Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #2120

Details

Module Name
Samsung OpenSSL Cryptographic Module
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
3/28/2014
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Physical Security: N/A
  • EMI/EMC: Level 3
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-chip standalone
Description
Provides general purpose cryptographic services to user-space applications on the mobile platform for the protection of data in transit.
Tested Configuration(s)
  • Android Jelly Bean 4.1 running on Samsung Galaxy Note II
  • Android Jelly Bean 4.2 running on Samsung Galaxy S4 (single-user mode)
FIPS Algorithms
AES Certs. #2351 and #2411
CVL Certs. #56 and #72
DRBG Certs. #299 and #321
DSA Certs. #735 and #753
ECDSA Certs. #386 and #396
HMAC Certs. #1458 and #1496
RNG Certs. #1171 and #1190
RSA Certs. #1212 and #1245
SHS Certs. #2026 and #2069
Triple-DES Certs. #1471 and #1501
Other Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); Blowfish; Triple-DES-CTR (non-compliant); AES-CTR (non-compliant); MD4; MD5; MDC-2; RC2; RC4; RIPEMD-160; Diffie-Hellman; md_rand.c; DRBG (Certs. #299 and #321; DUAL-EC; non-compliant)
Software Versions
SecOpenSSL2.0.3

Vendor

Samsung Electronics Co., Ltd.
416, Maetan 3-Dong Youngton Gu
Suwon, Gyeonggi 152-848
South Korea

Kyunghee Lee
kyungheelee@samsung.com
Phone: +82-10-9397-1589

Lab

atsec
NVLAP Code: 200658-0