Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #4631

Details

Module Name
AWS-LC Cryptographic Module
Standard
FIPS 140-3
Status
Active
Sunset Date
10/5/2028
Overall Level
1
Caveat
When operated in approved mode
Security Level Exceptions
  • Physical security: N/A
  • Non-invasive security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
AWS-LC is a general-purpose cryptographic library maintained by the AWS Cryptography team for AWS and their customers. It іs based on code from the Google BoringSSL project and the OpenSSL project.
Tested Configuration(s)
  • Amazon Linux 2 on Amazon EC2 c7g.metal with Graviton3 processor with PAA [1]
  • Amazon Linux 2 on Amazon EC2 c7g.metal with Graviton3 processor without PAA [1]
  • Amazon Linux 2 running Amazon EC2 c6g.metal with Graviton 2 processor with PAA [1]
  • Amazon Linux 2 running Amazon EC2 c6g.metal with Graviton 2 processor without PAA [1]
  • Amazon Linux 2 running on Amazon EC2 c5.metal with Intel Xeon Platinum 8275CL processor with PAA [1]
  • Amazon Linux 2 running on Amazon EC2 c5.metal with Intel Xeon Platinum 8275CL processor without PAA [1]
  • Android 12 on Samsung Galaxy S20 with Qualcomm Cortex-A Snapdragon 865 processor with PAA [1]
  • Android 12 on Samsung Galaxy S20 with Qualcomm Cortex-A Snapdragon 865 processor without PAA [1]
  • iOS 15.5 on Apple iPhone 12 with Apple A14 Bionic processor with PAA [2]
  • iOS 15.5 on Apple iPhone 12 with Apple A14 Bionic processor without PAA [2]
  • MacBook Air with MacOS 12.4 on Apple M1 processor with PAA [2]
  • MacBook Air with MacOS 12.4 on Apple M1 processor without PAA [2]
  • Ubuntu 20.04 running Amazon EC2 c6g.metal with Graviton 2 processor with PAA [1]
  • Ubuntu 20.04 running Amazon EC2 c6g.metal with Graviton 2 processor without PAA [1]
  • Ubuntu 20.04 running on Amazon EC2 c5.metal with Intel Xeon Platinum 8275CL processor with PAA [1]
  • Ubuntu 20.04 running on Amazon EC2 c5.metal with Intel Xeon Platinum 8275CL processor without PAA [1]
  • Ubuntu 22.04 on Amazon EC2 c7g.metal with Graviton3 processor with PAA [1]
  • Ubuntu 22.04 on Amazon EC2 c7g.metal with Graviton3 processor without PAA [1]
  • Windows 10 on Dell Latitude 5430 with Intel Core i7 1255U processor with PAA [1]
  • Windows 10 on Dell Latitude 5430 with Intel Core i7 1255U processor without PAA [1]
Approved Algorithms
AES-CBC
A2177
AES-CBC
A2180
AES-CBC
A2183
AES-CBC
A2186
AES-CBC
A2190
AES-CBC
A2194
AES-CBC
A4667
AES-CBC
A4670
AES-CBC
A4672
AES-CBC
A4692
AES-CBC
A4696
AES-CBC
A4700
AES-CBC
A4726
AES-CBC
A4729
AES-CBC
A4731
AES-CCM
A2177
AES-CCM
A2180
AES-CCM
A2183
AES-CCM
A2186
AES-CCM
A2190
AES-CCM
A2194
AES-CCM
A4667
AES-CCM
A4670
AES-CCM
A4672
AES-CCM
A4692
AES-CCM
A4696
AES-CCM
A4700
AES-CCM
A4726
AES-CCM
A4729
AES-CCM
A4731
AES-CMAC
A2177
AES-CMAC
A2180
AES-CMAC
A2183
AES-CMAC
A2186
AES-CMAC
A2190
AES-CMAC
A2194
AES-CMAC
A4667
AES-CMAC
A4670
AES-CMAC
A4672
AES-CMAC
A4692
AES-CMAC
A4696
AES-CMAC
A4700
AES-CMAC
A4726
AES-CMAC
A4729
AES-CMAC
A4731
AES-CTR
A2177
AES-CTR
A2180
AES-CTR
A2183
AES-CTR
A2186
AES-CTR
A2190
AES-CTR
A2194
AES-CTR
A4667
AES-CTR
A4670
AES-CTR
A4672
AES-CTR
A4692
AES-CTR
A4696
AES-CTR
A4700
AES-CTR
A4726
AES-CTR
A4729
AES-CTR
A4731
AES-ECB
A2177
AES-ECB
A2178
AES-ECB
A2180
AES-ECB
A2181
AES-ECB
A2183
AES-ECB
A2184
AES-ECB
A2186
AES-ECB
A2187
AES-ECB
A2188
AES-ECB
A2189
AES-ECB
A2190
AES-ECB
A2191
AES-ECB
A2192
AES-ECB
A2193
AES-ECB
A2194
AES-ECB
A2195
AES-ECB
A2196
AES-ECB
A2197
AES-ECB
A4667
AES-ECB
A4668
AES-ECB
A4670
AES-ECB
A4671
AES-ECB
A4672
AES-ECB
A4673
AES-ECB
A4692
AES-ECB
A4693
AES-ECB
A4694
AES-ECB
A4695
AES-ECB
A4696
AES-ECB
A4697
AES-ECB
A4698
AES-ECB
A4699
AES-ECB
A4700
AES-ECB
A4701
AES-ECB
A4702
AES-ECB
A4703
AES-ECB
A4726
AES-ECB
A4727
AES-ECB
A4729
AES-ECB
A4730
AES-ECB
A4731
AES-ECB
A4732
AES-GCM
A2178
AES-GCM
A2178
AES-GCM
A2181
AES-GCM
A2181
AES-GCM
A2184
AES-GCM
A2184
AES-GCM
A2187
AES-GCM
A2187
AES-GCM
A2188
AES-GCM
A2188
AES-GCM
A2189
AES-GCM
A2189
AES-GCM
A2191
AES-GCM
A2191
AES-GCM
A2192
AES-GCM
A2192
AES-GCM
A2193
AES-GCM
A2193
AES-GCM
A2195
AES-GCM
A2195
AES-GCM
A2196
AES-GCM
A2196
AES-GCM
A2197
AES-GCM
A2197
AES-GCM
A4668
AES-GCM
A4668
AES-GCM
A4671
AES-GCM
A4671
AES-GCM
A4673
AES-GCM
A4673
AES-GCM
A4693
AES-GCM
A4693
AES-GCM
A4694
AES-GCM
A4694
AES-GCM
A4695
AES-GCM
A4695
AES-GCM
A4697
AES-GCM
A4697
AES-GCM
A4698
AES-GCM
A4698
AES-GCM
A4699
AES-GCM
A4699
AES-GCM
A4701
AES-GCM
A4701
AES-GCM
A4702
AES-GCM
A4702
AES-GCM
A4703
AES-GCM
A4703
AES-GCM
A4727
AES-GCM
A4727
AES-GCM
A4730
AES-GCM
A4730
AES-GCM
A4732
AES-GCM
A4732
AES-GMAC
A2178
AES-GMAC
A2181
AES-GMAC
A2184
AES-GMAC
A2187
AES-GMAC
A2188
AES-GMAC
A2189
