Cryptographic Module Validation Program CMVP

Certificate #3544

Details

Module Name
Cryptographic Primitives Library
Standard
FIPS 140-2
Status
Active
Sunset Date
10/2/2024
Validation Dates
10/03/2019
Overall Level
1
Caveat
When operated in FIPS mode with modules Kernel Mode Cryptographic Primitives Library validated to FIPS 140-2 under Cert. #3527 operating in FIPS mode and Code Integrity validated to FIPS 140-2 under Cert. #3093 operating in FIPS mode or Secure Kernel Code Integrity validated to FIPS 140-2 under Cert. #3096 operating in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 2
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Cryptographic Primitives Library (bcryptprimitives.dll) provides cryptographic services to Windows components and applications. It includes cryptographic algorithms in an easy-to-use cryptographic module via the Cryptography Next Generation (CNG) API. It can be dynamically linked into applications for the use of general-purpose FIPS 140-2 validated cryptography.
Tested Configuration(s)
  • Surface Hub (x64) running on a Microsoft Surface Hub with an Intel Core i5 with PAA
  • Windows 10 Education Creators Update (x64) running on a Microsoft Surface Pro with an Intel Core m3 with PAA
  • Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface 3 with an Intel Atom x7 with PAA
  • Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Book with an Intel Core i7 with PAA
  • Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Laptop with an Intel Core i5 with PAA
  • Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Pro 4 with an Intel Core i5 with PAA
  • Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Pro with an Intel Core m3 with PAA
  • Windows 10 Enterprise Creators Update (x64) running on a Microsoft Surface Studio with an Intel Core i7 with PAA
  • Windows 10 Enterprise Creators Update (x64) running on an HP Pro x2 612 G2 Detachable PC with LTE with an Intel Core i7 with PAA
  • Windows 10 Home Creators Update (x86) running on a Dell Inspiron 660s with an Intel Core i3 without PAA
  • Windows 10 Mobile Creators Update (ARMv7) running on a Microsoft Lumia 650 with a Qualcomm Snapdragon 212 (A7)
  • Windows 10 Mobile Creators Update (ARMv7) running on a Microsoft Lumia 950 with a Qualcomm Snapdragon 808 (A57, A53)
  • Windows 10 Mobile Creators Update (ARMv7) running on a Microsoft Lumia 950 XL with a Qualcomm Snapdragon 810 (A57, A53)
  • Windows 10 Mobile Creators Update (ARMv7) running on an HP Elite x3 with a Qualcomm Snapdragon 820 (Kryo)
  • Windows 10 Pro Creators Update (x64) on Hyper-V on Windows Server 2016 running on a Surface Pro 4 with an Intel Core i5 with PAA
  • Windows 10 Pro Creators Update (x64) running on a Dell Latitude 5285 with an Intel Core i5 with PAA
  • Windows 10 Pro Creators Update (x64) running on a Dell PowerEdge R630 Server with an Intel Xeon with PAA
  • Windows 10 Pro Creators Update (x64) running on a Dell Precision Tower 5810MT with an Intel Xeon with PAA
  • Windows 10 Pro Creators Update (x64) running on a Microsoft Surface 3 with LTE with an Intel Atom x7 with PAA
  • Windows 10 Pro Creators Update (x64) running on a Microsoft Surface Laptop with an Intel Core i5 with PAA
  • Windows 10 Pro Creators Update (x64) running on a Microsoft Surface Pro 3 with an Intel Core i7 with PAA
  • Windows 10 Pro Creators Update (x64) running on a Microsoft Surface Pro with an Intel Core m3 with PAA
  • Windows 10 Pro Creators Update (x64) running on a Panasonic Toughbook with an Intel Core i5 with PAA (single-user mode)
  • Windows 10 Pro Creators Update (x64) running on an HP Compaq Pro 6305 with an AMD A4 with PAA
  • Windows 10 Pro Creators Update (x64) running on an HP Slimline Desktop with an Intel Pentium with PAA
  • Windows 10 S Creators Update (x64) running on a Microsoft Surface Laptop with an Intel Core i5 with PAA
FIPS Algorithms
AES Certs. #5300 and #5317
CKG vendor affirmed
CVL Certs. #1764 and #1765
DRBG Cert. #2037
DSA Cert. #1373
ECDSA Cert. #1386
HMAC Cert. #3499
KAS Cert. #173
KBKDF Cert. #187
KTS AES Cert. #5317; key establishment methodology provides between 128 and 256 bits of encryption strength
PBKDF vendor affirmed
RSA Certs. #2522, #2836 and #2844
SHS Certs. #3790 and #4253
Triple-DES Cert. #2677
Allowed Algorithms
HMAC-MD5; MD5; NDRNG
Software Versions
10.0.15063.728

Vendor

Microsoft Corporation
One Microsoft Way
Redmond, WA 98052-6399
USA

Mike Grimm
FIPS@microsoft.com
Phone: 800-Microsoft

Lab

LEIDOS CSTL
NVLAP Code: 200427-0