Module Name
IBM Cloud Object Storage System’s™ FIPS Cryptographic Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The IBM Cloud Object Storage System’s™ FIPS Object Module is a full featured general purpose cryptographic library that is distributed as a component of ClevOS™ FIPS Edition, the underlying technology for IBM Cloud Object Store Appliances.
Tested Configuration(s)
- ClevOS 3.12.2.40-FIPS-EDITION running on Intel Xeon with PAA
- ClevOS 3.12.2.40-FIPS-EDITION running on Intel Xeon without PAA
- ClevOS 3.14.10-FIPS-EDITION running on Intel Xeon with PAA
- ClevOS 3.14.10-FIPS-EDITION running on Intel Xeon without PAA (single-user mode)
- ClevOS 3.8.0-FIPS-EDITION running on Intel Xeon with PAA
- ClevOS 3.8.0-FIPS-EDITION running on Intel Xeon without PAA
- ClevOS 3.8.2.19-FIPS-EDITION running on Intel Xeon with PAA
- ClevOS 3.8.2.19-FIPS-EDITION running on Intel Xeon without PAA
Approved Algorithms
AES |
Certs. #3611, #3612, #4422, #5229 and #C1674 |
DRBG |
Certs. #941, #942, #1428, #1995 and #C1674 |
DSA |
Certs. #1006, #1007, #1186, #1355 and #C1674 |
ECDSA |
Certs. #743, #744, #1071, #1358 and #C1674 |
HMAC |
Certs. #2318, #2319, #2935, #3461 and #C1674 |
RSA |
Certs. #1858, #1859, #2409, #2794 and #C1674 |
SHS |
Certs. #2984, #2985, #3640, #4209 and #C1674 |
Triple-DES |
Certs. #2011, #2012, #2380, #2644 and #C1674 |
Other Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)