Cryptographic Module Validation Program CMVP

Certificate #2916

Details

Module Name
Kaspersky Cryptographic Module (Pre-Boot)
Standard
FIPS 140-2
Status
Active
Sunset Date
5/29/2022
Validation Dates
05/30/2017
Overall Level
1
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
Kaspersky Cryptographic Module (Pre-Boot) is a set of software libraries that provide cryptographic services for Kaspersky Lab FDE solution in pre-boot environment.
Tested Configuration(s)
  • Kaspersky Preboot OS with BIOS running on an Intel® Core™ i5-2400 CPU @ 3.10GHz system with PAA
  • Kaspersky Preboot OS with BIOS running on an Intel® Core™2 Duo P9600 @ 2.53GHz system without PAA
  • Kaspersky Preboot OS with UEFI running on an Intel® Core™ i7-3770S CPU@ 3.10GHz system with PAA (single-user mode)
  • Kaspersky Preboot OS with UEFI running on an Intel® Core™2 Duo P9600 @ 2.53GHz system without PAA
FIPS Algorithms
AES Certs. #2849, #2959, #2960 and #2980
DRBG Certs. #502, #561, #890, #891, #896 and #897
HMAC Certs. #1789 and #1879
PBKDF vendor affirmed
RSA Certs. #1490 and #1558
SHA-3 vendor affirmed
SHS Certs. #2391 and #2492
Other Algorithms
EC Diffie-Hellman (key agreement; key establishment methodology provides 112 or 192 bits of encryption strength; non-compliant less than 112 bits of encryption strength), RSA (key wrapping; key establishment methodology provides between 112 and 270 bits of encryption strength; non-compliant less than 112 bits of encryption strength)
Software Versions
3.0.1.25

Vendor

Kaspersky Lab UK Ltd.
1st Floor, 2 Kingdom Street
Paddington, London, W2 6BD
United Kingdom

Oleg Andrianov
Phone: +7 495 797 8700

Lab

ADVANCED DATA SECURITY LLC
NVLAP Code: 200968-0