Module Name
Amazon Linux 2 GnuTLS Cryptographic Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode. When installed, initialized and configured as specified in Section 10.1 of the Security Policy.
Security Level Exceptions
Embodiment
Multi-Chip Stand Alone
Description
The Amazon Linux 2 GnuTLS Cryptographic Module implements general purpose cryptographic algorithms and network protocols.
Tested Configuration(s)
- Amazon Linux 2 running on Amazon EC2 c6g.metal with Graviton 2 with PAA
- Amazon Linux 2 running on Amazon EC2 c6g.metal with Graviton 2 without PAA (single-user mode)
- Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5 with PAA
- Amazon Linux 2 running on Amazon EC2 i3.metal with Intel Xeon E5 without PAA
Approved Algorithms
| AES |
Certs. #A4150, #A4151, #A4152, #C789, #C790, #C791 and #C792 |
| CVL |
Certs. #A4151 and #C792 |
| DRBG |
Certs. #A4151 and #C792 |
| DSA |
Certs. #A4151 and #C792 |
| ECDSA |
Certs. #A4151 and #C792 |
| HMAC |
Certs. #A4151, #A4152 and #C792 |
| KTS |
AES Certs. #A4151, #A4152, #C790, #C791 and #C792; key establishment methodology provides 128 or 256 bits of encryption strength |
| KTS |
AES Certs. #A4151, #A4152, #C790, #C791 and #C792 and HMAC Certs. #A4151, #A4152, #C792; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS |
Triple-DES Certs. #A4151 and #C792 and HMAC Certs. #A4151, #A4152 and #C792; key establishment methodology provides 112 bits of encryption strength |
| RSA |
Certs. #A4151 and #C792 |
| SHS |
Certs. #A4151, #A4152, #C790 and #C792 |
| Triple-DES |
Certs. #A4151 and #C792 |
Allowed Algorithms
MD5; NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
