Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #2606

Details

Module Name
Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll) in Microsoft Windows 10, Windows 10 Pro, Windows 10 Enterprise, Windows 10 Enterprise LTSB, Windows 10 Mobile, Windows 10 for Surface Hub
Standard
FIPS 140-2
Status
Active
Sunset Date
8/25/2021
Validation Dates
6/2/2016
8/26/2016
Overall Level
1
Caveat
When operated in FIPS mode with the module Code Integrity (ci.dll) in Microsoft Windows 10, Windows 10 Pro, Windows 10 Enterprise, Windows 10 Enterprise LTSB, Windows 10 Mobile, Windows 10 for Surface Hub under Cert. #2604 operating in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 2
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll) provides cryptographic services to Windows components and applications. It includes cryptographic algorithms in an easy-to-use cryptographic module via the Cryptography Next Generation (CNG) API. It can be dynamically linked into applications for the use of general-purpose FIPS 140-2 validated cryptography.
Tested Configuration(s)
  • Windows 10 (x64) running on a Dell XPS 8700 with PAA [1][2]
  • Windows 10 (x64) running on a HP Compaq Pro 6305 with PAA [1][2]
  • Windows 10 (x86) running on a Dell Inspiron 660s without PAA [1][2]
  • Windows 10 Enterprise (x64) running on a HP Compaq Pro 6305 with PAA [1][2]
  • Windows 10 Enterprise (x64) running on a Microsoft Surface 3 with PAA [1][2]
  • Windows 10 Enterprise (x64) running on a Microsoft Surface Book with PAA [2]
  • Windows 10 Enterprise (x64) running on a Microsoft Surface Pro 2 with PAA [1][2]
  • Windows 10 Enterprise (x64) running on a Microsoft Surface Pro 3 with PAA [1][2]
  • Windows 10 Enterprise (x64) running on a Microsoft Surface Pro 4 with PAA [2]
  • Windows 10 Enterprise (x64) running on a Microsoft Surface Pro with PAA [1][2]
  • Windows 10 Enterprise (x86) running on a Dell Inspiron 660s without PAA [1][2]
  • Windows 10 Enterprise LTSB (x64) running on a Dell XPS 8700 with PAA [1]
  • Windows 10 Enterprise LTSB (x64) running on a HP Compaq Pro 6305 with PAA [1]
  • Windows 10 Enterprise LTSB (x86) running on a Dell Inspiron without PAA [1]
  • Windows 10 for Surface Hub (x64) running on a Microsoft Surface Hub 55" with PAA [2] (single-user mode)
  • Windows 10 for Surface Hub (x64) running on a Microsoft Surface Hub 84" with PAA [2]
  • Windows 10 Mobile (ARMv7) running on a Microsoft Lumia 635 [2]
  • Windows 10 Mobile (ARMv7) running on a Microsoft Lumia 950 [2]
  • Windows 10 Pro (x64) running on a HP Compaq Pro 6305 with PAA [1][2]
  • Windows 10 Pro (x64) running on a Microsoft Surface Book with PAA [2]
  • Windows 10 Pro (x64) running on a Microsoft Surface Pro 2 with PAA [1][2]
  • Windows 10 Pro (x64) running on a Microsoft Surface Pro 3 with PAA [1][2]
  • Windows 10 Pro (x64) running on a Microsoft Surface Pro 4 with PAA [2]
  • Windows 10 Pro (x64) running on a Microsoft Surface Pro with PAA [1][2]
  • Windows 10 Pro (x86) running on a Dell Inspiron 660s without PAA [1][2]
FIPS Algorithms
AES Certs. #3497 and #3629
CVL Certs. #575, #576, #663 and #664
DRBG Certs. #868 and #955
DSA Certs. #983 and #1024
ECDSA Certs. #706 and #760
HMAC Certs. #2233 and #2381
KAS Certs. #64 and #72; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength
KBKDF Certs. #66 and #72
KTS AES Certs. #3507 and #3653; key wrapping; key establishment methodology provides between 128 and 256 bits of encryption strength
PBKDF vendor affirmed
RSA Certs. #1783, #1798, #1802, #1887, #1888 and #1889
SHS Certs. #2886 and #3047
Triple-DES Certs. #1969 and #2024
Other Algorithms
DES; HMAC-MD5; Legacy CAPI KDF; MD2; MD4; MD5; RC2; RC4; RSA (encrypt/decrypt)
Software Versions
10.0.10240 [1] and 10.0.10586 [2]

Vendor

Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Tim Myers
FIPS@microsoft.com
Phone: 800-642-7676

Lab

Leidos Accredited Testing & Evaluation (AT&E) Labs (formerly SAIC)
NVLAP Code: 200427-0