Cryptographic Module Validation Program CMVP

Certificate #2671

Details

Module Name
Duo Security Cryptographic Module
Standard
FIPS 140-2
Status
Historical
 Historical Reason
186-2 transition
Validation Dates
07/07/2016
Overall Level
1
Caveat
When operated in FIPS mode. This validation entry is a non-security relevant modification to Cert. #1938. The module generates cryptographic keys whose strengths are modified by available entropy.
Security Level Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Duo Security Cryptographic Module is a cryptographic engine for mobile devices. The module delivers core cryptographic functions to Duo Security's Two-Factor Authentication mobile application.
Tested Configuration(s)
  • Android 4.0 running on a Galaxy Nexus
FIPS Algorithms
AES Cert. #2125
CVL Cert. #28
DRBG Cert. #233
DSA Cert. #666
ECDSA Cert. #319
HMAC Cert. #1296
RSA Cert. #1094
SHS Cert. #1849
Triple-DES Cert. #1351
Other Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); EC Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); RNG; Dual EC DRBG
Software Versions
1.0

Vendor

Duo Security, Inc.
123 North Ashley Street
Suite 200
Ann Arbor, MI 48104
USA

Duo Mobile Security
mobilesec@duosecurity.com

Lab

Acumen Security
NVLAP Code: 201029-0