Module Name
Red Hat Enterprise Linux 8 libgcrypt Cryptographic Module
Caveat
When operated in FIPS mode and installed, initialized and configured as specified in Section 10.1 of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy.
Security Level Exceptions
Embodiment
Multi-Chip Stand Alone
Description
The libgcrypt FIPS Runtime Module is a general purpose cryptographic library designed to provide FIPS 140-2 validated cryptographic functionality for use with the high level API of the libgcrypt library delivered with RHEL 8.
Tested Configuration(s)
- Red Hat Enterprise Linux 8 running on an IBM System z15 with an IBM z15
- Red Hat Enterprise Linux 8 running on Dell PowerEdge R440 with an Intel(R) Xeon(R) Silver 4216 with PAA
- Red Hat Enterprise Linux 8 running on Dell PowerEdge R440 with an Intel(R) Xeon(R) Silver 4216 without PAA
- Red Hat Enterprise Linux 8 with PowerVM FW1010.22 with VIOS 3.1.3.00 running on an IBM 9080-HEX with an IBM POWER10 (single-user mode)
- Red Hat Enterprise Linux 8 with PowerVM FW950.00 with VIOS 3.1.2.00 running on an IBM 9009-42A with an IBM POWER9
Approved Algorithms
AES |
Certs. #A1806, #A1807, #A1809 and #A1810 |
DRBG |
Certs. #A1806, #A1807, #A1808, #A1809 and #A1810 |
DSA |
Certs. #A1806, #A1807, #A1808, #A1809 and #A1810 |
ECDSA |
Certs. #A1806, #A1807, #A1808, #A1809 and #A1810 |
ENT |
NP |
HMAC |
Certs. #A1806, #A1807, #A1808, #A1809 and #A1810 |
KTS |
AES Certs. #A1806, #A1807, #A1809 and #A1810; key establishment methodology provides between 128 and 256 bits of encryption strength |
PBKDF |
Certs. #A1806, #A1807, #A1808, #A1809 and #A1810 |
RSA |
Certs. #A1806, #A1807, #A1808, #A1809 and #A1810 |
SHA-3 |
Certs. #A1808, #A1809 and #A1810 |
SHS |
Certs. #A1806, #A1807, #A1808, #A1809 and #A1810 |
Triple-DES |
Cert. #A1809 |
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
rhel8.20220426