Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3739

Details

Module Name
AWS Nitro Card Security Engine
Standard
FIPS 140-2
Status
Active
Sunset Date
10/28/2025
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Mitigation of Other Attacks: N/A
Module Type
Firmware-Hybrid
Embodiment
Multi-Chip Stand Alone
Description
The AWS Nitro Card Security Engine is a multi-chip standalone firmware-hybrid module. The Approved cryptographic services provided by the module are: - Data encryption / decryption utilizing symmetric ciphers, i.e. AES algorithms. - Computation of hash values, i.e. SHA-256, SHA-512. - Message authentication utilizing HMAC-SHA256, HMAC-SHA512, hashing algorithms.
Tested Configuration(s)
  • Carbon Linux (Linux kernel 4.9.32) running on Cortex ARMv8 with AL5+
Approved Algorithms
AES Cert. #C997
HMAC Cert. #C2168
SHS Cert. #C997
Allowed Algorithms
N/A
Hardware Versions
AL5+
Firmware Versions
HAL-rel-3.2-uemu-fips

Vendor

Amazon Web Services, Inc.
410 Terry Ave N
Ste 1200
Seattle, WA 98109-5210
USA

Taeil Um
taeilum@amazon.com
 Benita Bose
bbose@amazon.com

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
10/29/2020 Initial ACUMEN SECURITY, LLC