Module Name
Oracle Linux 6 Libreswan Cryptographic Module
Historical Reason
SP 800-56Arev3 transition
Caveat
When operated in FIPS mode with Oracle Linux 6 NSS Cryptographic Module validated to FIPS 140-2 under Cert. #3111 operating in FIPS mode and Oracle Linux OpenSSL Cryptographic Module validated to FIPS 140-2 under Cert. #3017 operating in FIPS mode
Security Level Exceptions
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Oracle Linux 6 Libreswan Cryptographic Module is a framework for providing cryptographic services to other network entities implementing the IKEv1 and IKEv2 protocols.
Tested Configuration(s)
- Oracle Linux 6.9 64 bit running on Oracle Server X6-2 with PAA
- Oracle Linux 6.9 64 bit running on Oracle Server X6-2 without PAA
- Oracle Linux 6.9 64 bit running on Oracle Server X7-2 with PAA€
- Oracle Linux 6.9 64 bit running on Oracle Server X7-2 without PAA (single-user mode)
Allowed Algorithms
Diffie-Hellman (CVL Cert. #1417 and #1924 with CVL Cert. #1427 and #2081, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #1417 and #1924 with CVL Cert. #1427 and #2081, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
R6-1.0.0