Module Name
SUSE Linux Enterprise Server Kernel Crypto API Cryptographic Module
Caveat
When operated in FIPS mode and installed, initialized and configured as specified in section 10.1 of the Security Policy
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
SUSE Linux Enterprise Server Kernel Crypto API Module provides cryptographic services to the Linux operating system kernel.
Tested Configuration(s)
- SUSE Linux Enterprise Server 15 SP0 running on Dell EMC PowerEdge 640 with Intel Cascade Lake Xeon Gold 6234 with PAA
- SUSE Linux Enterprise Server 15 SP0 running on Dell EMC PowerEdge 640 with Intel Cascade Lake Xeon Gold 6234 without PAA (single-user mode)
Approved Algorithms
AES |
Certs. #A53, #A54, #A55, #A57, #A58, #A59, #A60, #A61, #A63, #A66, #A68, #A69, #A70, #A71 and #A72 |
DRBG |
Certs. #A53, #A57, #A58, #A60, #A62, #A66, #A73 and #A74 |
HMAC |
Certs. #A56, #A62, #A66, #A73 and #A74 |
KTS |
AES Certs. #A57, #A60, #A66 and #A68; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Certs. #A53, #A57, #A60, #A66 and #A68 and HMAC Certs. #A62, #A66, #A73 and #A74; key establishment methodology provides between 128 and 256 bits of encryption strength |
RSA |
Certs. #A62, #A66, #A73 and #A74 |
SHA-3 |
Cert. #A56 |
SHS |
Certs. #A62, #A65, #A66, #A73 and #A74 |
Triple-DES |
Certs. #A57, #A66 and #A67 |