Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3643

Details

Module Name
Amazon Linux 2 GnuTLS Cryptographic Module
Standard
FIPS 140-2
Status
Historical
 Historical Reason
SP 800-56Arev3 transition - replaced by certificate #4472
Overall Level
1
Caveat
When operated in FIPS mode. When installed, initialized and configured as specified in Section 10.1 of the Security Policy.
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Amazon Linux 2 GnuTLS Cryptographic Module implements general purpose cryptographic algorithms and network protocols.
Tested Configuration(s)
  • Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5 with PAA
  • Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5 without PAA (single-user mode)
Approved Algorithms
AES Certs. #C789, #C790, #C791 and #C792
CVL Cert. #C792
DRBG Cert. #C792
DSA Cert. #C792
ECDSA Cert. #C792
HMAC Cert. #C792
KTS AES Certs. #C790, #C791 and #C792; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Certs. #C790, #C791 and #C792 and HMAC Cert. #C792; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Cert. #C792 and HMAC Cert. #C792; key establishment methodology provides 112 bits of encryption strength
RSA Cert. #C792
SHS Certs. #C790 and #C792
Triple-DES Cert. #C792
Allowed Algorithms
Diffie-Hellman (CVL Cert. #C792 with CVL Cert. #C792, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C792 with CVL Cert. #C792, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength); MD5; NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
1.0

Vendor

Amazon Web Services, Inc.
1918 8th Ave.
Seattle, WA 98121
USA

Samartha Chandrashekar
amazon-linux-fips-external@amazon.com
Raghuram Kota
amazon-linux-fips-external@amazon.com

Validation History

Date Type Lab
4/20/2020 Initial ATSEC INFORMATION SECURITY CORP