U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3711

Details

Module Name
Alteryx Cryptographic Module
Standard
FIPS 140-2
Status
Historical
 Historical Reason
Moved to historical list due to sunsetting
Overall Level
1
Caveat
When operated in FIPS mode and built, installed, protected and initialized as assumed by the Crypto Officer role and as specified in the provided Security Policy and operated in FIPS mode. Appendix A of the provided Security Policy specifies the actual distribution tar file containing the source code of this module. There shall be no additions, deletions or alterations to the tar file contents as used during module build. The distribution tar file shall be verified as specified in Appendix A of the provided Security Policy. Installation and protection shall be completed as specified in Appendix A of the provided Security Policy. Initialization shall be invoked as per Section 4 of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a non FIPS 140-2 compliant module. This validation entry is a non-security relevant modification to Cert. #3220.
Security Level Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Alteryx FIPS Module for OpenSSL is a general-purpose cryptographic module integrated in Alteryx’s products to provide FIPS 140-2 validated cryptography for the protection of sensitive information.
Tested Configuration(s)
  • Windows Server 2016 running on HPE ProLiant DL60 Gen9 with Intel Xeon E5-2609 with PAA
  • Windows Server 2016 running on HPE ProLiant DL60 Gen9 with Intel Xeon E5-2609 without PAA (single-user mode)
Approved Algorithms
AES Cert. #C1990
CVL Cert. #C1990
DRBG Cert. #C1990
DSA Cert. #C1990
ECDSA Cert. #C1990
HMAC Cert. #C1990
RSA Cert. #C1990
SHS Cert. #C1990
Triple-DES Cert. #C1990
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C1990, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
2.0.9, 2.0.10, 2.0.11, 2.0.12, 2.0.13, 2.0.14, 2.0.15 or 2.0.16

Vendor

Alteryx Inc.
3345 Michelson Drive
Suite 400
Irvine, CA 92612
USA

Alteryx Information Security
InfoSec@Alteryx.com
Phone: +1 (888) 836-4274
Fax: N/A

Validation History

Date Type Lab
9/21/2020 Initial ACUMEN SECURITY, LLC
12/1/2020 Update ACUMEN SECURITY, LLC