Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #1901

Details

Module Name
Red Hat Enterprise Linux 6.2 Kernel Crypto API Cryptographic Module
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
2/21/2013
Overall Level
1
Caveat
When operated in FIPS mode with Network Security Services (NSS) Cryptographic Module validated to FIPS 140-2 under Cert. #1837, Section 1 of the provided Security Policy specifies the precise RPM files containing this module. The integrity of the RPMs is automatically verified during the installation and the Crypto officer shall not install the RPM files if the RPM tool indicates an integrity error. Any deviation from the specified verification, installation and initialization procedures will result in a non FIPS 140-2 compliant module
Module Type
Software
Embodiment
Multi-chip standalone
Description
The Linux kernel Crypto API implemented in Red Hat Enterprise Linux 6.2 provides services operating inside the Linux kernel with various ciphers, message digests and an approved random number generator.
Tested Configuration(s)
  • Red Hat Enterprise Linux 6.2 with PAA running on IBM HS22
  • Red Hat Enterprise Linux 6.2 without PAA running on HP ProLiant DL585
  • Red Hat Enterprise Linux 6.2 without PAA running on IBM HS22 (single-user mode)
FIPS Algorithms
AES Certs. #1968, #1969, #1970, #1971 and #1972
DSA Certs. #628, #629, #634 and #635
HMAC Certs. #1187, #1188, #1199 and #1200
RNG Certs. #1033, #1034, #1035, #1036 and #1037
SHS Certs. #1725 and #1726
Triple-DES Certs. #1278 and #1279
Other Algorithms
DES; Triple-DES (CTR; non-compliant); AES (192 bits, XTS; non-compliant); RNG (X9.31 with stdrng or ansi_cprng; non-compliant)
Software Versions
2.0

Vendor

Red Hat®, Inc.
314 Littleton Road
Westford, MA 01886
USA

Ann-Marie Rubin
arubin@redhat.com
Phone: 978-392-1000
Fax: 978-392-1001

Lab

atsec
NVLAP Code: 200658-0