Module Name
SafeZone FIPS Cryptographic Module
Historical Reason
Moved to historical list due to sunsetting
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
SafeZone FIPS Cryptographic Module is a FIPS 140-2 Security Level 1 validated software cryptographic module from Rambus. The module is a toolkit which provides the most commonly needed cryptographic primitives for a large variety of applications, including but not limited to, primitives needed for DAR, DRM, TLS, and VPN on mobile devices.
Tested Configuration(s)
- Debian 9 Linux (64 bit) running on an ARM Cortex-A53 (ARMv8-A) with PAA
- Debian 9 Linux (64 bit) running on an ARM Cortex-A53 (ARMv8-A) without PAA
- Xubuntu 20.04 LTS (32-bit) running on an ARM Cortex-A7 (ARMv7-A)
- Xubuntu 20.04 LTS (32-bit) running on an Intel Atom x5 (Airmont) with PAA
- Xubuntu 20.04 LTS (32-bit) running on an Intel Atom x5 (Airmont) without PAA
- Xubuntu 20.04 LTS (64-bit) running on an Intel Atom x5 (Airmont) with PAA
- Xubuntu 20.04 LTS (64-bit) running on an Intel Atom x5 (Airmont) without PAA (single-user mode)
Approved Algorithms
| AES |
Cert. #A2468 |
| CKG |
vendor affirmed |
| CVL |
Cert. #A2468 |
| DRBG |
Cert. #A2468 |
| DSA |
Cert. #A2468 |
| ECDSA |
Cert. #A2468 |
| HMAC |
Cert. #A2468 |
| KAS-SSC |
Cert. #A2468 |
| KBKDF |
Cert. #A2468 |
| KDA |
vendor affirmed |
| KTS |
AES Cert. #A2468; key establishment methodology provides between 128 and 256 bits of encryption strength |
| KTS-RSA |
Cert. #A2468; key establishment methodology provides between 112 and 150 bits of encryption strength |
| PBKDF |
vendor affirmed |
| RSA |
Cert. #A2468 |
| SHA-3 |
Cert. #A2468 |
| SHS |
Cert. #A2468 |
Allowed Algorithms
MD5; NDRNG
