Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #4366

Details

Module Name
Ubuntu 20.04 Kernel Crypto API Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
9/21/2026
Overall Level
1
Caveat
When operated in FIPS mode. The module generates random strings whose strengths are modified by available entropy
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Ubuntu 20.04 Kernel Crypto API module is a software module running as part of the operating system kernel that provides general purpose cryptographic services.
Tested Configuration(s)
  • Ubuntu 20.04 LTS 64-bit running on IBM z15 with IBM z15 with PAI
  • Ubuntu 20.04 LTS 64-bit running on IBM z15 with IBM z15 without PAI (single-user mode)
  • Ubuntu 20.04 LTS 64-bit running on Supermicro SYS-1019P-WTR with Intel(R) Xeon(R) Gold 6226 CPU with PAA
  • Ubuntu 20.04 LTS 64-bit running on Supermicro SYS-1019P-WTR with Intel(R) Xeon(R) Gold 6226 CPU without PAA
Approved Algorithms
AES Certs. #A389, #A1364, #A1365, #A1366, #A1367, #A1368, #A1369, #A1371, #A1372, #A1373, #A1374, #A1375, #A1376, #A1377, #A1378, #A1379, #A1380, #A1381, #A1382, #A1383, #A1384, #A1386, #A1387, #A1439, #A1440, #A1441, #A1449, #A1450, #A1451, #A1452, #A1654, #A1655, #A1715, #A1716 and #A1722
DRBG Certs. #A389, #A1364, #A1365, #A1366, #A1367, #A1368, #A1369, #A1374, #A1375, #A1376, #A1377, #A1378, #A1382, #A1383, #A1384, #A1442, #A1445, #A1446, #A1447, #A1448, #A1449, #A1450, #A1451, #A1452, #A1654 and #A1655
ENT NP
HMAC Certs. #A1367, #A1382, #A1383, #A1384, #A1385, #A1446, #A1447 and #A1448
KTS AES Certs. #A1364, #A1365, #A1366, #A1367, #A1368, #A1369, #A1374, #A1375, #A1376, #A1377, #A1378, #A1384, #A1449, #A1450, #A1451, #A1452, #A1654, #A1655, #A1715, #A1716 and #A1722; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Certs. #A389, #A1364, #A1367, #A1376, #A1384, #A1654, #A1655 and HMAC Certs. #A1367, #A1382, #A1383, #A1384, #A1446, #A1447 and #A1448; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Certs. #A389, #A1364, #A1367, #A1384, #A1442, #A1445 and HMAC Certs. #A1367, #A1382, #A1383, #A1384, #A1446, #A1447 and #A1448; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #A1367, #A1384, #A1446, #A1447 and #A1448
SHA-3 Cert. #A1385
SHS Certs. #A389, #A1367, #A1382, #A1383, #A1384, #A1446, #A1447 and #A1448
Triple-DES Certs. #A389, #A1364, #A1367, #A1371, #A1372, #A1384, #A1386, #A1387, #A1442, #A1443, #A1444 and #A1445
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
3.1

Vendor

Canonical Ltd.
5th floor, Blue Fin Building
110 Southwark Street
London SE1 0SU
United Kingdom

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
11/14/2022 Initial ATSEC INFORMATION SECURITY CORP