Cryptographic Module Validation Program CMVP

Certificate #2261

Details

Module Name
Cryptographic Module for CipherCloud Gateway
Standard
FIPS 140-2
Status
Active
Sunset Date
5/2/2021
Validation Dates
10/01/2014;05/03/2016
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-chip standalone
Description
The Cryptographic Module enables all cryptographic operations performed by the CipherCloud Gateway. The CipherCloud Gateway is a software solution that organizations deploy within their network boundaries or delegate operation to a trusted third party. CipherCloud interfaces with clients (e.g., web browsers, mobile applications, APIs, etc.), and leverages format and operations preserving encryption technology to secure sensitive information in real time, before it's sent to cloud applications (e.g. web servers, API services, databases, etc.), without impacting usability or performance.
Tested Configuration(s)
  • CentOS 6.3 with Java JRE 1.6.0 running on IBM 3620 M3 (single-user mode)
FIPS Algorithms
AES Cert. #2339
DRBG Cert. #303
HMAC Cert. #1449
PBKDF vendor affirmed
SHS Cert. #2017
Other Algorithms
AES-PCBC (non-compliant); AES-CTR (non-compliant); AES-CTS (non-compliant); AES-OFB (non-compliant); AES-OFB8 (non-compliant); AES-OFB128 (non-compliant); ARC4; Blowfish; DES; Diffie-Hellman (non-compliant); DSA (non-compliant); RC2; RSA (encrypt/decrypt); Triple-DES (non-compliant); PBEWithMD5AndDES; PBEWithMD5AndTripleDES; PBEWithSHA1AndDESede; PBEWithSHA1AndRC2_40; MD2; MD5; SHA-384 (non-compliant); HMAC-MD5; HMAC SHA-384 (non-compliant); HMAC SHA-512 (non-compliant)
Software Versions
1.0

Vendor

CipherCloud, Inc.
99 Almaden Blvd., Suite 500
San Jose, CA 95113
USA

Andy Loong
aloong@ciphercloud.com
Phone: 408-663-5093

Lab

ADS
NVLAP Code: 200968-0