Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #2139

Details

Module Name
IBM® z/VM® Version 6 Release 3 System SSL Cryptographic Module
Standard
FIPS 140-2
Status
Historical
 Historical Reason
RNG SP800-131A Revision 1 Transition
Validation Dates
4/30/2014
Overall Level
1
Caveat
The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Cryptographic Module Specification: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software-Hybrid
Embodiment
Multi-chip standalone
Description
Module Description: z/VM System SSL provides cryptographic functions which allows z/VM to protect data using the SSL/TLS protocols. z/VM System SSL also enables administrators to create and manage X.509 V3 certificates and keys within key database files.
Tested Configuration(s)
  • z/VM Version 6 Release 3 running on IBM System z10 (TM) Enterprise Class (z10 EC) with CP Assist for Cryptographic Functions DES/TDES Enablement Feature 3863 (single-user mode)
FIPS Algorithms
AES Certs. #976 and #2627
CVL Cert. #110
DSA Cert. #792
HMAC Cert. #1624
RNG Cert. #1241
RSA Cert. #1344
SHS Certs. #946 and #2203
Triple-DES Certs. #769 and #1577
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength); HMAC-MD5
Hardware Versions
z10 CP Assist for Cryptographic Functions DES/TDES Enablement Feature 3863
Software Versions
5735FAL00: z/VM Version 6 Release 3 plus APAR PM95516

Vendor

IBM® Corporation
1701 North Street, Building 256-3
Endicott, NY 13760
USA

Brian W. Hugenbruch
bwhugen@us.ibm.com
Phone: 607-429-3660
Fax: 607-429-5920
William F Penny
wpenny@us.ibm.com
Phone: 845-435-3010
Fax: 845-433-7510

Lab

atsec
NVLAP Code: 200658-0