Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #1956

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

Apple OS X CoreCrypto Kernel Module, v3.0

Standard

FIPS 140-2

Status

Historical

Historical Reason

Moved to historical list due to sunsetting

Overall Level

Caveat

When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy

Module Type

Software

Embodiment

Multi-chip standalone

Description

The Apple iOS CoreCrypto Kernel Module is a software cryptographic module running on a multi-chip standalone mobile device and provides services intended to protect data in transit and at rest.

Tested Configuration(s)

OS X 10.8 running on iMac with i7 CPU with PAA
OS X 10.8 running on iMac with i7 CPU without PAA (single-user mode)
OS X 10.8 running on Mac mini with i5 CPU with PAA
OS X 10.8 running on Mac mini with i5 CPU without PAA

Approved Algorithms

AES	Certs. #2080, #2081, #2082, #2083, #2084, #2085, #2086 and #2087
DRBG	Certs. #211, #212, #213, #214, #215 and #216
ECDSA	Certs. #305 and #306
HMAC	Certs. #1261, #1262, #1263, #1264, #1265 and #1266
PBKDF	vendor affirmed
SHS	Certs. #1810, #1811, #1812, #1813, #1814 and #1815
Triple-DES	Certs. #1331 and #1332

Other Algorithms

ECDSA (P-192, P-224 and P-521; non-compliant); DES; MD5; CAST5; Blowfish; BitGen1; BitGen2; BitGen3; RC4; OMAC (non-compliant)

Software Versions

3.0

Vendor

Apple Inc.
1 Infinite Loop
Cupertino, CA 95041
USA

Shawn Geddis
geddis@apple.com

Related Files

Security Policy
Consolidated Certificate

Validation History

Date	Type	Lab
6/7/2013	Initial	ATSEC INFORMATION SECURITY CORP