Cryptographic Module Validation Program CMVP

Certificate #3449

Details

Module Name
SAP CommonCryptoLib Crypto Kernel
Standard
FIPS 140-2
Status
Active
Sunset Date
5/1/2024
Validation Dates
05/02/2019
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
SAP CommonCryptoLib Crypto Kernel v8.4.47.0 is a shared library, i.e. it consists of software only. SAP CommonCryptoLib Crypto Kernel provides an API in terms of C++ methods for key management and operation of cryptographic functions.
Tested Configuration(s)
  • AIX 5.2 64-bit running on a IBM eServer p5 505 without PAA [2]
  • AIX 6.1 64-bit on IBM PowerVM 2.2 running on a IBM Power 750 Express without PAA [1][2]
  • HP-UX 11.11 64-bit running on a HP Server rp3440 [2]
  • HP-UX 11.23 64-bit running on a HP Server rx5670 [2]
  • HP-UX 11.31 64-bit running on a HP Integrity rx6600 [1][2]
  • SunOS 5.10 64-bit running on a Fujitsu PrimePower 650 [1][2]
  • SunOS 5.10 64-bit running on a Sun Fire X4150 without PAA [1][2]
  • SunOS 5.9 64-bit running on a Sun Fire V440 [2]
  • SUSE Linux Enterprise Server 11 SP1 (Linux Kernel 2.6.32) 32-bit running on a HP ProLiant DL385-G2 DC [1]
  • SUSE Linux Enterprise Server 11 SP1 (Linux Kernel 2.6.32) 64-bit on IBM PowerVM 2.2 running on a IBM Power 750 Express without PAA [1][2]
  • SUSE Linux Enterprise Server 11 SP1 (Linux Kernel 2.6.32) 64-bit running on a HP Integrity rx2660 [2]
  • SUSE Linux Enterprise Server 11 SP3 (Linux Kernel 3.0.101) 64-bit on IBM PowerVM 2.2 running on a IBM Power System S824 with PAA [2]
  • SUSE Linux Enterprise Server 11 SP3 (Linux Kernel 3.0.101) 64-bit on Vmware ESXi 5.1.0 running on a HP ProLiant DL580 G7 with PAA [1][2]
  • SUSE Linux Enterprise Server 11 SP4 (Linux Kernel 3.0.101) 64-bit on IBM z/VM 6.2.0 running on a IBM zEnterprise 196 (2817 series) [2]
  • SUSE Linux Enterprise Server 12 SP1 (Linux Kernel 3.12.51) 64-bit on IBM PowerVM 2.2 running on a IBM Power System E870 [2]
  • SUSE Linux Enterprise Server 9 SP2 (Linux Kernel 2.6.5) 64-bit running on a HP ProLiant DL585 without PAA [1][2]
  • Windows Server 2008 R2 SP1 64-bit on Vmware ESXi 5.1.0 running on a HP ProLiant DL580 G7 with PAA [1][2] (single-user mode)
  • Windows Server 2008 SP2 64-bit running on a HP ProLiant DL380 G6 without PAA [1][2]
FIPS Algorithms
AES Certs. #3665 and #3666
CVL Certs. #670, #671, #672, #673, #674, and #675
DRBG Certs. #986 and #987
DSA Certs. #1035 and #1036
ECDSA Certs. #772 and #773
HMAC Certs. #2415 and #2416
RSA Certs. #1898 and #1899
SHS Certs. #3083 and #3084
Triple-DES Certs. #2047 and #2048
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
8.4.47.0 32-bit [1] and 64-bit [2]

Vendor

SAP SE
Dietmar-Hopp-Allee 16
Walldorf 69190
Germany

Stephan André
stephan.andre@sap.com
Phone: +49-6227-7-47474
Fax: +49-6227-78-55975
Thomas Rothe
t.rothe@sap.com
Phone: +49-6227-7-47474
Fax: +49-6227-78-55989

Lab

TÜV INFORMATIONSTECHNIK GMBH
NVLAP Code: 200636-0