Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4506

Details

Module Name
Oracle OpenSSL FIPS Provider
Standard
FIPS 140-2
Status
Active
Sunset Date
9/21/2026
Overall Level
1
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys.
Security Level Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 3
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Oracle OpenSSL FIPS Provider is a software library written in C programming language for use by Oracle applications that require FIPS 140-2 validated cryptography.
Tested Configuration(s)
  • Oracle ILOM OS v3.0 running on Emulex Pilot-4 Orion mainboard with Oracle® ILOM SP v4 ARM v7
  • Oracle ILOM OS v3.0 running on Oracle X5-2 server with Oracle® ILOM SP v3 ARM v5 with PAA
  • Oracle ILOM OS v3.0 running on Oracle X5-2 server with Oracle® ILOM SP v3 ARM v5 without PAA
  • Oracle ILOM OS v4.0 running on AST2400 Server Management Processor with Oracle ILOM SP v4 ARM V9
  • Oracle ILOM OS v5.0 running on AST2520 Server Management Processor with Oracle ILOM SP v5 ARM V11
  • Oracle ILOM OS v5.1 running on AST2600 Server Management Processor with Oracle ILOM SP v6 ARM v7
  • Oracle Linux 8.4 64-bit running on Oracle Server E2-2C with AMD® EPYC® 7742 with PAA
  • Oracle Linux 8.4 64-bit running on Oracle Server E2-2C with AMD® EPYC® 7742 without PAA (single-user mode)
  • Oracle Solaris 11.4 64-bit running on Oracle X9 Server with Intel XEON Platinum 8358 with PAA
  • Oracle Solaris 11.4 64-bit running on Oracle X9 Server with Intel XEON Platinum 8358 without PAA
Approved Algorithms
AES Cert. #A2302
CKG vendor affirmed
CVL Cert. #A2302
DRBG Cert. #A2302
DSA Cert. #A2302
ECDSA Cert. #A2302
HMAC Cert. #A2302
KAS-RSA-SSC Cert. #A2302
KAS-SSC Cert. #A2302
KBKDF Cert. #A2302
KDA Cert. #A2302
KMAC Cert. #A2302
KTS AES Cert. #A2302; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #A2302 and AES Cert. #A2302; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #A2302 and HMAC Cert. #A2302; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Cert. #A2302 and HMAC Cert. #A2302; key establishment methodology provides 112 bits of encryption strength
KTS-RSA Cert #A2302; key establishment methodology provides between 112 and 128 bits of encryption strength
PBKDF Cert. #A2302
RSA Cert. #A2302
SHA-3 Cert. #A2302
SHS Cert. #A2302
Triple-DES Cert. #A2302
Allowed Algorithms
N/A
Software Versions
3.0.0

Vendor

Oracle Corporation
500 Oracle Parkway
Redwood Shores, CA 94065
USA

Oracle Security Evaluations
seceval_us@oracle.com

Validation History

Date Type Lab
5/3/2023 Initial ACUMEN SECURITY, LLC