Module Name
AKEYLESS FIPS Cryptographic Module for Distributed Fragments Cryptography
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys.
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The AKEYLESS FIPS Cryptographic Module for Distributed Fragments Cryptography ("DFC") is a cryptographic module integrated in AKEYLESS products to provide FIPS 140-2 validated cryptography for the protection of sensitive data, such as Secrets, Keys, Documents and more.
Tested Configuration(s)
- Ubuntu 18.04 LTS running on HPE ProLiant DL60 Gen9 with Intel Xeon E5-2609 with PAA (single user mode)
- Ubuntu 18.04 LTS running on HPE ProLiant DL60 Gen9 with Intel Xeon E5-2609 without PAA
Approved Algorithms
AES |
Cert. #C904 |
CKG |
vendor affirmed |
DRBG |
Cert #C904 |
DSA |
Cert #C904 |
ECDSA |
Cert #C904 |
HMAC |
Cert #C904 |
KAS-SSC |
vendor affirmed |
RSA |
Cert #C904 |
SHS |
Cert #C904 |
Triple-DES |
Cert #C904 |
Allowed Algorithms
RSA (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength)