Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #4631

Details

Module Name
AWS-LC Cryptographic Module
Standard
FIPS 140-3
Status
Active
Sunset Date
10/5/2028
Overall Level
1
Caveat
When operated in approved mode
Security Level Exceptions
  • Physical security: N/A
  • Non-invasive security: N/A
  • Documentation requirements: N/A
  • Cryptographic module security policy: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. It іs based on code from the Google BoringSSL project and the OpenSSL project.
Tested Configuration(s)
  • Amazon Linux 2 running on Amazon EC2 c5.metal with Intel Xeon Platinum 8275CL processor with PAA
  • Amazon Linux 2 running on Amazon EC2 c5.metal with Intel Xeon Platinum 8275CL processor without PAA
  • Amazon Linux 2 running Amazon EC2 c6g.metal with Graviton 2 processor with PAA
  • Amazon Linux 2 running Amazon EC2 c6g.metal with Graviton 2 processor without PAA
  • Ubuntu 20.04 running Amazon EC2 c6g.metal with Graviton 2 processor with PAA
  • Ubuntu 20.04 running Amazon EC2 c6g.metal with Graviton 2 processor without PAA
  • Ubuntu 20.04 running on Amazon EC2 c5.metal with Intel Xeon Platinum 8275CL processor with PAA
  • Ubuntu 20.04 running on Amazon EC2 c5.metal with Intel Xeon Platinum 8275CL processor without PAA
Approved Algorithms
AES-CBC
A2177
AES-CBC
A2180
AES-CBC
A2183
AES-CBC
A2186
AES-CBC
A2190
AES-CBC
A2194
AES-CCM
A2177
AES-CCM
A2180
AES-CCM
A2183
AES-CCM
A2186
AES-CCM
A2190
AES-CCM
A2194
AES-CMAC
A2177
AES-CMAC
A2180
AES-CMAC
A2183
AES-CMAC
A2186
AES-CMAC
A2190
AES-CMAC
A2194
AES-CTR
A2177
AES-CTR
A2180
AES-CTR
A2183
AES-CTR
A2186
AES-CTR
A2190
AES-CTR
A2194
AES-ECB
A2177
AES-ECB
A2178
AES-ECB
A2180
AES-ECB
A2181
AES-ECB
A2183
AES-ECB
A2184
AES-ECB
A2186
AES-ECB
A2187
AES-ECB
A2188
AES-ECB
A2189
AES-ECB
A2190
AES-ECB
A2191
AES-ECB
A2192
AES-ECB
A2193
AES-ECB
A2194
AES-ECB
A2195
AES-ECB
A2196
AES-ECB
A2197
AES-GCM
A2178
AES-GCM
A2178
AES-GCM
A2181
AES-GCM
A2181
AES-GCM
A2184
AES-GCM
A2184
AES-GCM
A2187
AES-GCM
A2187
AES-GCM
A2188
AES-GCM
A2188
AES-GCM
A2189
AES-GCM
A2189
AES-GCM
A2191
AES-GCM
A2191
AES-GCM
A2192
AES-GCM
A2192
AES-GCM
A2193
AES-GCM
A2193
AES-GCM
A2195
AES-GCM
A2195
AES-GCM
A2196
AES-GCM
A2196
AES-GCM
A2197
AES-GCM
A2197
AES-GMAC
A2178
AES-GMAC
A2181
AES-GMAC
A2184
AES-GMAC
A2187
AES-GMAC
A2188
AES-GMAC
A2189
AES-GMAC
A2191
AES-GMAC
A2192
AES-GMAC
A2193
AES-GMAC
A2195
AES-GMAC
A2196
AES-GMAC
A2197
AES-KW
A2177
AES-KW
A2180
AES-KW
A2183
AES-KW
A2186
AES-KW
A2190
AES-KW
A2194
AES-KWP
A2177
AES-KWP
A2180
AES-KWP
A2183
AES-KWP
A2186
AES-KWP
A2190
AES-KWP
A2194
Counter DRBG
A2177
Counter DRBG
