U.S. flag   An official website of the United States government

Cryptographic Module Validation Program CMVP

Certificate #1896

Details

Module Name
Microsoft Windows 8, Microsoft Windows Server 2012, Microsoft Windows RT, Microsoft Surface Windows RT, Microsoft Surface Windows 8 Pro, Microsoft Windows Phone 8, and Microsoft Windows Storage Server 2012 BitLocker® Windows OS Loader (WINLOAD)
Standard
FIPS 140-2
Status
Historical
 Historical Reason
Moved to historical list due to sunsetting
Validation Dates
09/06/2013;01/09/2015
Overall Level
1
Caveat
When operated in FIPS mode with module Microsoft Windows 8, Microsoft Windows Server 2012, Microsoft Windows RT, Microsoft Surface Windows RT, Microsoft Surface Windows 8 Pro, and Microsoft Windows Phone 8 Boot Manager validated to FIPS 140-2 under Cert. #1895 operating in FIPS mode
Security Level Exceptions
  • Design Assurance: Level 2
Module Type
Software
Embodiment
Multi-chip standalone
Description
The BitLocker® Windows OS Loader loads the boot-critical driver and OS kernel image files. Please note that AES (Cert. #2197) is only used in the entropy source for the module. This particular instance of AES is labeled as non-compliant because it does not perform a power-up self-test. This cryptographic module also maintains FIPS 140-2 validation compliance (according to FIPS 140-2 PUB Implementation Guidance G.5) on Microsoft Windows 8, Microsoft Windows 8 Pro, and Microsoft Windows Server 2012 Datacenter.
Tested Configuration(s)
  • Microsoft Windows 8 Enterprise (x64) running on a Dell PowerEdge SC430 without PAA
  • Microsoft Windows 8 Enterprise (x64) running on Intel Core i7 with PAA running on an Intel Client Desktop
  • Microsoft Windows 8 Enterprise (x86) running on a Dell Dimension C521
  • Microsoft Windows 8 Pro (x64) running on an Intel x64 Processor with PAA running on a Microsoft Surface Windows 8 Pro
  • Microsoft Windows Phone 8 (ARMv7 Thumb-2) running on a Windows Phone 8
  • Microsoft Windows RT (ARMv7 Thumb-2) running on a Microsoft Surface Windows RT
  • Microsoft Windows RT (ARMv7 Thumb-2) running on a Qualcomm Tablet
  • Microsoft Windows RT (ARMv7 Thumb-2) running on an NVIDIA Tegra 3 Tablet
  • Microsoft Windows Server 2012 (x64) running on a Dell PowerEdge SC430 without PAA
  • Microsoft Windows Server 2012 (x64) running on Intel Core i7 with PAA running on an Intel Client Desktop
  • Microsoft Windows Storage Server 2012 (x64) running on an Intel Maho Bay with PAA
  • Microsoft Windows Storage Server 2012 (x64) running on an Intel Maho Bay without PAA (single-user mode)
FIPS Algorithms
AES Certs. #2196 and #2198
RSA Cert. #1132
SHS Cert. #1903
Other Algorithms
AES (Cert. #2197; non-compliant); MD5; Non-Approved RNG
Software Versions
6.2.9200

Vendor

Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Tim Myers
FIPS@microsoft.com
Phone: 800-MICROSOFT

Lab

SAIC
NVLAP Code: 200427-0