Module Name

Red Hat Enterprise Linux GnuTLS Cryptographic Module

Standard

FIPS 140-2

Status

Active

Sunset Date

9/7/2022

Validation Dates

09/08/2017

Overall Level

1

Caveat

When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy

Security Level Exceptions

• Physical Security: N/A

Module Type

Software

Embodiment

Multi-Chip Stand Alone

Description

GnuTLS is a secure communications library implementing the TLS and DTLS protocols. It provides a simple C language application programming interface to access the secure communications protocols as well as APIs to parse and write X.509, PCKS#12, and other required structures which is shipped with Red Hat Enterprise Linux 7.4.

Tested Configuration(s)

• Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 with PAA
• Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 without PAA (single-user mode)

FIPS Algorithms

AES	Certs. #4658, #4659, #4660, #4661, #4662 and #4663
CVL	Certs. #1307, #1308, #1309 and #1310
DRBG	Certs. #1574 and #1575
DSA	Certs. #1233 and #1234
ECDSA	Certs. #1146 and #1147
HMAC	Certs. #3086 and #3087
RSA	Certs. #2542 and #2543
SHS	Certs. #3817, #3818, #3819 and #3820
Triple-DES	Certs. #2479 and #2480

Allowed Algorithms

Diffie-Hellman (CVL Certs. #1307 and #1309; key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1307 and #1309, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength); MD5; NDRNG

Software Versions

5.0