Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Algorithm Validation Program

Description
QFlex secure boot cryptographic operations run in firmware during the boot-up sequence of a QFlex HSM. Hashing and signature verification operations are used to validate firmware load on system prior to booting HSM software.
Version
1.0.0
Type
FIRMWARE
Vendor
Envieta Systems LLC
7175 Columbia Gateway Drive, Suite T
Columbia, MD 21046
United States
Contacts
Jeff Hahn
Security.Certifications@Envieta.com
410-290-1136
Fax: 410-290-1168

Validations

Number
Date
Operating Environments
Algorithm Capabilities
C892
7/8/2019
  • Linux 4.1.33 on Arria 10 SoC with Cortex-A9 dual-core ARMv7
    • processor
    • software
  • HMAC-SHA2-256
    • MAC: 256
    • Key sizes < block size
    Prerequisites:
  • HMAC-SHA2-512
    • MAC: 512
    • Key sizes < block size
    Prerequisites:
  • RSA SigVer (186-4)
      • Capabilities:
        • Signature Type: PKCSPSS
          • Properties:
            • Modulo: 2048
              • Hash Pair:
                • Hash Algorithm: SHA2-256
                • Salt Length: 256
              • Hash Pair:
                • Hash Algorithm: SHA2-512
                • Salt Length: 512
          • Properties:
            • Modulo: 3072
              • Hash Pair:
                • Hash Algorithm: SHA2-256
                • Salt Length: 256
              • Hash Pair:
                • Hash Algorithm: SHA2-512
                • Salt Length: 512
    • Public Exponent Mode: Random
    Prerequisites:
  • SHA-256
    • Message Length: 8-51200 Increment 8
  • SHA-512
    • Message Length: 8-102400 Increment 8