Cryptographic Module Validation Program CMVP

Certificate #3188

Details

Module Name
Zscaler Java Crypto Module
Standard
FIPS 140-2
Status
Active
Sunset Date
12/12/2022
Validation Dates
05/31/2018
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. No assurance of the minimum strength of generated keys
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
Zscaler Java Crypto Module offloads functions for secure key management, data integrity, data at rest encryption, and secure communications to a trusted implementation.
Tested Configuration(s)
  • CentOS 6 and OpenJDK 1.7 running on HP ProLiant DL360 G7 Server using an Intel Xeon X5670 (single-user mode)
FIPS Algorithms
AES Cert. #4702
CKG vendor affirmed
CVL Certs. #1342, #1343, #1344 and #1345
DRBG Cert. #1600
DSA Cert. #1244
ECDSA Cert. #1160
HMAC Cert. #3114
KAS Cert. #130
KAS SP 800-56Arev2, vendor affirmed
KBKDF Cert. #145
KTS AES Cert. #4702; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS SP800-56B, vendor affirmed
KTS Triple-DES Cert. #2494; key establishment methodology provides 112 bits of encryption strength
PBKDF vendor affirmed
RSA Cert. #2562
SHA-3 Cert. #24
SHS Cert. #3849
Triple-DES Cert. #2494
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength); MD5; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
Software Versions
2.1

Vendor

Zscaler Inc.
110 Rose Orchard Way
San Jose, CA 95134
USA

STEPHEN R. KOVAC
KOVAC@ZSCALER.COM
Phone: 727-288-7144
MANOJ APTE
MANOJ@ZSCALER.COM
Phone: 408-679-4108

Lab

UL VERIFICATION SERVICES INC
NVLAP Code: 100432-0