Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3594


Module Name
Key Management Security Module (KMSM) Cryptographic Module
FIPS 140-2
Sunset Date
Overall Level
The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Physical Security: N/A
Module Type
Multi-Chip Stand Alone
The KeyNexus Inc. KMSM cryptographic module is a software library which provides cryptographic functionality to the KeyNexus Key Management Service. KeyNexus Unified Key Manager (UKM) allows enterprises to leverage a single, central key management server to support many different encryption and security use cases. KeyNexus UKM can be deployed as a hosted service, on-premise in any virtual environment, in public or private clouds and embedded in a variety of chipset compute environments.
Tested Configuration(s)
  • Ubuntu 14.04.1 with Java JRE 1.8 on VirtualBox 5.2 on Windows 7 Professional 7 64-bit running on a Dell OptiPlex 980 with an Intel Core i7-870
Approved Algorithms
AES Cert. #5453
CKG vendor affirmed
DRBG Cert. #2137
ECDSA Cert. #1454
HMAC Cert. #3611
KTS AES Cert. #5453; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Cert. #2741; key establishment methodology provides 112 bits of encryption strength
RSA Cert. #2927
SHA-3 Cert. #46
SHS Cert. #4373
Triple-DES Cert. #2741
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
Software Versions


KeyNexus, Inc.
650 W. Georgia St., Suite 3200
Vancouver, BC V6B 4P7

KeyNexus Support

Validation History

Date Type Lab
1/7/2020 Initial EWA CANADA