Module Name

SUSE Linux Enterprise Server 12 - OpenSSL Module

Standard

FIPS 140-2

Status

Historical

 Historical Reason

Moved to historical list due to sunsetting

Validation Dates

08/20/2015

Overall Level

1

Caveat

When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy

Security Level Exceptions

• Physical Security: N/A

Module Type

Software

Embodiment

Multi-chip standalone

Description

OpenSSL is an open-source library of various cryptographic algorithms written mainly in C.

Tested Configuration(s)

• SUSE Linux Enterprise Server 12 running on HP ProLiant DL320e Gen8 with PAA
• SUSE Linux Enterprise Server 12 running on HP ProLiant DL320e Gen8 without PAA (single-user mode)

FIPS Algorithms

AES	Certs. #3197, #3198 and #3199
CVL	Certs. #430 and #431
DRBG	Certs. #674, #675 and #676
DSA	Cert. #915
ECDSA	Cert. #586
HMAC	Certs. #2014, #2015 and #2016
RSA	Cert. #1628
SHS	Certs. #2645, #2646 and #2648
Triple-DES	Cert. #1823

Other Algorithms

Diffie-Hellman (CVL Cert. #431, key agreement; key establishment methodology provides 112 or 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #431, key agreement; key establishment methodology provides between 128 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength; non-compliant less than 112 bits of encryption strength); ANSI X9.31 RNG (non-compliant); MD2; MD4; MD5; MDC-2; HMAC-MD5; Blowfish; Camellia; CAST; DES; IDEA; JPAKE; RC2; RC4; RC5; RIPEMD160; SEED; TLS-SRP; Whirlpool

Software Versions

2.0