Module Name
Red Hat Enterprise Linux 6.2 Libgcrypt Cryptographic Module
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode and when obtained, installed and initialized as assumed by the Crypto Officer role and specified in Section 9.1 of the provided Security Policy. The Security Policy specifies the precise RPM file containing this module. The integrity of the RPM is automatically verified during the installation and the Crypto officer shall not install the module if the RPM tool indicates an integrity error. Any deviation from the specified verification, installation and initialization procedures will result in a non FIPS 140-2 compliant module. The module generates cryptographic keys whose strengths are modified by available entropy
Embodiment
Multi-chip standalone
Description
The libgcrypt FIPS Runtime Module is a general purpose cryptographic library designed to provide FIPS 140-2 validated cryptographic functionality for use with the high level API of the libgcrypt library version 1.4.5-9.e16 delivered with RHEL 6.2.
Tested Configuration(s)
- Red Hat Enterprise Linux 6.2 (single-user mode)
Approved Algorithms
AES |
Certs. #1886, #1890, #1891 and #1892 |
DSA |
Certs. #591, #594, #595 and #596 |
HMAC |
Certs. #1128, #1131, #1132 and #1133 |
RNG |
Certs. #988, #991, #992 and #993 |
RSA |
Certs. #963, #966, #967 and #968 |
SHS |
Certs. #1657, #1660, #1661 and #1662 |
Triple-DES |
Certs. #1225, #1228, #1229 and #1230 |
Other Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5