AES-GMAC
A2191
AES-GMAC
A2192
AES-GMAC
A2193
AES-GMAC
A2195
AES-GMAC
A2196
AES-GMAC
A2197
AES-GMAC
A4671
AES-GMAC
A4673
AES-GMAC
A4693
AES-GMAC
A4694
AES-GMAC
A4695
AES-GMAC
A4697
AES-GMAC
A4698
AES-GMAC
A4699
AES-GMAC
A4701
AES-GMAC
A4702
AES-GMAC
A4703
AES-GMAC
A4727
AES-GMAC
A4730
AES-GMAC
A4732
AES-KW
A2177
AES-KW
A2180
AES-KW
A2183
AES-KW
A2186
AES-KW
A2190
AES-KW
A2194
AES-KW
A4667
AES-KW
A4670
AES-KW
A4672
AES-KW
A4692
AES-KW
A4696
AES-KW
A4700
AES-KW
A4726
AES-KW
A4729
AES-KW
A4731
AES-KWP
A2177
AES-KWP
A2180
AES-KWP
A2183
AES-KWP
A2186
AES-KWP
A2190
AES-KWP
A2194
AES-KWP
A4667
AES-KWP
A4670
AES-KWP
A4672
AES-KWP
A4692
AES-KWP
A4696
AES-KWP
A4700
AES-KWP
A4726
AES-KWP
A4729
AES-KWP
A4731
Counter DRBG
A2177
Counter DRBG
A2180
Counter DRBG
A2183
Counter DRBG
A2186
Counter DRBG
A2190
Counter DRBG
A2194
Counter DRBG
A4667
Counter DRBG
A4670
Counter DRBG
A4672
Counter DRBG
A4692
Counter DRBG
A4696
Counter DRBG
A4700
Counter DRBG
A4726
Counter DRBG
A4729
Counter DRBG
A4731
ECDSA KeyGen (FIPS186-4)
A2182
ECDSA KeyGen (FIPS186-4)
A2185
ECDSA KeyGen (FIPS186-4)
A2198
ECDSA KeyGen (FIPS186-4)
A2199
ECDSA KeyGen (FIPS186-4)
A2200
ECDSA KeyGen (FIPS186-4)
A4666
ECDSA KeyGen (FIPS186-4)
A4674
ECDSA KeyGen (FIPS186-4)
A4704
ECDSA KeyGen (FIPS186-4)
A4705
ECDSA KeyGen (FIPS186-4)
A4706
ECDSA KeyGen (FIPS186-4)
A4725
ECDSA KeyGen (FIPS186-4)
A4733
ECDSA KeyVer (FIPS186-4)
A2182
ECDSA KeyVer (FIPS186-4)
A2185
ECDSA KeyVer (FIPS186-4)
A2198
ECDSA KeyVer (FIPS186-4)
A2199
ECDSA KeyVer (FIPS186-4)
A2200
ECDSA KeyVer (FIPS186-4)
A4666
ECDSA KeyVer (FIPS186-4)
A4674
ECDSA KeyVer (FIPS186-4)
A4704
ECDSA KeyVer (FIPS186-4)
A4705
ECDSA KeyVer (FIPS186-4)
A4706
ECDSA KeyVer (FIPS186-4)
A4725
ECDSA KeyVer (FIPS186-4)
A4733
ECDSA SigGen (FIPS186-4)
A2182
ECDSA SigGen (FIPS186-4)
A2185
ECDSA SigGen (FIPS186-4)
A2198
ECDSA SigGen (FIPS186-4)
A2199
ECDSA SigGen (FIPS186-4)
A2200
ECDSA SigGen (FIPS186-4)
A4666
ECDSA SigGen (FIPS186-4)
A4674
ECDSA SigGen (FIPS186-4)
A4704
ECDSA SigGen (FIPS186-4)
A4705
ECDSA SigGen (FIPS186-4)
A4706
ECDSA SigGen (FIPS186-4)
A4725
ECDSA SigGen (FIPS186-4)
A4733
ECDSA SigVer (FIPS186-4)
A2182
ECDSA SigVer (FIPS186-4)
A2185
ECDSA SigVer (FIPS186-4)
A2198
ECDSA SigVer (FIPS186-4)
A2199
ECDSA SigVer (FIPS186-4)
A2200
ECDSA SigVer (FIPS186-4)
A4666
ECDSA SigVer (FIPS186-4)
A4666
