Cryptographic Module Validation Program CMVP

Certificate #3513

Details

Module Name
Secure Kernel Code Integrity (skci.dll) in Windows 10 Pro, Windows 10 Enterprise, Windows 10 Enterprise LTSB, Windows Server 2016 Standard, Windows Server 2016 Datacenter, Windows Storage Server 2016
Standard
FIPS 140-2
Status
Active
Sunset Date
8/21/2024
Validation Dates
08/22/2019
Overall Level
1
Caveat
When operated in FIPS mode with the module Code Integrity (ci.dll) in Microsoft Windows 10, Windows 10 Pro, Windows 10 Enterprise, Windows 10 Enterprise LTSB, Windows 10 Mobile, Windows Server 2016 Standard, Windows Server 2016 Datacenter, Windows Storage Server 2016 under Cert. #3510 operating in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 2
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
Secure Kernel Code Integrity (SKCI) running in the Virtual Secure Mode (VSM) of the Hyper-V hypervisor will only grant execute access to physical pages in the kernel that have been successfully verified. Executable pages will not have write permission outside of Hyper-V. Therefore, only verified code can be executed.
Tested Configuration(s)
  • Windows 10 Enterprise Anniversary Update (x64) running on a Dell Precision Tower 5810MT with an Intel Xeon E5
  • Windows 10 Enterprise Anniversary Update (x64) running on a HP Compaq Pro 6305 with an AMD A4
  • Windows 10 Enterprise Anniversary Update (x64) running on a Microsoft Surface Book with an Intel Core i7
  • Windows 10 Enterprise Anniversary Update (x64) running on a Microsoft Surface Pro 3 with an Intel Core i7
  • Windows 10 Enterprise Anniversary Update (x64) running on a Microsoft Surface Pro 4 with an Intel Core i5
  • Windows 10 Enterprise LTSB Anniversary Update (x64) running on a Dell Precision Tower 5810MT with an Intel Xeon E5
  • Windows 10 Enterprise LTSB Anniversary Update (x64) running on a Dell XPS 8700 with an Intel Core i7
  • Windows 10 Pro Anniversary Update (x64) running on a Dell Precision Tower 5810MT with an Intel Xeon E5
  • Windows 10 Pro Anniversary Update (x64) running on a Microsoft Surface Book with an Intel Core i7
  • Windows 10 Pro Anniversary Update (x64) running on a Microsoft Surface Pro 3 with an Intel Core i7
  • Windows 10 Pro Anniversary Update (x64) running on a Microsoft Surface Pro 4 with an Intel Core i5
  • Windows Server 2016 Datacenter Edition (x64) running on a Dell PowerEdge R630 Server with an Intel Xeon E5
  • Windows Server 2016 Standard Edition (x64) running on a Dell PowerEdge R630 Server with an Intel Xeon E5
  • Windows Server 2016 Standard Edition (x64) running on a HP Compaq Pro 6305 with an AMD A4
  • Windows Storage Server 2016 (x64) running on a Dell PowerEdge R630 Server with an Intel Xeon E5 (single-user mode)
FIPS Algorithms
RSA Cert. #2833
SHS Cert. #4250
Allowed Algorithms
N/A
Software Versions
10.0.14393.1770

Vendor

Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Mike Grimm
FIPS@microsoft.com
Phone: 800-Microsoft

Lab

LEIDOS CSTL
NVLAP Code: 200427-0