Module Name
Network Security Services (NSS)
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
Embodiment
Multi-chip standalone
Description
Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards.
Tested Configuration(s)
- Wind River Linux Secure 1.0 (single-user mode)
Approved Algorithms
AES |
Cert. #1374 |
DRBG |
Cert. #49 |
DSA |
Cert. #450 |
ECDSA |
Cert. #174 |
HMAC |
Cert. #807 |
RSA |
Cert. #673 |
SHS |
Cert. #1256 |
Triple-DES |
Cert. #949 |
Other Algorithms
MD5; MD2; RC2; RC4; DES; SEED; Camellia; Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 bits and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 bits and 192 bits of encryption strength; non-compliant less than 112 bits of encryption strength)