Module Name
Security Builder® FIPS Module
Historical Reason
SP 800-56Arev3 transition
Caveat
When operated in FIPS mode
Security Level Exceptions
Embodiment
Multi-Chip Stand Alone
Description
The Security Builder® FIPS Module is a standards-based cryptographic toolkit that supports optimized Elliptic Curve Cryptography and provides application developers with sophisticated tools to flexibly integrate encryption, digital signatures and other security mechanisms into both mobile and server-based applications. The Security Builder FIPS Module is part of the Certicom Security Architecture, a comprehensive cross-platform security solution which supports multiple cryptographic software and hardware providers with a single common API.
Tested Configuration(s)
- Android 7.1.2 on Qualcomm MSM8953 64-bit ARMv8 processor running on BlackBerry KEYone smart phone with PAA
- Android 7.1.2 on Qualcomm MSM8953 64-bit ARMv8 processor running on BlackBerry KEYone smart phone without PAA (single-user mode)
- QNX SDP 6.6 on Cortex-A8 ARMv7 processor running on Boundary Devices NITROGEN6X i.MX6Q development board with PAA
- QNX SDP 6.6 on Cortex-A8 ARMv7 processor running on Boundary Devices NITROGEN6X i.MX6Q development board without PAA
- QNX SDP 7 on Cortex-A57/A-53 64-bit ARMv8 processor running on Renesas R-Car Pro(M3) development board with PAA
- QNX SDP 7 on Cortex-A57/A-53 64-bit ARMv8 processor running on Renesas R-Car Pro(M3) development board without PAA
- QNX SDP 7 on Intel Atom C3558 64-bit x86 processor running on SUPERMICRO A2SDi-4C-HLN4F-O server mother board with PAA
- QNX SDP 7 on Intel Atom C3558 64-bit x86 processor running on SUPERMICRO A2SDi-4C-HLN4F-O server mother board without PAA
- QNX SDP 7 on TI AM335x ARMv7 processor running on BeagleBone Black AM335X development board with PAA
- QNX SDP 7 on TI AM335x ARMv7 processor running on BeagleBone Black AM335X development board without PAA
Approved Algorithms
| AES |
Cert. #5387 |
| CKG |
vendor affirmed |
| CVL |
Certs. #1849, #1850 and #1851 |
| DRBG |
Cert. #2085 |
| DSA |
Cert. #1391 |
| ECDSA |
Cert. #1423 |
| HMAC |
Cert. #3568 |
| KAS |
Cert. #178 |
| KTS |
AES Cert. #5387; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
vendor affirmed |
| RSA |
Cert. #2881 |
| SHA-3 |
Cert. #43 |
| SHS |
Cert. #4321 |
| Triple-DES |
Cert. #2714 |
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1849 and #1850, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); ECMQV (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (CVL Cert. #1851, key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