ECDSA SigVer (FIPS186-4)
A4674
ECDSA SigVer (FIPS186-4)
A4674
ECDSA SigVer (FIPS186-4)
A4704
ECDSA SigVer (FIPS186-4)
A4704
ECDSA SigVer (FIPS186-4)
A4705
ECDSA SigVer (FIPS186-4)
A4705
ECDSA SigVer (FIPS186-4)
A4706
ECDSA SigVer (FIPS186-4)
A4706
ECDSA SigVer (FIPS186-4)
A4725
ECDSA SigVer (FIPS186-4)
A4725
ECDSA SigVer (FIPS186-4)
A4733
ECDSA SigVer (FIPS186-4)
A4733
HMAC-SHA-1
A2182
HMAC-SHA-1
A2185
HMAC-SHA-1
A2198
HMAC-SHA-1
A2199
HMAC-SHA-1
A2200
HMAC-SHA-1
A4666
HMAC-SHA-1
A4674
HMAC-SHA-1
A4704
HMAC-SHA-1
A4705
HMAC-SHA-1
A4706
HMAC-SHA-1
A4725
HMAC-SHA-1
A4733
HMAC-SHA2-224
A2182
HMAC-SHA2-224
A2185
HMAC-SHA2-224
A2198
HMAC-SHA2-224
A2199
HMAC-SHA2-224
A2200
HMAC-SHA2-224
A4666
HMAC-SHA2-224
A4674
HMAC-SHA2-224
A4704
HMAC-SHA2-224
A4705
HMAC-SHA2-224
A4706
HMAC-SHA2-224
A4725
HMAC-SHA2-224
A4733
HMAC-SHA2-256
A2179
HMAC-SHA2-256
A2182
HMAC-SHA2-256
A2185
HMAC-SHA2-256
A2198
HMAC-SHA2-256
A2199
HMAC-SHA2-256
A2200
HMAC-SHA2-256
A4666
HMAC-SHA2-256
A4669
HMAC-SHA2-256
A4674
HMAC-SHA2-256
A4704
HMAC-SHA2-256
A4705
HMAC-SHA2-256
A4706
HMAC-SHA2-256
A4725
HMAC-SHA2-256
A4728
HMAC-SHA2-256
A4733
HMAC-SHA2-384
A2182
HMAC-SHA2-384
A2185
HMAC-SHA2-384
A2198
HMAC-SHA2-384
A2199
HMAC-SHA2-384
A2200
HMAC-SHA2-384
A4666
HMAC-SHA2-384
A4674
HMAC-SHA2-384
A4704
HMAC-SHA2-384
A4705
HMAC-SHA2-384
A4706
HMAC-SHA2-384
A4725
HMAC-SHA2-384
A4733
HMAC-SHA2-512
A2182
HMAC-SHA2-512
A2185
HMAC-SHA2-512
A2198
HMAC-SHA2-512
A2199
HMAC-SHA2-512
A2200
HMAC-SHA2-512
A4666
HMAC-SHA2-512
A4674
HMAC-SHA2-512
A4704
HMAC-SHA2-512
A4705
HMAC-SHA2-512
A4706
HMAC-SHA2-512
A4725
HMAC-SHA2-512
A4733
KAS-ECC-SSC Sp800-56Ar3
A2182
KAS-ECC-SSC Sp800-56Ar3
A2185
KAS-ECC-SSC Sp800-56Ar3
A2198
KAS-ECC-SSC Sp800-56Ar3
A2199
KAS-ECC-SSC Sp800-56Ar3
A2200
KAS-ECC-SSC Sp800-56Ar3
A4666
KAS-ECC-SSC Sp800-56Ar3
A4704
KAS-ECC-SSC Sp800-56Ar3
A4705
KAS-ECC-SSC Sp800-56Ar3
A4706
KAS-ECC-SSC Sp800-56Ar3
A4725
KAS-ECC-SSC Sp800-56Ar3
A4733
KDF TLS
A2182
KDF TLS
A2185
KDF TLS
A2198
KDF TLS
A2199
KDF TLS
A2200
KDF TLS
A4666
KDF TLS
A4674
KDF TLS
A4704
KDF TLS
A4705
KDF TLS
A4706
KDF TLS
A4725
KDF TLS
A4733
RSA KeyGen (FIPS186-4)
A2182
RSA KeyGen (FIPS186-4)
A2185
RSA KeyGen (FIPS186-4)
A2198
RSA KeyGen (FIPS186-4)
A2199
RSA KeyGen (FIPS186-4)
A2200
RSA KeyGen (FIPS186-4)
A4666
RSA KeyGen (FIPS186-4)
A4674
RSA KeyGen (FIPS186-4)
A4704
