Module Name
SUSE Linux Enterprise Server - Kernel Crypto API Cryptographic Module
Historical Reason
Moved to historical list due to dependency on certificate #3038
Caveat
When operated in FIPS mode with module SUSE Linux Enterprise Server 12 - OpenSSL Module v2.0 validated to FIPS 140-2 under Cert. #3038 operating in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
SUSE Linux Enterprise Server Kernel Crypto API Module provides cryptographic services to the Linux operating system kernel.
Tested Configuration(s)
- SLES12 operating on FUJITSU Server PRIMERGY CX2570 M2 inside a CX400 M1 enclosure with PAA
- SLES12 operating on FUJITSU Server PRIMERGY CX2570 M2 inside a CX400 M1 enclosure without PAA
- SLES12 operating on IBM z13 with PAI
- SLES12 operating on IBM z13 without PAI (single-user mode)
Approved Algorithms
AES |
Certs. #4608, #4609, #4610, #4611, #4612, #4613, #4614, #4615, #4616, #4617, #4618, #4672, #4673, #4674, #4675, #4677, #4678, #4679, #4681 and #4682 |
DRBG |
Certs. #1544, #1545, #1546, #1547, #1549, #1550, #1551, #1582, #1584, #1585 and #1586 |
HMAC |
Certs. #3042, #3043, #3044, #3045, #3054, #3056, #3057, #3058, #3059, #3060, #3097 and #3098 |
KTS |
AES Certs. #4608, #4611, #4614, #4681 and #4682; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Certs. #2513, #2515, #2516, #2517, #2554 and #2555 |
SHS |
Certs. #3768, #3769, #3770, #3771, #3782, #3784, #3785, #3786, #3787, #3788, #3789, #3832 and #3833 |
Triple-DES |
Certs. #2452, #2453, #2454, #2486, #2487 and #2489 |