Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4506

Details

Module Name
Oracle OpenSSL FIPS Provider
Standard
FIPS 140-2
Status
Active
Sunset Date
9/21/2026
Overall Level
1
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys.
Security Level Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 3
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Oracle OpenSSL FIPS Provider is a software library written in C programming language for use by Oracle applications that require FIPS 140-2 validated cryptography.
Tested Configuration(s)
  • Oracle ILOM OS v3.0 running on Emulex Pilot-4 Orion mainboard with Oracle ILOM SP v4 ARM v7
  • Oracle ILOM OS v5.0 running on AST2520 Server Management Processor with Oracle ILOM SP v5 with ARM v11
  • Oracle ILOM OS v5.1 running on AST2600 Server Management Processor with Oracle ILOM SP v6 with ARM v7
  • Oracle Linux 8.9 64-bit running on Oracle A1-2C Server with ARMv8 with PAA
  • Oracle Linux 8.9 64-bit running on Oracle A1-2C Server with ARMv8 without PAA
  • Oracle Linux 8.9 64-bit running on Oracle X9-2C Server with Intel XEON Platinum 8358 with PAA
  • Oracle Linux 8.9 64-bit running on Oracle X9-2C Server with Intel XEON Platinum 8358 without PAA
  • Oracle Solaris 11.4 64-bit running on Oracle X9 Server with Intel XEON Gold 6354 with PAA
  • Oracle Solaris 11.4 64-bit running on Oracle X9 Server with Intel XEON Gold 6354 without PAA
  • Oracle Solaris 11.4 64-bit running on SPARC T8 with SPARC M8 with PAA
  • Oracle Solaris 11.4 64-bit running on SPARC T8 with SPARC M8 without PAA
  • Windows Server 2019 running on Oracle X9-2C Server with Intel XEON Platinum 8358 with PAA
  • Windows Server 2019 running on Oracle X9-2C Server with Intel XEON Platinum 8358 without PAA
  • Windows Server 2022 running on Oracle E4-2C server with AMD EPYC 7J13 with PAA
  • Windows Server 2022 running on Oracle E4-2C server with AMD EPYC 7J13 without PAA (single-user mode)
Approved Algorithms
AES Cert. #A6065
CKG vendor affirmed
CVL Cert. #A6065
DRBG Cert. #A6065
DSA Cert. #A6065
ECDSA Cert. #A6065
HMAC Cert. #A6065
KAS-RSA-SSC Cert. #A6065
KAS-SSC Cert. #A6065
KBKDF Cert. #A6065
KDA Cert. #A6065
KMAC Cert. #A6065
KTS AES Cert. #A6065; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #A6065 and AES Cert. #A6065; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #A6065 and HMAC Cert. #A6065; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS-RSA Cert #A6065; key establishment methodology provides between 112 and 128 bits of encryption strength
PBKDF Cert. #A6065
RSA Cert. #A6065
SHA-3 Cert. #A6065
SHS Cert. #A6065
Triple-DES Cert. #A6065
Allowed Algorithms
N/A
Software Versions
3.0.15

Vendor

Oracle Corporation
2300 Oracle Way
Austin, TX 78741
USA

Security Evaluation Team
[email protected]

Validation History

Date Type Lab
5/3/2023 Initial ACUMEN SECURITY, LLC
3/26/2025 Update Lightship Security, Inc.