RSA KeyGen (FIPS186-4)
A4705
RSA KeyGen (FIPS186-4)
A4706
RSA KeyGen (FIPS186-4)
A4725
RSA KeyGen (FIPS186-4)
A4733
RSA SigGen (FIPS186-4)
A2182
RSA SigGen (FIPS186-4)
A2185
RSA SigGen (FIPS186-4)
A2198
RSA SigGen (FIPS186-4)
A2199
RSA SigGen (FIPS186-4)
A2200
RSA SigGen (FIPS186-4)
A4666
RSA SigGen (FIPS186-4)
A4674
RSA SigGen (FIPS186-4)
A4704
RSA SigGen (FIPS186-4)
A4705
RSA SigGen (FIPS186-4)
A4706
RSA SigGen (FIPS186-4)
A4725
RSA SigGen (FIPS186-4)
A4733
RSA SigVer (FIPS186-4)
A2182
RSA SigVer (FIPS186-4)
A2185
RSA SigVer (FIPS186-4)
A2198
RSA SigVer (FIPS186-4)
A2199
RSA SigVer (FIPS186-4)
A2200
RSA SigVer (FIPS186-4)
A4666
RSA SigVer (FIPS186-4)
A4674
RSA SigVer (FIPS186-4)
A4704
RSA SigVer (FIPS186-4)
A4705
RSA SigVer (FIPS186-4)
A4706
RSA SigVer (FIPS186-4)
A4725
RSA SigVer (FIPS186-4)
A4733
SHA-1
A2182
SHA-1
A2185
SHA-1
A2198
SHA-1
A2199
SHA-1
A2200
SHA-1
A4666
SHA-1
A4674
SHA-1
A4704
SHA-1
A4705
SHA-1
A4706
SHA-1
A4725
SHA-1
A4733
SHA2-224
A2182
SHA2-224
A2185
SHA2-224
A2198
SHA2-224
A2199
SHA2-224
A2200
SHA2-224
A4666
SHA2-224
A4674
SHA2-224
A4704
SHA2-224
A4705
SHA2-224
A4706
SHA2-224
A4725
SHA2-224
A4733
SHA2-256
A2179
SHA2-256
A2182
SHA2-256
A2185
SHA2-256
A2198
SHA2-256
A2199
SHA2-256
A2200
SHA2-256
A4666
SHA2-256
A4669
SHA2-256
A4674
SHA2-256
A4704
SHA2-256
A4705
SHA2-256
A4706
SHA2-256
A4725
SHA2-256
A4728
SHA2-256
A4733
SHA2-384
A2182
SHA2-384
A2185
SHA2-384
A2198
SHA2-384
A2199
SHA2-384
A2200
SHA2-384
A4666
SHA2-384
A4674
SHA2-384
A4704
SHA2-384
A4705
SHA2-384
A4706
SHA2-384
A4725
SHA2-384
A4733
SHA2-512
A2182
SHA2-512
A2185
SHA2-512
A2198
SHA2-512
A2199
SHA2-512
A2200
SHA2-512
A4666
SHA2-512
A4674
SHA2-512
A4704
SHA2-512
A4705
SHA2-512
A4706
SHA2-512
A4725
SHA2-512
A4733
SHA2-512/256
A2182
SHA2-512/256
A2185
SHA2-512/256
A2198
SHA2-512/256
A2199
SHA2-512/256
A2200
SHA2-512/256
A4666
SHA2-512/256
A4674
SHA2-512/256
A4704
SHA2-512/256
A4705
SHA2-512/256
A4706
SHA2-512/256
A4725
SHA2-512/256
A4733
Software Versions
AWS-LC FIPS 1.0.2 [1] and AWS-LC FIPS 1.1.0 [2]

Vendor

Amazon Web Services Inc.
1918 8th Ave.
Seattle, WA 98121
USA

Daryl Martin
[email protected]
Phone: 0000000000

Related Files

Security Policy
Consolidated Certificate

Validation History

Date Type Lab
10/6/2023 Initial ATSEC INFORMATION SECURITY CORP
6/27/2025 Update ATSEC INFORMATION SECURITY CORP