Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4548

Details

Module Name
Amazon Linux 2 OpenSSL Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
10/22/2024
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
Amazon Linux 2 OpenSSL Crypto Module is a general purpose cryptographic library designed to provide FIPS 140-2 validated cryptographic functionality for the applications running on Amazon Linux 2.
Tested Configuration(s)
  • Amazon Linux 2 running on Amazon EC2 c6g.metal with Graviton 2 with PAA
  • Amazon Linux 2 running on Amazon EC2 c6g.metal with Graviton 2 without PAA (single-user mode)
  • Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5-2686 with PAA
  • Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5-2686 without PAA
Approved Algorithms
AES Certs. #A4141, #A4142, #A4145, #A4146, #A4148, #A4149, #C523, #C524 and #C525
CVL Certs. #A4143, #A4147, #C523
DRBG Certs. #A4141, #A4143, #A4145, #A4147, #A4148, #C523, #C524, #C525 and #C526
DSA Certs. #A4143, #A4147, #C523
ECDSA Certs. #A4143, #A4147, #C523
HMAC Certs. #A4143, #A4144, #A4147, #C523, #C524, #C525 and #C526
KTS AES Certs. #A4141, #A4142, #A4145, #A4146, #A4148, #A4149, #C523, #C524 and #C525; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Certs. #A4141, #A4145, #A4148, #C523, #C524 and #C525 and HMAC Certs. #A4143, #A4144, #A4147, #C523, #C524, #C525 and #C526; key establishment methodology provides 128 or 256 bits of encryption strength
KTS Triple-DES Certs. #A4140, #C523 and HMAC Certs. #A4143, #A4144, #A4147, #C523, #C524, #C525 and #C526; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #A4143, #A4147, #C523
SHS Certs. #A4143, #A4144, #A4147, #C523, #C524, #C525 and #C526
Triple-DES Certs. #A4140, #C523
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
1.0

Vendor

Amazon Web Services, Inc.
1918 8th Ave.
Seattle, WA 98121
USA

Samartha Chandrashekar
amazon-linux-fips-external@amazon.com
Raghuram Kota
amazon-linux-fips-external@amazon.com

Validation History

Date Type Lab
7/10/2023 Initial ATSEC INFORMATION SECURITY CORP
10/30/2023 Update ATSEC INFORMATION SECURITY CORP