Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #2691

Details

Module Name
IBM® z/OS® Version 2 Release 1 Security Server RACF® Signature Verification Module [1], IBM® z/OS® Version 2 Release 2 Security Server RACF® Signature Verification Module [2] and IBM® z/OS® Version 2 Release 3 Security Server RACF® Signature Verification Module [3]
Standard
FIPS 140-2
Status
Active
Sunset Date
7/27/2021
Validation Dates
7/28/2016
4/25/2017
5/9/2017
6/1/2017
10/31/2017
2/7/2019
2/19/2019
Overall Level
1
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Software-Hybrid
Embodiment
Multi-Chip Stand Alone
Description
The z/OS RACF Program Signature Verification package consists of the core module (IRRPVERS) that is utilized when verifying signed code as it is loaded as well as an auxiliary module responsible for driving the initialization of IRRPVERS. The RACF Program Signature Verification module consists of software-based cryptographic algorithms, as well as hashing algorithms provided by the CP Assist for Cryptographic Function (CPACF).
Tested Configuration(s)
  • IBM z/OS Version 2 Release 1 running on an IBM z13 [1]
  • IBM z/OS Version 2 Release 2 running on an IBM z13 [2]
  • IBM z/OS Version 2 Release 3 running on an IBM z14 [3] (single-user mode)
FIPS Algorithms
RSA Certs. #1979, #2283 and #C219
SHS Certs. #3196, #3661 and #C79
Other Algorithms
N/A
Hardware Versions
FC 3863 EC N98775 Drv 22H [1], FC 3863 EC P00339 Drv D27I [2] and FC 3863 EC P42601 Drv D32L [3]
Software Versions
RACF level HRF7790 [1], RACF level HRF77A0 [2] and RACF level HRF77B0 [3]

Vendor

IBM® Corporation
2455 South Road
Poughkeepsie, NY 12601
USA

John Monti
jmonti@us.ibm.com
Phone: 845-435-4164
Michael Onghena
onghena@us.ibm.com
Phone: 919-543-4049

Lab

atsec information security corporation
NVLAP Code: 200658-0