Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4493

Details

Module Name
Oracle Cloud Infrastructure for BoringCrypto
Standard
FIPS 140-2
Status
Active
Sunset Date
9/21/2026
Overall Level
1
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys.
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
A Software cryptographic library that contains FIPS Approved cryptography to serve Kubernetes and the Google Go programing language and application ecosystem.
Tested Configuration(s)
  • Oracle Linux 8.4 running on Oracle Server E1-2c with AMD EPYC 7551 with PAA
  • Oracle Linux 8.4 running on Oracle Server E1-2c with AMD EPYC 7551 without PAA (single-user mode)
Approved Algorithms
AES Cert. #A2878
CVL Cert. #A2878
DRBG Cert. #A2878
ECDSA Cert. #A2878
HMAC Cert. #A2878
KAS KAS-SSC Cert. #A2878, CVL Cert. #A2878
KAS-SSC Cert. #A2878
KTS AES Cert #A2878; key establishment methodology provides between 128 and 256 bits of encryption strength
RSA Cert. #A2878
SHS Cert. #A2878
Triple-DES Cert. #A2878
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
853ca1ea1168dff08011e5d42d94609cc0ca2e27

Vendor

Oracle Corporation
2300 Oracle Way
Austin, Texas 78741
USA

Brandon Harvey
Brandon.Harvey@Oracle.com
Phone: 512-401-1527

Validation History

Date Type Lab
4/27/2023 Initial ACUMEN SECURITY, LLC