Module Name
Huawei EulerOS 2.0 OpenSSH Client Cryptographic Module
Caveat
This module contains the embedded module Huawei EulerOS 2.0 OpenSSL Cryptographic module validated to FIPS 140-2 under Cert. #4235 operating in FIPS mode. When operated in FIPS mode.
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Huawei EulerOS 2.0 OpenSSH Client Cryptographic Module is a binary implementing the Secure Shell (SSH) protocol in the EulerOS 2.0 Operating System user space. The module interacts with other entities acting as SSH servers via the SSH protocol. The module only supports SSHv2 protocol.
Tested Configuration(s)
- Huawei EulerOS 2.0 on FusionServer RH2288 with Intel Xeon E5-2690 v3 processor without PAA (single-user mode)
- Huawei EulerOS 2.0 on Taishan200 with Huawei Kunpeng 920 processor without PAA (single-user mode).
Approved Algorithms
AES |
Cert. #A903 |
CVL |
Cert. #A1079 |
DRBG |
Cert. #A903 |
DSA |
Cert. #A903 |
ECDSA |
Cert. #A903 |
ENT |
NP |
HMAC |
Cert. #A903 |
KAS |
KAS-SSC Cert. #A903, CVL Cert. #A1079 |
KAS-SSC |
Cert. #A903 |
KTS |
AES Cert. #A903 and HMAC Cert. #A903; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
Triple-DES Cert. #A903 and HMAC Cert. #A903; key establishment methodology provides 112 bits of encryption strength |
RSA |
Cert. #A903 |
SHS |
Cert. #A903 |
Triple-DES |
Cert. #A903 |