Module Name
OpenSSL Module
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
The module generates cryptographic keys whose strengths are modified by available entropy. When installed, initialized and configured as specified in the security policy section 9.1
Embodiment
Multi-chip standalone
Description
The OpenSSL Module is a software library supporting FIPS 140-2 -approved cryptographic algorithms for the purposes of protecting data in transit and at rest on the SUSE Linux platforms.
Tested Configuration(s)
- SUSE Linux Enterprise Server 11 SP2 32-bit running on HP ProLiant DL380 with PAA
- SUSE Linux Enterprise Server 11 SP2 32-bit running on HP ProLiant DL380 without PAA
- SUSE Linux Enterprise Server 11 SP2 64-bit running on HP ProLiant DL380 with PAA (single-user mode)
- SUSE Linux Enterprise Server 11 SP2 64-bit running on HP ProLiant DL380 without PAA
Other Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 160 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 160 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; HMAC-MD5