES-NI
    • AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows 8.1 Enterprise (x64)
  • Microsoft Windows 8.1 Enterprise (x64) on Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3
    • Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Microsoft Windows 8.1 Enterprise (x64)
  • Microsoft Windows 8.1 Enterprise (x64) on Intel Core i5 with AES-NI
    • Intel Core i5 with AES-NI w/ Microsoft Windows 8.1 Enterprise (x64)
  • Microsoft Windows 8.1 Enterprise (x64) on Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3
    • Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows 8.1 Enterprise (x64)
  • Microsoft Windows 8.1 Enterprise (x64) on Intel Pentium without AES-NI
    • Intel Pentium without AES-NI w/ Microsoft Windows 8.1 Enterprise (x64)
  • Microsoft Windows 8.1 Enterprise (x86) on AMD A4 without AES-NI or PCLMULQDQ or SSSE3
    • AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows 8.1 Enterprise (x86)
  • Microsoft Windows 8.1 Enterprise (x86) on AMD Athlon 64 X2 without AES-NI
    • AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows 8.1 Enterprise (x86)
  • Microsoft Windows 8.1 Enterprise (x86) on Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3
    • Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows 8.1 Enterprise (x86)
  • Microsoft Windows 8.1 Enterprise (x86) on Intel Pentium without AES-NI
    • Intel Pentium without AES-NI w/ Microsoft Windows 8.1 Enterprise (x86)
  • Microsoft Windows 8.1 RT on NVIDIA Tegra 3 Quad Core
    • NVIDIA Tegra 3 Quad Core w/ Microsoft Windows 8.1 RT
  • Microsoft Windows 8.1 RT on NVIDIA Tegra 3 Quad-Core
    • NVIDIA Tegra 3 Quad-Core w/ Microsoft Windows 8.1 RT
  • Microsoft Windows 8.1 RT on NVIDIA Tegra 4 Quad Core
    • NVIDIA Tegra 4 Quad Core w/ Microsoft Windows 8.1 RT
  • Microsoft Windows 8.1 RT on Qualcomm Snapdragon 400
    • Qualcomm Snapdragon 400 w/ Microsoft Windows 8.1 RT
  • Microsoft Windows 8.1 RT on Qualcomm Snapdragon 800
    • Qualcomm Snapdragon 800 w/ Microsoft Windows 8.1 RT
  • Microsoft Windows 8.1 RT on Qualcomm Snapdragon S4
    • Qualcomm Snapdragon S4 w/ Microsoft Windows 8.1 RT
  • Microsoft Windows Embedded 8.1 Industry Enterprise (x64) on AMD A4 with AES-NI and PCLMULQDQ and SSSE3
    • AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64)
  • Microsoft Windows Embedded 8.1 Industry Enterprise (x64) on AMD A4 without AES-NI or PCLMULQDQ or SSSE3
    • AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64)
  • Microsoft Windows Embedded 8.1 Industry Enterprise (x64) on AMD Athlon 64 X2without AES-NI
    • AMD Athlon 64 X2without AES-NI w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64)
  • Microsoft Windows Embedded 8.1 Industry Enterprise (x64) on Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3
    • Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64)
  • Microsoft Windows Embedded 8.1 Industry Enterprise (x64) on Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3
    • Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64)
  • Microsoft Windows Embedded 8.1 Industry Enterprise (x64) on Intel Core i7 without AES-NIor PCLMULQDQ or SSSE3
    • Intel Core i7 without AES-NIor PCLMULQDQ or SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64)
  • Microsoft Windows Embedded 8.1 Industry Enterprise (x64) on Intel Pentium without AES-NI
    • Intel Pentium without AES-NI w/ Microsoft Windows Embedded 8.1 Industry Enterprise (x64)
  • Microsoft Windows Embedded 8.1 Industry Enterprise x86 on AMD A4 without AES-NI or PCLMULQDQ or SSSE3
    • AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise x86
  • Microsoft Windows Embedded 8.1 Industry Enterprise x86 on AMD Athlon 64 X2 without AES-NI
    • AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows Embedded 8.1 Industry Enterprise x86
  • Microsoft Windows Embedded 8.1 Industry Enterprise x86 on Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3
    • Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Embedded 8.1 Industry Enterprise x86
  • Microsoft Windows Embedded 8.1 Industry Enterprise x86 on Intel Pentium without AES-NI
    • Intel Pentium without AES-NI w/ Microsoft Windows Embedded 8.1 Industry Enterprise x86
  • Microsoft Windows Server 2012 R2 (x64) on AMD A4 with AES-NI and PCLMULQDQ and SSSE3
    • AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Server 2012 R2 (x64)
  • Microsoft Windows Server 2012 R2 (x64) on AMD A4 without AES-NI or PCLMULQDQ or SSSE3
    • AMD A4 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Server 2012 R2 (x64)
  • Microsoft Windows Server 2012 R2 (x64) on AMD Athlon 64 X2 without AES-NI
    • AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows Server 2012 R2 (x64)
  • Microsoft Windows Server 2012 R2 (x64) on Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3
    • Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Microsoft Windows Server 2012 R2 (x64)
  • Microsoft Windows Server 2012 R2 (x64) on Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3
    • Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Server 2012 R2 (x64)
  • Microsoft Windows Server 2012 R2 (x64) on Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3
    • Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Server 2012 R2 (x64)
  • Microsoft Windows Server 2012 R2 (x64) on Intel Pentium without AES-NI
    • Intel Pentium without AES-NI w/ Microsoft Windows Server 2012 R2 (x64)
  • Microsoft Windows Server 2012 R2 on Intel Xeon E5-2648L with AES-NI w/ Microsoft StorSimple 8100
    • Intel Xeon E5-2648L with AES-NI w/ Microsoft StorSimple 8100 w/ Microsoft Windows Server 2012 R2
  • Microsoft Windows Server 2012 R2 on Intel Xeon E5-2648L without AES-NI w/ Microsoft StorSimple 8100
    • Intel Xeon E5-2648L without AES-NI w/ Microsoft StorSimple 8100 w/ Microsoft Windows Server 2012 R2
  • Microsoft Windows Storage Server 2012 R2 (x64) on AMD A4 with AES-NI and PCLMULQDQ and SSSE3
    • AMD A4 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64)
  • Microsoft Windows Storage Server 2012 R2 (x64) on AMD Athlon 64 X2 without AES-NI
    • AMD Athlon 64 X2 without AES-NI w/ Microsoft Windows Storage Server 2012 R2 (x64)
  • Microsoft Windows Storage Server 2012 R2 (x64) on Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3
    • Intel Core i3 without AES-NI and with PCLMULQDQ and SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64)
  • Microsoft Windows Storage Server 2012 R2 (x64) on Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3
    • Intel Core i7 with AES-NI and PCLMULQDQ and SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64)
  • Microsoft Windows Storage Server 2012 R2 (x64) on Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3
    • Intel Core i7 without AES-NI or PCLMULQDQ or SSSE3 w/ Microsoft Windows Storage Server 2012 R2 (x64)
  • Microsoft Windows Storage Server 2012 R2 (x64) on Intel Pentium without AES-NI
    • Intel Pentium without AES-NI w/ Microsoft Windows Storage Server 2012 R2 (x64)
  • Windows 8.1 Pro (x64) on Intel Core i7 with AES-NI and PCLMULQDQ and SSSE 3 w/ Microsoft Surface Pro 3
    • Intel Core i7 with AES-NI and PCLMULQDQ and SSSE 3 w/ Microsoft Surface Pro 3 w/ Windows 8.1 Pro (x64)
  • Windows Server 2012 R2 Datacenter with Windows Hyper-V enabled (x64) on Intel Core i5 with AES-NI and without SHA Extensions w/ Dell OptiPlex 3040
    • Intel Core i5 with AES-NI and without SHA Extensions w/ Dell OptiPlex 3040 w/ Windows Server 2012 R2 Datacenter with Windows Hyper-V enabled (x64)
  • Windows Server 2012 R2 Datacenter with Windows Hyper-V enabled (x64) on Intel Core i7 with AES-NI and without SHA Extensions w/ Microsoft Surface Book
    • Intel Core i7 with AES-NI and without SHA Extensions w/ Microsoft Surface Book w/ Windows Server 2012 R2 Datacenter with Windows Hyper-V enabled (x64)
  • Windows Server 2012 R2 with Windows Hyper-V enabled (x64) on Intel Core i5 with AES-NI and without SHA Extensions w/ HP ProDesk 600 G2
    • Intel Core i5 with AES-NI and without SHA Extensions w/ HP ProDesk 600 G2 w/ Windows Server 2012 R2 with Windows Hyper-V enabled (x64)
  • Windows Server 2012 R2 with Windows Hyper-V enabled (x64) on Intel Core i7 with AES-NI and without SHA Extensions w/ Microsoft Surface Book
    • Intel Core i7 with AES-NI and without SHA Extensions w/ Microsoft Surface Book w/ Windows Server 2012 R2 with Windows Hyper-V enabled (x64)
  • KDF IKEv1
      • Capabilities:
        • Authentication Method: Digital Signature
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 2048
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Pre-shared Key
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 2048
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Public Key Encryption
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 2048
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Digital Signature
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 256
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Pre-shared Key
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 256
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Public Key Encryption
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 256
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Authentication Method: Digital Signature
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 384
        • Hash Algorithm: SHA2-384
      • Capabilities:
        • Authentication Method: Pre-shared Key
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 384
        • Hash Algorithm: SHA2-384
      • Capabilities:
        • Authentication Method: Public Key Encryption
        • Preshared Key Length: 64-2048
        • Diffie-Hellman Shared Secret Length: 384
        • Hash Algorithm: SHA2-384
    Prerequisites:
  • KDF IKEv2
      • Capabilities:
        • Responder Nonce Length: 192-1792
        • Diffie-Hellman Shared Secret Length: 2048
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Responder Nonce Length: 192-1792
        • Diffie-Hellman Shared Secret Length: 256
        • Hash Algorithm: SHA2-256
      • Capabilities:
        • Responder Nonce Length: 192-1792
        • Diffie-Hellman Shared Secret Length: 384
        • Hash Algorithm: SHA2-384
    Prerequisites:
  • KDF TLS
    • TLS Version: v1.0/1.1, v1.2
    • Hash Algorithm: SHA2-256, SHA2-384
    Prerequisites:
Created October 05, 2016, Updated June 22, 2020