A2180
Counter DRBG
A2183
Counter DRBG
A2186
Counter DRBG
A2190
Counter DRBG
A2194
ECDSA KeyGen (FIPS186-4)
A2182
ECDSA KeyGen (FIPS186-4)
A2185
ECDSA KeyGen (FIPS186-4)
A2198
ECDSA KeyGen (FIPS186-4)
A2199
ECDSA KeyGen (FIPS186-4)
A2200
ECDSA KeyVer (FIPS186-4)
A2182
ECDSA KeyVer (FIPS186-4)
A2185
ECDSA KeyVer (FIPS186-4)
A2198
ECDSA KeyVer (FIPS186-4)
A2199
ECDSA KeyVer (FIPS186-4)
A2200
ECDSA SigGen (FIPS186-4)
A2182
ECDSA SigGen (FIPS186-4)
A2185
ECDSA SigGen (FIPS186-4)
A2198
ECDSA SigGen (FIPS186-4)
A2199
ECDSA SigGen (FIPS186-4)
A2200
ECDSA SigVer (FIPS186-4)
A2182
ECDSA SigVer (FIPS186-4)
A2185
ECDSA SigVer (FIPS186-4)
A2198
ECDSA SigVer (FIPS186-4)
A2199
ECDSA SigVer (FIPS186-4)
A2200
HMAC-SHA-1
A2182
HMAC-SHA-1
A2185
HMAC-SHA-1
A2198
HMAC-SHA-1
A2199
HMAC-SHA-1
A2200
HMAC-SHA2-224
A2182
HMAC-SHA2-224
A2185
HMAC-SHA2-224
A2198
HMAC-SHA2-224
A2199
HMAC-SHA2-224
A2200
HMAC-SHA2-256
A2179
HMAC-SHA2-256
A2182
HMAC-SHA2-256
A2185
HMAC-SHA2-256
A2198
HMAC-SHA2-256
A2199
HMAC-SHA2-256
A2200
HMAC-SHA2-384
A2182
HMAC-SHA2-384
A2185
HMAC-SHA2-384
A2198
HMAC-SHA2-384
A2199
HMAC-SHA2-384
A2200
HMAC-SHA2-512
A2182
HMAC-SHA2-512
A2185
HMAC-SHA2-512
A2198
HMAC-SHA2-512
A2199
HMAC-SHA2-512
A2200
KAS-ECC-SSC Sp800-56Ar3
A2182
KAS-ECC-SSC Sp800-56Ar3
A2185
KAS-ECC-SSC Sp800-56Ar3
A2198
KAS-ECC-SSC Sp800-56Ar3
A2199
KAS-ECC-SSC Sp800-56Ar3
A2200
KDF TLS
A2182
KDF TLS
A2185
KDF TLS
A2198
KDF TLS
A2199
KDF TLS
A2200
RSA KeyGen (FIPS186-4)
A2182
RSA KeyGen (FIPS186-4)
A2185
RSA KeyGen (FIPS186-4)
A2198
RSA KeyGen (FIPS186-4)
A2199
RSA KeyGen (FIPS186-4)
A2200
RSA SigGen (FIPS186-4)
A2182
RSA SigGen (FIPS186-4)
A2185
RSA SigGen (FIPS186-4)
A2198
RSA SigGen (FIPS186-4)
A2199
RSA SigGen (FIPS186-4)
A2200
RSA SigVer (FIPS186-4)
A2182
RSA SigVer (FIPS186-4)
A2185
RSA SigVer (FIPS186-4)
A2198
RSA SigVer (FIPS186-4)
A2199
RSA SigVer (FIPS186-4)
A2200
SHA-1
A2182
SHA-1
A2185
SHA-1
A2198
SHA-1
A2199
SHA-1
A2200
SHA2-224
A2182
SHA2-224
A2185
SHA2-224
A2198
SHA2-224
A2199
SHA2-224
A2200
SHA2-256
A2179
SHA2-256
A2182
SHA2-256
A2185
SHA2-256
A2198
SHA2-256
A2199
SHA2-256
A2200
SHA2-384
A2182
SHA2-384
A2185
SHA2-384
A2198
SHA2-384
A2199
SHA2-384
A2200
SHA2-512
A2182
SHA2-512
A2185
SHA2-512
A2198
SHA2-512
A2199
SHA2-512
A2200
SHA2-512/256
A2182
SHA2-512/256
A2185
SHA2-512/256
A2198
SHA2-512/256
A2199
SHA2-512/256
A2200
Software Versions
AWS-LC FIPS 1.0.2

Vendor

Amazon Web Services Inc.
1918 8th Ave.
Seattle, WA 98121
USA

Daryl Martin
aws-fips-external@amazon.com
Phone: 0000000000

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
10/6/2023 Initial ATSEC INFORMATION SECURITY CORP