Module Name
Oracle Linux 7 NSS Cryptographic Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy.
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Physical Security: N/A
- Design Assurance: Level 3
Embodiment
Multi-Chip Stand Alone
Description
Oracle Linux is a set of cryptographic libraries, services, and user level cryptographic applications that are validated at FIPS 140-2 level 1, providing a secure foundation for vendor use in developing dependent services, applications, and even purpose built appliances that may be FIPS 140-2 validated.
Tested Configuration(s)
- Oracle Linux 7.6 64 bit running on an Oracle X7-2 Server with AMD® EPYC® 7551 with PAA
- Oracle Linux 7.6 64 bit running on an Oracle X7-2 Server with AMD® EPYC® 7551 without PAA
- Oracle Linux 7.6 64 bit running on Oracle Server X7-2 with a Intel® Xeon® Silver 4114 with PAA
- Oracle Linux 7.6 64 bit running on Oracle Server X7-2 with a Intel® Xeon® Silver 4114 without PAA (single user mode)
Approved Algorithms
| AES |
Certs. #C786 and #C794 |
| CKG |
Vendor Affirmed |
| DRBG |
Cert. #C786 |
| DSA |
Cert. #C786 |
| ECDSA |
Cert. #C786 |
| HMAC |
Cert. #C786 |
| KTS |
AES Certs. #C786 and #C794; key establishment methodology provides between 128 and 256 bits of encryption strength |
| RSA |
Cert. #C786 |
| SHS |
Cert. #C786 |
| Triple-DES |
Cert. #C786 |
Software Versions
R7-4.0.0
