Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3608

Details

Module Name
Wickr FIPS Object Module for OpenSSL
Standard
FIPS 140-2
Status
Historical
 Historical Reason
Moved to historical list due to sunsetting
Overall Level
1
Caveat
When built, installed, protected and initialized as assumed by the Crypto Officer role and as specified in the provided Security Policy. Appendix A of the provided Security Policy specifies the actual distribution tar file containing the source code of this module. There shall be no additions, deletions or alterations to the tar file contents as used during module build. The distribution tar file shall be verified as specified in Appendix A of the provided Security Policy. Installation and protection shall be completed as specified in Appendix A of the provided Security Policy. Initialization shall be invoked as per Section 4 of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a non FIPS 140-2 compliant module. This validation entry is a non-security relevant modification to Cert. #2398. No assurance of the minimum strength of generated keys
Security Level Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Wickr FIPS Object Module for OpenSSL is a general purpose cryptographic module compiled from the source code for the OpenSSL FIPS Object Module 2.0.16.
Tested Configuration(s)
  • Android 9 running on a Samsung Galaxy S10 with a Qualcomm Snapdragon 855 (Kryo) with PAA
  • Android 9 running on a Samsung Galaxy S10 with a Qualcomm Snapdragon 855 (Kryo) without PAA
  • Apple iOS 13.1 running on an Apple iPhone X with an Apple A11 Bionic (Monsoon, Mistral) with PAA
  • Apple iOS 13.1 running on an Apple iPhone X with an Apple A11 Bionic (Monsoon, Mistral) without PAA
  • Apple macOS Mojave running on an Apple Macbook Pro A1502 with an Intel Core i5 with PAA
  • Apple macOS Mojave running on an Apple Macbook Pro A1502 with an Intel Core i5 without PAA
  • Microsoft Windows 10 April 2018 Update running on an IBM ThinkPad with an Intel Core i7 with PAA
  • Microsoft Windows 10 April 2018 Update running on an IBM ThinkPad with an Intel Core i7 without PAA (single-user mode)
  • Ubuntu 18.04 running on an IBM ThinkPad with an Intel Core i7 with PAA
  • Ubuntu 18.04 running on an IBM ThinkPad with an Intel Core i7 without PAA
Approved Algorithms
AES Cert. #C1359
CVL Cert. #C1359
DRBG Cert. #C1359
DSA Cert. #C1359
ECDSA Cert. #C1359
HMAC Cert. #C1359
RSA Cert. #C1359
SHS Cert. #C1359
Triple-DES Cert. #C1359
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C1359, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
2.0.16

Vendor

Wickr Inc.
1459 18th St.
#313
San Francisco, CA 94107
USA

Validation History

Date Type Lab
1/24/2020 Initial LEIDOS CSTL