Module Name
Gemalto FIPS Object Module
Historical Reason
SP 800-56Arev3 transition
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Gemalto FIPS Object Module is a hardened version of the general purpose OpenSSL FIPS Object module designed to provide FIPS 140-2 validated cryptographic functionality.
Tested Configuration(s)
- Android 4.4 running on LG Nexus 4 with ARMv7 with PAA
- Android 4.4 running on LG Nexus 4 with ARMv7 without PAA
- Android 5.1 running on Samsung Galaxy S6 with ARMv8 without PAA
- Android 6.0 running on Huawei Nexus 6P with ARMv8 without PAA
- Android 7.1 running on Google Pixel XL with ARMv8 without PAA
- Android 8.1 running on Google Pixel 2 with ARMv8 without PAA
- iOS 10.3 running on iPhone 5 with ARMv7 without PAA
- iOS 11.4 running on iPhone 8 with ARMv8 without PAA (single-user mode)
- iOS 9.3 running on iPhone 6 with ARMv8 without PAA
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 219 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #2098, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength)
