Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #1514

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

Apple FIPS Cryptographic Module

Standard

FIPS 140-2

Status

Historical

Historical Reason

RNG SP800-131A Revision 1 Transition

Overall Level

Caveat

When operated in FIPS mode

Module Type

Software

Embodiment

Multi-chip standalone

Description

Mac OS X's security services are built using the open source Common Data Security Architecture. CDSA is a set of layered security services in which the AppleCSP provides the cryptography for services such as FileVault, Encrypted Disk Images, Keychains, Safari, Mail, etc.

Tested Configuration(s)

Apple Mac OS X 10.6 (single-user mode)

Approved Algorithms

AES	Cert. #1400
DSA	Cert. #453
ECDSA	Cert. #176
HMAC	Cert. #823
RNG	Cert. #767
RSA	Cert. #681
SHS	Cert. #1271
TDES	Cert. #955

Other Algorithms

ASC; Blowfish; CAST; DES; RC2; RC4; RC5; FEE; MD2; MD5; HMAC-MD5; Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (KeyGen; non-compliant)

Software Versions

1.0

Vendor

Apple Inc.
11921 Freedom Drive
Reston, VA 20190
USA

Shawn Geddis
geddis@apple.com
Phone: 703-264-5103

Related Files

Security Policy
Consolidated Certificate

Validation History

Date	Type	Lab
3/9/2011	Initial	CYGNACOM SOLUTIONS INC