Module Name
Wickr FIPS Object Module for OpenSSL
Historical Reason
Moved to historical list due to sunsetting
Caveat
When built, installed, protected and initialized as assumed by the Crypto Officer role and as specified in the provided Security Policy. Appendix A of the provided Security Policy specifies the actual distribution tar file containing the source code of this module. There shall be no additions, deletions or alterations to the tar file contents as used during module build. The distribution tar file shall be verified as specified in Appendix A of the provided Security Policy. Installation and protection shall be completed as specified in Appendix A of the provided Security Policy. Initialization shall be invoked as per Section 4 of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a non FIPS 140-2 compliant module. This validation entry is a non-security relevant modification to Cert. #2398. No assurance of the minimum strength of generated keys
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Wickr FIPS Object Module for OpenSSL is a general purpose cryptographic module compiled from the source code for the OpenSSL FIPS Object Module 2.0.16.
Tested Configuration(s)
- Android 9 running on a Samsung Galaxy S10 with a Qualcomm Snapdragon 855 (Kryo) with PAA
- Android 9 running on a Samsung Galaxy S10 with a Qualcomm Snapdragon 855 (Kryo) without PAA
- Apple iOS 13.1 running on an Apple iPhone X with an Apple A11 Bionic (Monsoon, Mistral) with PAA
- Apple iOS 13.1 running on an Apple iPhone X with an Apple A11 Bionic (Monsoon, Mistral) without PAA
- Apple macOS Mojave running on an Apple Macbook Pro A1502 with an Intel Core i5 with PAA
- Apple macOS Mojave running on an Apple Macbook Pro A1502 with an Intel Core i5 without PAA
- Microsoft Windows 10 April 2018 Update running on an IBM ThinkPad with an Intel Core i7 with PAA
- Microsoft Windows 10 April 2018 Update running on an IBM ThinkPad with an Intel Core i7 without PAA (single-user mode)
- Ubuntu 18.04 running on an IBM ThinkPad with an Intel Core i7 with PAA
- Ubuntu 18.04 running on an IBM ThinkPad with an Intel Core i7 without PAA
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C1359, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength)