Module Name
Cryptographic Primitives Library
Historical Reason
SP 800-56Arev3 transition
Caveat
When operated in FIPS mode with modules Kernel Mode Cryptographic Primitives Library validated to FIPS 140-2 under Cert. #3094 operating in FIPS mode and Code Integrity validated to FIPS 140-2 under Cert. #3093 operating in FIPS mode or Secure Kernel Code Integrity validated to FIPS 140-2 under Cert. #3096 operating in FIPS mode
Security Level Exceptions
- Physical Security: N/A
- Design Assurance: Level 2
Embodiment
Multi-Chip Stand Alone
Description
The Cryptographic Primitives Library (bcryptprimitives.dll and ncryptsslp.dll) provides cryptographic services to Windows components and applications. It includes cryptographic algorithms in an easy-to-use cryptographic module via the Cryptography Next Generation (CNG) API. It can be dynamically linked into applications for the use of general-purpose FIPS 140-2 validated cryptography.
Tested Configuration(s)
- Surface Hub (x64) running on a Microsoft Surface Hub with PAA
- Windows 10 Education Creators Update (x64) running on a Microsoft Surface Pro with PAA
- Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface 3 with PAA
- Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Book with PAA
- Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Laptop with PAA
- Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Pro 4 with PAA
- Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Pro with PAA
- Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Studio with PAA
- Windows 10 Enterprise Creators Update (x64) running on an HP Pro x2 612 G2 Detachable PC with LTE with PAA
- Windows 10 Home Creators Update (x86) running on a Dell Inspiron 660s without PAA
- Windows 10 Mobile Creators Update (ARMv7) running on a Microsoft Lumia 650
- Windows 10 Mobile Creators Update (ARMv7) running on a Microsoft Lumia 950
- Windows 10 Mobile Creators Update (ARMv7) running on a Microsoft Lumia 950 XL
- Windows 10 Mobile Creators Update (ARMv7) running on an HP Elite x3
- Windows 10 Pro Creators Update (x64) on Hyper-V on Windows Server 2016 running on a Surface Pro 4 with PAA
- Windows 10 Pro Creators Update (x64) running on a Dell Latitude 5285 with PAA
- Windows 10 Pro Creators Update (x64) running on a Dell PowerEdge R630 Server with PAA
- Windows 10 Pro Creators Update (x64) running on a Dell Precision Tower 5810MT with PAA
- Windows 10 Pro Creators Update (x64) running on a Microsoft Surface 3 with LTE with PAA
- Windows 10 Pro Creators Update (x64) running on a Microsoft Surface Laptop with PAA
- Windows 10 Pro Creators Update (x64) running on a Microsoft Surface Pro 3 with PAA
- Windows 10 Pro Creators Update (x64) running on a Microsoft Surface Pro with PAA
- Windows 10 Pro Creators Update (x64) running on a Panasonic Toughbook with PAA (single-user mode)
- Windows 10 Pro Creators Update (x64) running on an HP Compaq Pro 6305 with PAA
- Windows 10 Pro Creators Update (x64) running on an HP Slimline Desktop with PAA
- Windows 10 S Creators Update (x64) running on a Microsoft Surface Laptop with PAA
Approved Algorithms
| AES |
Cert. #4624 |
| CKG |
vendor affirmed |
| CVL |
Certs. #1278 and #1281 |
| DRBG |
Cert. #1555 |
| DSA |
Cert. #1223 |
| ECDSA |
Cert. #1133 |
| HMAC |
Cert. #3061 |
| KAS |
Cert. #127 |
| KBKDF |
Cert. #140 |
| KTS |
AES Cert. #4626; key establishment methodology provides between 128 and 256 bits of encryption strength |
| PBKDF |
vendor affirmed |
| RSA |
Certs. #2521 and #2522 |
| SHS |
Cert. #3790 |
| Triple-DES |
Cert. #2459 |
Allowed Algorithms
HMAC-MD5; MD5; NDRNG
Software Versions
10.0.15063
