Module Name
Distech Java Cryptographic Module
Historical Reason
SP 800-56Arev3 transition
Caveat
When operated in FIPS mode
Embodiment
Multi-Chip Embedded
Description
The Distech Java Cryptographic Module provides cryptographic functionality to Distech's series of building management appliances. The module is classified under FIPS 140-2 as a firmware based, multichip-standalone module embodiment.
Tested Configuration(s)
- PCB Configuration "A" with Distech OS V4.4.4 (Kernel 3.2)
Approved Algorithms
| AES |
Cert. #4306 |
| CKG |
vendor affirmed |
| CVL |
Certs. #1020, #1021 and #1022 |
| DRBG |
Cert. #1367 |
| DSA |
Cert. #1146 |
| ECDSA |
Cert. #1014 |
| HMAC |
Cert. #2842 |
| KAS |
Cert. #103 |
| KAS |
SP 800-56Arev2, vendor affirmed |
| KBKDF |
Cert. #115 |
| KTS |
vendor affirmed |
| KTS |
AES Cert. #4306; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #2327; key establishment methodology provides 112 bits of encryption strength |
| PBKDF |
vendor affirmed |
| RSA |
Cert. #2327 |
| SHA-3 |
Cert. #12 |
| SHS |
Cert. #3545 |
| Triple-DES |
Cert. #2327 |
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); HMAC-MD5; MD5; NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
