U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #2932

Details

Module Name
BitLocker® Windows OS Loader (winload) in Microsoft Windows 10, Windows 10 Pro, Windows 10 Enterprise, Windows 10 Enterprise LTSB, Windows 10 Mobile, Windows Server 2016 Standard, Windows Server 2016 Datacenter, Windows Storage Server 2016, Azure Host OS (version 1.65)
Standard
FIPS 140-2
Status
Active
Sunset Date
1/25/2022
Overall Level
1
Caveat
When operated in FIPS mode with module Boot Manager in Microsoft Windows 10, Windows 10 Pro, Windows 10 Enterprise, Windows 10 Enterprise LTSB, Windows 10 Mobile, Windows Server 2016 Standard, Windows Server 2016 Datacenter, Windows Storage Server 2016 validated to FIPS 140-2 under Cert. #2931 operating in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 2
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The BitLocker® Windows OS Loader loads the boot-critical driver and OS kernel image files.
Tested Configuration(s)
  • Azure Host OS (x64) running on a Dell PowerEdge R840 Server with an Intel Xeon Platinum 8260 with PAA
  • Windows 10 Anniversary Update (x64) running on a Dell XPS 8700 with PAA
  • Windows 10 Anniversary Update (x64) running on a Microsoft Surface 3 with PAA
  • Windows 10 Anniversary Update (x86) running on a Dell Inspiron 660s without PAA
  • Windows 10 Enterprise Anniversary Update (x64) running on a Dell Precision Tower 5810MT with PAA
  • Windows 10 Enterprise Anniversary Update (x64) running on a HP Compaq Pro 6305 with PAA
  • Windows 10 Enterprise Anniversary Update (x64) running on a Microsoft Surface Book with PAA
  • Windows 10 Enterprise Anniversary Update (x64) running on a Microsoft Surface Pro 3 with PAA
  • Windows 10 Enterprise Anniversary Update (x64) running on a Microsoft Surface Pro 4 with PAA
  • Windows 10 Enterprise Anniversary Update (x86) running on a Dell Inspiron 660s without PAA
  • Windows 10 Enterprise LTSB Anniversary Update (x64) running on a Dell Precision Tower 5810MT with PAA
  • Windows 10 Enterprise LTSB Anniversary Update (x64) running on a Dell XPS 8700 with PAA
  • Windows 10 Enterprise LTSB Anniversary Update (x86) running on a Dell Inspiron 660s without PAA
  • Windows 10 Mobile Anniversary Update (ARMv7) running on a Microsoft Lumia 950
  • Windows 10 Pro Anniversary Update (x64) running on a Dell Precision Tower 5810MT with PAA
  • Windows 10 Pro Anniversary Update (x64) running on a Microsoft Surface Book with PAA
  • Windows 10 Pro Anniversary Update (x64) running on a Microsoft Surface Pro 3 with PAA
  • Windows 10 Pro Anniversary Update (x64) running on a Microsoft Surface Pro 4 with PAA
  • Windows 10 Pro Anniversary Update (x86) running on a Dell Inspiron 660s without PAA
  • Windows Server 2016 Datacenter Edition (x64) running on a Dell PowerEdge R630 Server with PAA
  • Windows Server 2016 Standard Edition (x64) running on a Dell PowerEdge R630 Server with PAA
  • Windows Server 2016 Standard Edition (x64) running on a HP Compaq Pro 6305 with PAA
  • Windows Storage Server 2016 (x64) running on a Dell PowerEdge R630 Server with PAA (single-user mode)
FIPS Algorithms
AES Certs. #4061, #4064, #C2046 and #C2060
RSA Certs. #2193 and #C2062
SHS Certs. #3347 and #C2046
Other Algorithms
NDRNG
Software Versions
10.0.14393 and Azure Host OS version 1.65

Vendor

Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Mike Grimm
FIPS@microsoft.com
Phone: 800-Microsoft

Validation History

Date Type Lab
1/26/2017 Initial LEIDOS CSTL
9/1/2021 Update LEIDOS CSTL