Module Name
Deep Discovery Analyzer OpenSSL Cryptographic Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
This validation entry is a non-security-relevant modification to Cert. #2398. When built, installed, protected and initialized as assumed by the Crypto Officer role and as specified in the provided Security Policy. Appendix A of the provided Security Policy specifies the actual distribution tar file containing the source code of this module. There shall be no additions, deletions or alterations to the tar file contents as used during module build. The distribution tar file shall be verified as specified in Appendix A of the provided Security Policy. Installation and protection shall be completed as specified in Appendix A of the provided Security Policy. Initialization shall be invoked as per Section 4 of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a non FIPS 140-2 compliant module. No assurance of the minimum strength of generated keys.
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Deep Discovery Analyzer OpenSSL Cryptographic Module is a software library providing a C-language application program interface (API) for use by other processes that require cryptographic functionality.
Tested Configuration(s)
- CentOS 7.1 on DDAN 1000v1 (Dell OEMR R720) with Intel Xeon E5-2620v2 (single-user mode)
- CentOS 7.1 on DDAN 1100v1 (Dell OEMR R730XL) with Intel Xeon E5-2650v3
- CentOS 7.1 on DDAN 1200v1 (Dell OEMR R740XL) with Intel Xeon Gold 5118
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C874, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)