Module Name
Entrust Authority™ Security Toolkit for C++
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode
Security Level Exceptions
Embodiment
Multi-chip standalone
Description
The Kernel is a C++ class library of cryptographic functions bound together by a common object-oriented Application Programming Interface (API). Depending on the configuration and the runtime environment of the Kernel, the algorithms may be implemented in software, hardware, or a combination of both. The industry standard Cryptoki API, as described in PCKS #11, is used as the internal interface to hardware-based cryptographic tokens. Decisions are made at runtime whether to perform operations via cryptoki or in software, based on a table that records the crypto capabilities of particlular hardware devices. This table is built up at runtime by querying the actual token through Cryptoki.
Tested Configuration(s)
- and Windows NT 4.0, SP 6a (single user mode)
- Windows 2000, SP3
- Windows XP, SP1a
Approved Algorithms
AES |
Cert. #59 |
DSA/SHA-1 |
Cert. #10 |
HMAC-SHA-1 |
Cert. #10, vendor affirmed |
RSA |
PKCS#1, vendor affirmed |
Triple-DES |
Cert. #6 |
Triple-DES MAC |
Triple-DES Cert. #6, vendor affirmed |
Other Algorithms
DES (Cert #56); DES MAC (Cert #56, vendor affirmed); CAST; CAST3; CAST5; IDEA; RC2; RC4; HMAC-MD5; HMAC-RIPEMD-160; CAST MAC; CAST3 MAC; CAST5 MAC; IDEA MAC; RC2 MAC; RC4 MAC; AES MAC; MD2; MD5; RIPEMD-160; SHA-256; DDiffie-Hellman (key agreement); SPEKE; ECDSA (non-compliant)