Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3361

Details

Module Name
Titan Security Key, Chip Boundary
Standard
FIPS 140-2
Status
Historical
 Historical Reason
SP 800-56Arev3 transition
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Single Chip
Description
Implemented with Google's "Titan" secure microcontroller and custom firmware, the Titan Security Key is a FIPS-compliant Universal 2nd Factor (U2F) authenticator and hardware root of trust.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Cert. #4630
CKG vendor affirmed
CVL Cert. #1290
DRBG Cert. #1558
ECDSA Cert. #1139
HMAC Cert. #3065
SHS Cert. #3794
Allowed Algorithms
EC Diffie-Hellman (key agreement, key establishment methodology provides 128 bits of encryption strength); NDRNG
Hardware Versions
H1B2
Firmware Versions
1.1

Vendor

Google, Inc.
1600 Amphitheatre Parkway
n/a
n/a
Mountain View, CA 94043
USA

FIPS Crypto Officer
FIPS-crypto-officer@google.com

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
2/4/2019 Initial ACUMEN SECURITY, LLC