Module Name
Red Hat Enterprise Linux 8 libgcrypt Cryptographic Module
Caveat
When operated in FIPS mode and installed, initialized and configured as specified in Section 10.1 of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy applies.
Security Level Exceptions
Embodiment
Multi-Chip Stand Alone
Description
The libgcrypt FIPS Runtime Module is a general purpose cryptographic library designed to provide FIPS 140-2 validated cryptographic functionality for use with the high level API of the libgcrypt library delivered with RHEL 8.
Tested Configuration(s)
- Red Hat Enterprise Linux 8 running on Dell PowerEdge R440 with an Intel(R) Xeon(R) Silver 4216 with PAA
- Red Hat Enterprise Linux 8 running on Dell PowerEdge R440 with an Intel(R) Xeon(R) Silver 4216 without PAA (single-user mode)
Approved Algorithms
| AES |
Certs. #A1255, #A1256, #A1258 and #A1259 |
| DRBG |
Certs. #A1255, #A1256, #A1257, #A1258 and #A1259 |
| DSA |
Certs. #A1255, #A1256, #A1257, #A1258 and #A1259 |
| ECDSA |
Certs. #A1255, #A1256, #A1257, #A1258 and #A1259 |
| ENT |
NP |
| HMAC |
Certs. #A1254, #A1255, #A1256, #A1257, #A1258 and #A1259 |
| KTS |
AES Certs. #A1255, #A1256, #A1258 and #A1259; key establishment methodology provides between 128 and 256 bits of encryption strength |
| PBKDF |
Certs. #A1255, #A1256, #A1257, #A1258 and #A1259 |
| RSA |
Certs. #A1255, #A1256, #A1257, #A1258 and #A1259 |
| SHA-3 |
Certs. #A1257, #A1258 and #A1259 |
| SHS |
Certs. #A1254, #A1255, #A1256, #A1257, #A1258 and #A1259 |
| Triple-DES |
Cert. #A1258 |
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
rhel8.20200615
