Cryptographic Module Validation Program CMVP

Certificate #2849

Details

Module Name
Symantec Messaging Gateway Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
2/26/2022
Validation Dates
02/27/2017;04/16/2019
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Symantec Messaging Gateway Cryptographic Module provides cryptographic functions for the Messaging Gateway platforms software. The module's logical cryptographic boundary is the shared library files and their integrity check HMAC files. The module is a multi-chip standalone embodiment installed on a General Purpose Device. All operations of the module occur via calls from host applications and their respective internal daemons/processes. As such there are no untrusted services calling the services of the module.
Tested Configuration(s)
  • CentOS 6 running on a Dell PowerEdge R430 with Intel Xeon E5-2600
FIPS Algorithms
AES Cert. #4124
CVL Cert. #931
DRBG Cert. #1244
DSA Cert. #1117
ECDSA Cert. #939
HMAC Cert. #2695
RSA Cert. #2238
SHS Cert. #3393
Triple-DES Cert. #2255
Other Algorithms
EC Diffie-Hellman (CVL Cert. #931, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); AES XTS (AES Cert. #4124; non-compliant); PRNG
Software Versions
1.0

Vendor

Symantec Corporation
350 Ellis Street
Mountain View, CA 94043
USA

Lab

EWA CANADA
NVLAP Code: 200556-0