Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4557

Details

Module Name
BigFix Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
9/21/2026
Overall Level
1
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys.
Security Level Exceptions
  • Physical Security: N/A
  • Design Assurance: Level 3
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
BigFix product uses the BigFix Cryptographic Module to perform cryptographic functions throughout its environment. The BigFix Cryptographic Module is a software library that runs on a wide variety of computing platforms and performs encryption, hashing, and random number generation functions. The BigFix Cryptographic Module uses OpenSSL 3.0 FIPS Module that has been certified as compliant with the FIPS (Federal Information Processing Standard) 140-2 standard.
Tested Configuration(s)
  • Debian 11.5 running on Dell Inspiron 7591 with Intel i7(x86) with PAA
  • Debian 11.5 running on Dell Inspiron 7591 with Intel i7(x86) without PAA
  • FreeBSD 13.1 running on Dell Inspiron 7591 with Intel i7(x64) with PAA
  • FreeBSD 13.1 running on Dell Inspiron 7591 with Intel i7(x64) without PAA
  • macOS 11.5.2 running on Apple i7 Mac Mini with Intel i7(x64) with PAA
  • macOS 11.5.2 running on Apple i7 Mac Mini with Intel i7(x64) without PAA
  • Ubuntu Linux 22.04.1 LTS running on Dell Inspiron 7591 with Intel i7(x64) with PAA
  • Ubuntu Linux 22.04.1 LTS running on Dell Inspiron 7591 with Intel i7(x64) without PAA
  • Windows 10 running on Dell Inspiron 7591 with Intel i7(x64) with PAA
  • Windows 10 running on Dell Inspiron 7591 with Intel i7(x64) without PAA (single-user mode)
Approved Algorithms
AES Cert. #A3500
CKG vendor affirmed
CVL Cert. #A3500
DRBG Cert. #A3500
DSA Cert. #A3500
ECDSA Cert. #A3500
HMAC Cert. #A3500
KAS-RSA-SSC Cert. #A3500
KAS-SSC Cert. #A3500
KBKDF Cert. #A3500
KDA Cert. #A3500
KMAC Cert. #A3500
KTS AES Cert. #A3500; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #A3500 and AES Cert. #A3500; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Cert. #A3500 and HMAC Cert. #A3500; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Cert. #A3500 and HMAC Cert. #A3500; key establishment methodology provides 112 bits of encryption strength
KTS-RSA Cert #A3500; key establishment methodology provides between 112 and 192 bits of encryption strength
PBKDF Cert. #A3500
RSA Cert. #A3500
SHA-3 Cert. #A3500
SHS Cert. #A3500
Triple-DES Cert. #A3500
Allowed Algorithms
N/A
Software Versions
3.0.8

Vendor

HCL America, Inc.
330 Potrero Ave
Sunnyvale
CA
Sunnyvale, CA 94085
USA

Devaughn Rackham
devaughn.rackham@hclfederal.com
Phone: 507-990-0374

Validation History

Date Type Lab
8/10/2023 Initial ACUMEN SECURITY, LLC
12/15/2023 Update ACUMEN SECURITY, LLC