Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #2609

Details

Module Name
Apple iOS CoreCrypto Kernel Module v6.0
Standard
FIPS 140-2
Status
Active
Sunset Date
4/4/2021
Validation Dates
4/5/2016
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Apple iOS CoreCrypto Kernel Module is a software cryptographic module running on a multi-chip standalone mobile device and provides services intended to protect data in transit and at rest.
Tested Configuration(s)
  • iOS 9.0 running on iPad (3rd generation) with Apple A5X CPU
  • iOS 9.0 running on iPad (4th generation) with Apple A6X CPU
  • iOS 9.0 running on iPad Air 2 with Apple A8X CPU
  • iOS 9.0 running on iPhone4S with Apple A5 CPU
  • iOS 9.0 running on iPhone5 with Apple A6 CPU
  • iOS 9.0 running on iPhone5S with Apple A7 CPU
  • iOS 9.0 running on iPhone6 (iPhone6 and iPhone6 Plus) with Apple A8 CPU
  • iOS 9.0 running on iPhone6S (iPhone6S and iPhone6S Plus) with Apple A9 CPU
  • iOS 9.1 running on iPad Pro with Apple A9X CPU (single-user mode)
FIPS Algorithms
AES Certs. #3729, #3730, #3731, #3732, #3733, #3734, #3735, #3736, #3737, #3738, #3739, #3741, #3742, #3743, #3744, #3745, #3746 and #3747
DRBG Certs. #1017, #1018, #1020, #1021, #1022, #1023, #1024, #1025 and #1026
ECDSA Certs. #791, #792, #794, #795, #796, #797, #798, #799 and #800
HMAC Certs. #2349, #2350, #2351, #2352, #2353, #2354, #2355, #2356, #2357, #2442, #2443, #2445, #2446, #2447, #2448, #2449, #2450 and #2451
KTS AES Certs. #3729, #3730, #3731, #3732, #3733, #3734, #3735, #3736, #3737, #3738, #3739, #3741, #3742, #3743, #3744, #3745, #3746 and #3747; key establishment methodology provides between 128 and 160 bits of encryption strength
PBKDF vendor affirmed
RSA Certs. #1918, #1919, #1921, #1922, #1923, #1924, #1925, #1926 and #1927
SHS Certs. #3015, #3016, #3017, #3018, #3019, #3020, #3021, #3022, #3023, #3111, #3112, #3114, #3115, #3116, #3117, #3118, #3119 and #3120
Triple-DES Certs. #2076, #2077, #2079, #2080, #2081, #2082, #2083, #2084 and #2085
Other Algorithms
AES (non-compliant); ANSI X9.63 KDF; Blowfish; CAST5; DES; ECDSA (non-compliant); Ed25519; HASH_DRBG (non-compliant); HMAC_DRBG (non-compliant); Integrated Encryption Scheme on elliptic curves; KBKDF (non-compliant); MD2; MD4; MD5; OMAC; RIPEMD; RC2; RC4; RFC6637 KDF; RSA (key wrapping; key establishment methodology provides between 128 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); SP800-56C KDF; Triple-DES (non-compliant)
Software Versions
6.0

Vendor

Apple Inc.
1 Infinite Loop
Cupertino, CA 95041
USA

Shawn Geddis
geddis@apple.com
Phone: (669) 227-3579
Fax: (866) 315-1954

Lab

atsec information security corporation
NVLAP Code: 200658-0