Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #4292

Details

Module Name
Ubuntu 20.04 OpenSSL Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
9/21/2026
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
OpenSSL is an open-source library of various cryptographic algorithms written mainly in C.
Tested Configuration(s)
  • Supermicro SYS-1019P-WTR with Intel Xeon Gold 6226 CPU without PAA
  • Ubuntu 20.04 LTS 64-bit running on IBM z15 with z15 with PAI
  • Ubuntu 20.04 LTS 64-bit running on IBM z15 with z15 without PAI (single-user mode)
  • Ubuntu 20.04 LTS 64-bit running on Supermicro SYS-1019P-WTR with Intel Xeon Gold 6226 CPU with PAA
Approved Algorithms
AES Certs. #A1519, #A1520, #A1521, #A1522, #A1527, #A1528, #A1529, #A1530, #A1531, #A1533, #A1535, #A1536, #A1537, #A1538, #A1539, #A1540, #A1541, #A1542, #A1543, #A1548 and #A1549
CVL Certs. #A1519, #A1520, #A1521, #A1522, #A1532, #A1533, #A1544, #A1545, #A1546 and #A1547
DRBG Certs. #A1527, #A1528, #A1529 and #A1530
DSA Certs. #A1532, #A1544, #A1545, #A1546 and #A1547
ECDSA Certs. #A1523, #A1524, #A1525, #A1532, #A1534, #A1544, #A1545, #A1546 and #A1547
ENT NP
HMAC Certs. #A1523, #A1524, #A1525, #A1532, #A1534, #A1544, #A1545, #A1546 and #A1547
KAS KAS-SSC Certs. #A1532, #A1544, #A1545, #A1546, #A1547 and #A1550; CVL Certs. #A1532, #A1544, #A1545, #A1546 and #A1547
KAS-SSC Certs. #A1532, #A1544, #A1545, #A1546, #A1547 and #A1550
KDA Cert. #A1516
KTS AES Certs. #A1527, #A1528, #A1529 and #A1530; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Certs. #A1527, #A1528, #A1529, #A1530, #A1531, #A1535, #A1536, #A1537, #A1538, #A1539, #A1540, #A1541, #A1542, #A1543, #A1548 and #A1549; key establishment methodology provides 128 or 256 bits of encryption strength
KTS AES Certs. #A1527, #A1528, #A1529 and #A1530 and HMAC Certs. #A1532, #A1544, #A1545, #A1546 and #A1547; key establishment methodology provides 128 or 256 bits of encryption strength
KTS Triple-DES Cert. #A1526 and HMAC Certs. #A1532, #A1544, #A1545, #A1546 and #A1547; key establishment methodology provides 112 bits of encryption strength
KTS-RSA Certs. #A1532, #A1544, #A1545, #A1546 and #A1547; key establishment methodology provides between 112 and 200 bits of encryption strength
PBKDF Certs. #A1523, #A1524, #A1525, #A1532, #A1534, #A1544, #A1545, #A1546 and #A1547
RSA Certs. #A1532, #A1544, #A1545, #A1546 and #A1547
SHA-3 Certs. #A1523, #A1524, #A1525 and #A1534
SHS Certs. #A1532, #A1544, #A1545, #A1546 and #A1547
Triple-DES Certs. #A1519, #A1520, #A1521, #A1522, #A1526 and #A1533
Allowed Algorithms
MD5; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
3.1

Vendor

Canonical Ltd.
5th floor, Blue Fin Building
110 Southwark Street
London SE1 0SU
United Kingdom

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
9/6/2022 Initial ATSEC INFORMATION SECURITY CORP