Module Name
Key Management Security Module (KMSM) Cryptographic Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
Embodiment
Multi-Chip Stand Alone
Description
The KeyNexus Inc. KMSM cryptographic module is a software library which provides cryptographic functionality to the KeyNexus Key Management Service.
KeyNexus Unified Key Manager (UKM) allows enterprises to leverage a single, central key management server to support many different encryption and security use cases. KeyNexus UKM can be deployed as a hosted service, on-premise in any virtual environment, in public or private clouds and embedded in a variety of chipset compute environments.
Tested Configuration(s)
- Ubuntu 14.04.1 with Java JRE 1.8 on VirtualBox 5.2 on Windows 7 Professional 7 64-bit running on a Dell OptiPlex 980 with an Intel Core i7-870
Approved Algorithms
| AES |
Cert. #5453 |
| CKG |
vendor affirmed |
| DRBG |
Cert. #2137 |
| ECDSA |
Cert. #1454 |
| HMAC |
Cert. #3611 |
| KTS |
AES Cert. #5453; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Cert. #2741; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Cert. #2927 |
| SHA-3 |
Cert. #46 |
| SHS |
Cert. #4373 |
| Triple-DES |
Cert. #2741 |
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides 112 or 128 bits of encryption strength)
