Module Name
Red Hat Enterprise Linux Kernel Crypto API Cryptographic Module v4.0
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode with modules Red Hat Enterprise Linux NSS Cryptographic Module v4.0 validated to FIPS 140-2 under Cert. #2711 operating in FIPS mode and Red Hat Enterprise Linux Libreswan Cryptographic Module v4.0 validated to FIPS 140-2 under Cert. #2721 operating in FIPS mode. The module generates random strings whose strengths are modified by available entropy
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Linux kernel Crypto API implemented in Red Hat Enterprise Linux 7.1 provides services operating inside the Linux kernel with various ciphers, message digests and an approved random number generator.
Tested Configuration(s)
- Red Hat Enterprise Linux 7.1 running on HP ProLiant DL380p Gen8 with PAA
- Red Hat Enterprise Linux 7.1 running on HP ProLiant DL380p Gen8 without PAA
- Red Hat Enterprise Linux 7.1 running on IBM POWER8 Little Endian 8286-41A (single-user mode)
Approved Algorithms
| AES |
Certs. #3567, #3568, #3569, #3571, #3572, #3573, #3574, #3575, #3590 and #3592 |
| DRBG |
Certs. #911, #912, #913, #914, #915, #917, #924 and #926 |
| HMAC |
Certs. #2273, #2274, #2275 and #2277 |
| RSA |
Certs. #1835, #1836, #1837 and #1839 |
| SHS |
Certs. #2935, #2936, #2937 and #2939 |
| Triple-DES |
Certs. #1988 and #1989 |
Other Algorithms
DES; PRNG; SHS (non-compliant)
