Module Name
Red Hat Enterprise Linux 6.6 Kernel Crypto API Cryptographic Module
Historical Reason
Moved to historical list due to dependency on certificate #2564
Caveat
When operated in FIPS mode with Network Security Services (NSS) Module validated to FIPS 140-2 under Cert. #2564 operating in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Linux kernel Crypto API implemented in Red Hat Enterprise Linux 6.6 provides services operating inside the Linux kernel with various ciphers, message digests and an approved random number generator.
Tested Configuration(s)
- Red Hat Enterprise Linux 6.6 running on HP ProLiant DL380p Gen8 with PAA
- Red Hat Enterprise Linux 6.6 running on HP ProLiant DL380p Gen8 without PAA
- Red Hat Enterprise Linux 6.6 running on IBM System x3500 M4 with PAA
- Red Hat Enterprise Linux 6.6 running on IBM System x3500 M4 without PAA (single-user mode)
Approved Algorithms
AES |
Certs. #3145, #3146, #3147, #3148, #3149, #3150, #3151, #3152, #3218 and #3219 |
DRBG |
Certs. #639, #640, #641, #642, #643, #644, #645 and #646 |
DSA |
Certs. #892, #893, #894, #895, #909 and #910 |
HMAC |
Certs. #1933, #1934, #1935, #1936, #1985 and #1986 |
SHS |
Certs. #2607 and #2608 |
Triple-DES |
Certs. #1797 and #1798 |
Other Algorithms
DES; SHA-256/SHA-512 (SSSE3/AVX/AVX2 implementation; non-compliant); HMAC SHA-256/SHA-512 (SSSE3/AVX/AVX2 implementation; non-compliant)