Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #2657

Details

Module Name
Red Hat Enterprise Linux libgcrypt Cryptographic Module v4.0 [1] and Red Hat Enterprise Linux libgcrypt Cryptographic Module v5.0 [2]
Standard
FIPS 140-2
Status
Active
Sunset Date
6/12/2021
Validation Dates
6/13/2016
7/28/2017
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The libgcrypt FIPS Runtime Module is a general purpose cryptographic library designed to provide FIPS 140-2 validated cryptographic functionality for use with the high level API of the libgcrypt library delivered with RHEL 7.1 [1] and RHEL 7.4 [2].
Tested Configuration(s)
  • Red Hat Enterprise Linux 7.1 running on IBM Power8 Little Endian 8286-41A [1]
  • Red Hat Enterprise Linux 7.1 running on IBM z13 with CP Assist for Cryptographic Functions [1]
  • Red Hat Enterprise Linux 7.1 running on ProLiant DL380p Gen8 with AES-NI [1]
  • Red Hat Enterprise Linux 7.1 running on ProLiant DL380p Gen8 without AES-NI [1]
  • Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 [2] (single-user mode)
FIPS Algorithms
AES Certs. #3643, #3644, #3645, #3646, #3647, #3648, #3649, #4580 and #4581
DRBG Certs. #972, #973, #974, #975, #976, #977, #978, #979, #980, #1527 and #1528
DSA Certs. #1017, #1018, #1019, #1020, #1021, #1214 and #1215
HMAC Certs. #2395, #2396, #2397, #2398, #2399, #3030 and #3031
RSA Certs. #1879, #1880, #1881, #1882, #1883, #2498 and #2499
SHS Certs. #3062, #3063, #3064, #3065, #3066, #3756 and #3757
Triple-DES Certs. #2030, #2031, #2032, #2033, #2034, #2433 and #2434
Other Algorithms
RSA (key wrapping; key establishment methodology provides between 128 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); ARC4; Blowfish; Camellia; Cast5; CRC32; CSPRNG; DES; El Gamal; Gost; IDEA; MD4; MD5; OpenPGP S2K Salted and Iterated/salted; RC2; RIPEMD160; SEED; Serpent; Tiger; Twofish; Whirlpool
Software Versions
4.0 [1], 5.0 [2]

Vendor

Red Hat®, Inc.
100 East Davie Street
Raleigh, NC 27601
USA

Steve Grubb
sgrubb@redhat.com
Phone: 978-392-1000
Fax: 978-392-1001
Jaroslav Rezník
jreznik@redhat.com
Phone: +420-532-294-645

Lab

atsec information security corporation
NVLAP Code: 200658-0