Module Name
Windows Server 2008 Enhanced DSS and Diffie-Hellman Cryptographic Provider (DSSENH)
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode with Code Integrity (ci.dll) validated to FIPS 140-2 under Cert. #1006 operating in FIPS mode
Embodiment
Multi-chip standalone
Description
DSSENH encapsulates several different cryptographic algorithms in an easy-to-use cryptographic module accessible via the Microsoft CryptoAPI. Software developers dynamically link the Microsoft DSSENH module into their applications to provide FIPS 140-2 compliant cryptographic support.
Tested Configuration(s)
- Microsoft Windows Server 2008 (IA64 version) (single-user mode)
- Microsoft Windows Server 2008 (x64 version)
- Microsoft Windows Server 2008 (x86 Version)
Approved Algorithms
DSA |
Cert. #282 |
RNG |
Cert. #435 |
SHS |
Cert. #753 |
Triple-DES |
Cert. #656 |
Triple-DES MAC |
Triple-DES Cert. #656, vendor affirmed |
Other Algorithms
DES; DES MAC; DES40; DES40 MAC; Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD5; RC2; RC2 MAC; RC4
Software Versions
6.0.6001.18000 and 6.0.6002.18005