Module Name
ValiCert Security Module
Historical Reason
Validation Sunsetting Policy - FIPS 140-1 Certificate
Caveat
When operated in FIPS mode
Security Level Exceptions
- Operating System Security: Tested as meeting Level 1 with Microsoft Windows 2000 Server, SUN Solaris 2.8 (single user mode)
Embodiment
Multi-chip standalone
Description
The ValiCert VA Toolkit 4.3 is built on our FIPS 140-1 cryptographic module. The 4.3 toolkit release has several new APIs and features. The library is also used within ValiCert Desktop Validator, Server Validators, Enterprise Validation Server, Document Authority, and Secure Transport Products. New features in VA Toolkit 4.3 include New APIs for fetching CRLs; Extended APIs for Certificate-Store ; Extended support for CRLs ; JITC compliance features ; TLS ; SSL Tunneling via Proxy Servers. The 4.3 release and prior releases support OCSP, SCVP, CRL, CRLdp protocols over HTTP, and HTTPS. The VA Toolkit 4.3 supports Windows 98/ NT/2000, Solaris 5.6/5.7/5.8, HP UX 11.0, and AIX 4.3. The Toolkit works along with FIPS 140-1 Level 3 and Level 4 validated hardware devices: e.g. nCipher, Baltimore, and Chrysalis-ITS hardware signing / encryption modules. The toolkit is also tested for interoperability with various PKI vendors: AOL/Netscape, Sun/Iplanet, Entrust, Baltimore, Verisign, Computer Associates and RSA Security products.
Approved Algorithms
HMAC-SHA-1 |
Cert. #72, vendor affirmed |
RSA |
PKCS#1, vendor affirmed |
SHA-1 |
Cert. #72 |
Triple-DES |
Cert. #83 |
Other Algorithms
DES (Cert. #144); MD2; MD5; RC2; RC4; RSA encryption (key distribution)