Module Name
Oracle OpenSSL FIPS Provider
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys.
Security Level Exceptions
- Physical Security: N/A
- Design Assurance: Level 3
Embodiment
Multi-Chip Stand Alone
Description
The Oracle OpenSSL FIPS Provider is a software library written in C programming language for use by Oracle applications that require FIPS 140-2 validated cryptography.
Tested Configuration(s)
- Oracle ILOM OS v3.0 running on Emulex Pilot-4 Orion mainboard with Oracle® ILOM SP v4 ARM v7
- Oracle ILOM OS v3.0 running on Oracle X5-2 server with Oracle® ILOM SP v3 ARM v5 with PAA
- Oracle ILOM OS v3.0 running on Oracle X5-2 server with Oracle® ILOM SP v3 ARM v5 without PAA
- Oracle ILOM OS v4.0 running on AST2400 Server Management Processor with Oracle ILOM SP v4 ARM V9
- Oracle ILOM OS v5.0 running on AST2520 Server Management Processor with Oracle ILOM SP v5 ARM V11
- Oracle ILOM OS v5.1 running on AST2600 Server Management Processor with Oracle ILOM SP v6 ARM v7
- Oracle Linux 8.4 64-bit running on Oracle Server E2-2C with AMD® EPYC® 7742 with PAA
- Oracle Linux 8.4 64-bit running on Oracle Server E2-2C with AMD® EPYC® 7742 without PAA (single-user mode)
- Oracle Solaris 11.4 64-bit running on Oracle X9 Server with Intel XEON Platinum 8358 with PAA
- Oracle Solaris 11.4 64-bit running on Oracle X9 Server with Intel XEON Platinum 8358 without PAA
Approved Algorithms
AES |
Cert. #A2302 |
CKG |
vendor affirmed |
CVL |
Cert. #A2302 |
DRBG |
Cert. #A2302 |
DSA |
Cert. #A2302 |
ECDSA |
Cert. #A2302 |
HMAC |
Cert. #A2302 |
KAS-RSA-SSC |
Cert. #A2302 |
KAS-SSC |
Cert. #A2302 |
KBKDF |
Cert. #A2302 |
KDA |
Cert. #A2302 |
KMAC |
Cert. #A2302 |
KTS |
AES Cert. #A2302; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #A2302 and AES Cert. #A2302; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #A2302 and HMAC Cert. #A2302; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
Triple-DES Cert. #A2302 and HMAC Cert. #A2302; key establishment methodology provides 112 bits of encryption strength |
KTS-RSA |
Cert #A2302; key establishment methodology provides between 112 and 128 bits of encryption strength |
PBKDF |
Cert. #A2302 |
RSA |
Cert. #A2302 |
SHA-3 |
Cert. #A2302 |
SHS |
Cert. #A2302 |
Triple-DES |
Cert. #A2302 |