Computer Security Resource Center

Computer Security Resource Center

Computer Security
Resource Center

Cryptographic Module Validation Program

Certificate #2798

Details

Module Name
Red Hat Enterprise Linux Kernel Crypto API Cryptographic Module v4.0 with CPACF
Standard
FIPS 140-2
Status
Active
Sunset Date
11/22/2021
Validation Dates
11/23/2016
Overall Level
1
Caveat
When operated in FIPS mode with modules Red Hat Enterprise Linux NSS Cryptographic Module v4.0 validated to FIPS 140-2 under Cert. #2711 operating in FIPS mode and Red Hat Enterprise Linux Libreswan Cryptographic Module v4.0 validated to FIPS 140-2 under Cert. #2721 operating in FIPS mode. The module generates random strings whose strengths are modified by available entropy
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Software-Hybrid
Embodiment
Multi-Chip Stand Alone
Description
The Linux kernel Crypto API implemented in Red Hat Enterprise Linux 7.1 provides services operating inside the Linux kernel with various ciphers, message digests and an approved random number generator.
Tested Configuration(s)
  • Red Hat Enterprise Linux 7.1 running on IBM z13 (single-user mode)
FIPS Algorithms
AES Certs. #3570, #3591, #3861, #3862 and #3863
DRBG Certs. #916, #925, #1095, #1096 and #1097
HMAC Certs. #2276 and #2508
RSA Certs. #1838 and #1971
SHS Certs. #2938 and #3183
Triple-DES Certs. #1990, #2129 and #2130
Other Algorithms
DES; GHASH; PRNG; SHS (non-compliant)
Hardware Versions
COP chips integrated within processor unit
Software Versions
4.0
Firmware Versions
Feature 3863 (aka FC3863) with System Driver Level 22H

Vendor

Red Hat®, Inc.
100 East Davie Street
Raleigh, NC 27601
USA

Jaroslav Reznik
jreznik@redhat.com
Phone: +420-532-294-645
Steve Grubb
sgrubb@redhat.com
Phone: 978-392-1000
Fax: 978-392-1001

Lab

atsec information security corporation
NVLAP Code: 200658-0