U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.


Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3568


Module Name
Hillrom Cryptographic Security Module
FIPS 140-2
 Historical Reason
186-2 transition
Overall Level
When built, installed, protected and initialized as assumed by the Crypto Officer role and as specified in the provided Security Policy and operated in FIPS mode. Appendix A of the provided Security Policy specifies the actual distribution tar file containing the source code of this module. There shall be no additions, deletions or alterations to the tar file contents as used during module build. The distribution tar file shall be verified as specified in Appendix A of the provided Security Policy. Installation and protection shall be completed as specified in Appendix A of the provided Security Policy. Initialization shall be invoked as per Section 4 of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a non FIPS 140-2 compliant module. This validation entry is a non-security relevant modification to Cert. #2473
Security Level Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Multi-Chip Stand Alone
The Hillrom Cryptographic Security Module is an implementation of the OpenSSL FIPS Object Module 2.0. It is designed for ease of use with the popular OpenSSL cryptographic library and toolkit and is available for use without charge for a wide variety of platforms. The basic validation can also be extended quickly and affordably to accommodate new platforms and many types of modifications.
Tested Configuration(s)
  • Yocto Linux 3.10 running on Freescale i.MX6 (ARMv7) with PAA (gcc Compiler Version 4.8.1)
  • Yocto Linux 3.10 running on Freescale i.MX6 (ARMv7) without PAA (gcc Compiler Version 4.8.1) (single-user mode)
Approved Algorithms
AES Cert. #3264
CVL Cert. #472
DRBG Cert. #723
DSA Cert. #933
ECDSA Cert. #620
HMAC Cert. #2063
RSA Cert. #1664
SHS Cert. #2702
Triple-DES Cert. #1853
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #472, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions


Hill-Rom Holdings, Inc.
130 E. Randolph St.
Suite 1000
Chicago, IL 60601

Chief Technology Officer
Phone: 312-819-7200

Validation History

Date Type Lab
11/21/2019 Initial ACUMEN SECURITY, LLC