Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #2016

Historical - The referenced cryptographic module should not be included by Federal Agencies in new procurements. Agencies may make a risk determination on whether to continue using this module based on their own assessment of where and how it is used.

Details

Module Name

Apple OS X CoreCrypto Kernel Module, v4.0

Standard

FIPS 140-2

Status

Historical

Historical Reason

Moved to historical list due to sunsetting

Overall Level

Caveat

When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy

Module Type

Software

Embodiment

Multi-chip standalone

Description

The Apple iOS CoreCrypto Kernel Module is a software cryptographic module running on a multi-chip standalone mobile device and provides services intended to protect data in transit and at rest.

Tested Configuration(s)

OS X 10.9 running on iMac with i7 CPU with PAA
OS X 10.9 running on iMac with i7 CPU without PAA (single-user mode)
OS X 10.9 running on Mac mini with i5 CPU with PAA
OS X 10.9 running on Mac mini with i5 CPU without PAA

Approved Algorithms

AES	Certs. #2511, #2512, #2513, #2514, #2515, #2516, #2517 and #2518
DRBG	Certs. #358, #359, #360, #361, #362 and #363
ECDSA	Certs. #430 and #431
HMAC	Certs. #1546, #1547, #1548, #1549, #1550 and #1551
PBKDF	vendor affirmed
SHS	Certs. #2124, #2125, #2126, #2127, #2128 and #2129
Triple-DES	Certs. #1532 and #1533

Other Algorithms

RSA (non-compliant); ECDSA (P-192, P-224 and P-521; non-compliant); DES; MD5; CAST5; Blowfish; BitGen1; BitGen2; BitGen3; RC4; OMAC

Software Versions

4.0

Vendor

Apple Inc.
1 Infinite Loop
Cupertino, CA 95041
USA

Shawn Geddis
geddis@apple.com

Related Files

Security Policy
Consolidated Certificate

Validation History

Date	Type	Lab
11/7/2013	Initial	ATSEC INFORMATION SECURITY CORP