Module Name
BigFix Cryptographic Module
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys.
Security Level Exceptions
- Physical Security: N/A
- Design Assurance: Level 3
Embodiment
Multi-Chip Stand Alone
Description
BigFix product uses the BigFix Cryptographic Module to perform cryptographic functions throughout its environment.
The BigFix Cryptographic Module is a software library that runs on a wide variety of computing platforms and performs encryption, hashing, and random number generation functions.
The BigFix Cryptographic Module uses OpenSSL 3.0 FIPS Module that has been certified as compliant with the FIPS (Federal Information Processing Standard) 140-2 standard.
Tested Configuration(s)
- Debian 11.5 running on Dell Inspiron 7591 with Intel i7(x86) with PAA
- Debian 11.5 running on Dell Inspiron 7591 with Intel i7(x86) without PAA
- FreeBSD 13.1 running on Dell Inspiron 7591 with Intel i7(x64) with PAA
- FreeBSD 13.1 running on Dell Inspiron 7591 with Intel i7(x64) without PAA
- macOS 11.5.2 running on Apple i7 Mac Mini with Intel i7(x64) with PAA
- macOS 11.5.2 running on Apple i7 Mac Mini with Intel i7(x64) without PAA
- Ubuntu Linux 22.04.1 LTS running on Dell Inspiron 7591 with Intel i7(x64) with PAA
- Ubuntu Linux 22.04.1 LTS running on Dell Inspiron 7591 with Intel i7(x64) without PAA
- Windows 10 running on Dell Inspiron 7591 with Intel i7(x64) with PAA
- Windows 10 running on Dell Inspiron 7591 with Intel i7(x64) without PAA (single-user mode)
Approved Algorithms
AES |
Cert. #A3500 |
CKG |
vendor affirmed |
CVL |
Cert. #A3500 |
DRBG |
Cert. #A3500 |
DSA |
Cert. #A3500 |
ECDSA |
Cert. #A3500 |
HMAC |
Cert. #A3500 |
KAS-RSA-SSC |
Cert. #A3500 |
KAS-SSC |
Cert. #A3500 |
KBKDF |
Cert. #A3500 |
KDA |
Cert. #A3500 |
KMAC |
Cert. #A3500 |
KTS |
AES Cert. #A3500; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #A3500 and AES Cert. #A3500; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Cert. #A3500 and HMAC Cert. #A3500; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
Triple-DES Cert. #A3500 and HMAC Cert. #A3500; key establishment methodology provides 112 bits of encryption strength |
KTS-RSA |
Cert #A3500; key establishment methodology provides between 112 and 192 bits of encryption strength |
PBKDF |
Cert. #A3500 |
RSA |
Cert. #A3500 |
SHA-3 |
Cert. #A3500 |
SHS |
Cert. #A3500 |
Triple-DES |
Cert. #A3500 |