Module Name
Red Hat Enterprise Linux Kernel Crypto API Cryptographic Module
Historical Reason
Moved to historical list due to dependency on certificate #3070
Caveat
When operated in FIPS mode with module Red Hat Enterprise Linux NSS Cryptographic Module validated to FIPS 140-2 under Cert. #3070 operating in FIPS mode. The module generates random strings whose strengths are modified by available entropy
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Linux kernel Crypto API implemented in Red Hat Enterprise Linux 7.4 provides services operating inside the Linux kernel with various ciphers, message digests and an approved random number generator.
Tested Configuration(s)
- Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 with PAA
- Red Hat Enterprise Linux 7.4 running on Dell PowerEdge R630 without PAA (single-user mode)
Approved Algorithms
| AES |
Certs. #4780, #4781, #4782, #4783, #4784, #4785, #4786 and #4787 |
| DRBG |
Certs. #1656, #1657, #1658, #1659, #1660, #1663 and #1664 |
| HMAC |
Certs. #3156, #3157, #3188, #3189, #3193 and #3194 |
| RSA |
Certs. #2619, #2620 and #2626 |
| SHS |
Certs. #3924, #3925, #3930 and #3931 |
| Triple-DES |
Cert. #2540 |
