Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4369

Details

Module Name
Zscaler Java Crypto Module
Standard
FIPS 140-2
Status
Active
Sunset Date
8/22/2024
Overall Level
1
Caveat
When installed, initialized and configured as specified in the Security Policy Section 3 and operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy.
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
Zscaler Java Crypto Module offloads functions for secure key management, data integrity, data at rest encryption, and secure communications to a trusted implementation.
Tested Configuration(s)
  • VMware Photon OS 2.0 with JDK 11 on Vmware ESXi 6.7 running on Dell PowerEdge R830 with Intel Xeon E5 (single-user mode)
Approved Algorithms
AES Cert. #A2720
CKG vendor affirmed
CVL Cert. #A2720
DRBG Cert. #A2720
DSA Cert. #A2720
ECDSA Cert. #A2720
HMAC Cert. #A2720
KAS-SSC vendor affirmed
KBKDF Cert. #A2720
KTS AES Cert. #A2720; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS vendor affirmed
KTS Triple-DES Cert. #A2720; key establishment methodology provides 112 bits of encryption strength
PBKDF vendor affirmed
RSA Cert. #A2720
SHA-3 Cert. #A2720
SHA-3-Customized SHA-3 Cert. #A2720, vendor affirmed
SHS Cert. #A2720
Triple-DES Cert. #A2720
Allowed Algorithms
NDRNG; MD5; RSA (key wrapping; key establishment methodology provides between 150 and 256 bits of encryption strength)
Software Versions
3.0.2.1

Vendor

Zscaler Inc.
110 Rose Orchard Way
San Jose, CA 95134
USA

Stephen R. Kovac
kovac@zscaler.com
Phone: 727-288-7144

Validation History

Date Type Lab
11/16/2022 Initial ÆGISOLVE