Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #3851

Details

Module Name
Titan Security Key, Chip Boundary
Standard
FIPS 140-2
Status
Historical
 Historical Reason
SP 800-56Arev3 transition
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Hardware
Embodiment
Single Chip
Description
Implemented with Google's "Titan" secure microcontroller and custom firmware, the Titan Security Key is a FIPS-compliant Universal 2nd Factor (U2F) authenticator and hardware root of trust.
Tested Configuration(s)
  • N/A
Approved Algorithms
AES Cert. #C1621
CKG vendor affirmed
CVL Cert. #C1621
DRBG Cert. #C1621
ECDSA Cert. #C1621
HMAC Cert. #C1621
SHS Cert. #C1621
Allowed Algorithms
EC Diffie-Hellman (key agreement, key establishment methodology provides 128 bits of encryption strength); NDRNG
Hardware Versions
H1B2
Firmware Versions
1.2

Vendor

Google, LLC.
1600 Amphitheatre Parkway
n/a
n/a
Mountain View, CA 94043
USA

FIPS Crypto Officer
FIPS-crypto-officer@google.com

Validation History

Date Type Lab
3/18/2021 Initial ACUMEN SECURITY, LLC