Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #2396

Details

Module Name
Apple iOS CoreCrypto Module v5.0
Standard
FIPS 140-2
Status
Historical
 Historical Reason
Moved to historical list due to sunsetting
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-chip standalone
Description
The Apple iOS CoreCrypto Module is a software cryptographic module running on a multi-chip standalone mobile device and provides services intended to protect data in transit and at rest.
Tested Configuration(s)
  • iOS 8.0 running on iPad (3rd generation) with Apple A5X CPU with AES hardware accelaration
  • iOS 8.0 running on iPad (3rd generation) with Apple A5X CPU without AES hardware accelaration
  • iOS 8.0 running on iPad (4th generation) with Apple A6X CPU with AES hardware accelaration
  • iOS 8.0 running on iPad (4th generation) with Apple A6X CPU without AES hardware accelaration
  • iOS 8.0 running on iPad Air 2 with Apple A8X CPU (single-user mode)
  • iOS 8.0 running on iPhone4S with Apple A5 CPU with AES hardware accelaration
  • iOS 8.0 running on iPhone4S with Apple A5 CPU without AES hardware accelaration
  • iOS 8.0 running on iPhone5 with Apple A6 CPU with AES hardware accelaration
  • iOS 8.0 running on iPhone5 with Apple A6 CPU without AES hardware accelaration
  • iOS 8.0 running on iPhone5S with Apple A7 CPU
  • iOS 8.0 running on iPhone6 (iPhone6 and iPhone6 Plus) with Apple A8 CPU
Approved Algorithms
AES Certs. #3015, #3016, #3017, #3018, #3019, #3020, #3021, #3022, #3023, #3024, #3025, #3034, #3035, #3036, #3037, #3038, #3039, #3040, #3074, #3075, #3267, #3268, #3269, #3270, #3271, #3272, #3273, #3274, #3355, #3376, #3377, #3378, #3379 and #3381
DRBG Certs. #575, #576, #577, #581, #582, #583, #584, #585, #726, #727, #728, #729, #730, #731, #732, #733, #800, #801, #802 and #804
ECDSA Certs. #623, #624, #625, #626, #627, #628, #629, #630, #670 and #672
HMAC Certs. #1907, #1908, #1909, #1910, #1911, #1916, #1917, #1918, #2066, #2067, #2068, #2069, #2070, #2071, #2072, #2073, #2137, #2151, #2152 and #2154
PBKDF vendor affirmed
RSA Certs. #1667, #1668, #1669, #1670, #1671, #1672, #1673, #1674, #1734 and #1736
SHS Certs. #2523, #2524, #2525, #2526, #2527, #2532, #2533, #2534, #2705, #2706, #2707, #2708, #2709, #2710, #2711,#2712, #2781, #2796, #2797 and #2799
Triple-DES Certs. #1856, #1857, #1858, #1859, #1860, #1861, #1862, #1863, #1910 and #1920
Other Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides 128 or 160 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength)
Software Versions
5.0

Vendor

Apple Inc.
1 Infinite Loop
Cupertino, CA 95014
USA

Shawn Geddis
geddis@apple.com
Phone: (669) 227-3579
Fax: (866) 315-1954

Validation History

Date Type Lab
6/23/2015 Initial ATSEC INFORMATION SECURITY CORP
8/15/2018 Update ATSEC INFORMATION SECURITY CORP