Cryptographic Module Validation Program CMVP

Certificate #3589

Details

Module Name
AKEYLESS FIPS Cryptographic Module for Distributed Fragments Cryptography
Standard
FIPS 140-2
Status
Active
Sunset Date
12/2/2023
Validation Dates
01/02/2020
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy.
Security Level Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The AKEYLESS FIPS Cryptographic Module for Distributed Fragments Cryptography ("DFC") is a cryptographic module integrated in AKEYLESS products to provide FIPS 140-2 validated cryptography for the protection of sensitive data, such as Secrets, Keys, Documents and more.
Tested Configuration(s)
  • Ubuntu 18.04 LTS running on HPE ProLiant DL60 Gen9 with Intel Xeon E5-2609 with PAA (single user mode)
  • Ubuntu 18.04 LTS running on HPE ProLiant DL60 Gen9 with Intel Xeon E5-2609 without PAA
FIPS Algorithms
AES Cert. #C904
CKG vendor affirmed
CVL Cert. #C904
DRBG Cert. #C904
DSA Cert. #C904
ECDSA Cert. #C904
HMAC Cert. #C904
RSA Cert. #C904
SHS Cert. #C904
Triple-DES Cert. #C904
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C904, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
1.0

Vendor

AKEYLESS Security Ltd
Simtat Hayerek 1
Hod Hasharon
Isreal

Oded Hareven
oded@akeyless-security.com
Refael Angel
refael@akeyless-security.com

Lab

ACUMEN SECURITY, LLC
NVLAP Code: 201029-0