Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4823

Details

Module Name
OpenSSL FIPS Provider for AlmaLinux 9
Standard
FIPS 140-3
Status
Active
Sunset Date
10/6/2026
Overall Level
1
Caveat
Interim validation. When operated in Approved mode. When installed, initialized and configured as specified in Section 11 of the Security Policy
Security Level Exceptions
  • Physical security: N/A
  • Non-invasive security: N/A
  • Documentation requirements: N/A
  • Cryptographic module security policy: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
AlmaLinux 9.2 OpenSSL FIPS provider implementation providing cryptographic services to Linux user space software components.
Tested Configuration(s)
  • AlmaLinux 9.2 running on Amazon Web Services (AWS) a1.metal with AWS Graviton with PAA
  • AlmaLinux 9.2 running on Amazon Web Services (AWS) a1.metal with AWS Graviton without PAA
  • AlmaLinux 9.2 running on Amazon Web Services (AWS) m5.metal with Intel Xeon Platinum 8259CL with PAA
  • AlmaLinux 9.2 running on Amazon Web Services (AWS) m5.metal with Intel Xeon Platinum 8259CL without PAA
Approved Algorithms
AES-CBC
AES-CBC
AES-CBC
AES-CBC
AES-CBC
AES-CBC
AES-CBC-CS1
AES-CBC-CS1
AES-CBC-CS1
AES-CBC-CS1
AES-CBC-CS1
AES-CBC-CS1
AES-CBC-CS2
AES-CBC-CS2
AES-CBC-CS2
AES-CBC-CS2
AES-CBC-CS2
AES-CBC-CS2
AES-CBC-CS3
AES-CBC-CS3
AES-CBC-CS3
AES-CBC-CS3
AES-CBC-CS3
AES-CBC-CS3
AES-CCM
AES-CCM
AES-CCM
AES-CCM
AES-CCM
AES-CCM
AES-CFB1
AES-CFB1
AES-CFB1
AES-CFB1
AES-CFB1
AES-CFB1
AES-CFB128
AES-CFB128
AES-CFB128
AES-CFB128
AES-CFB128
AES-CFB128
AES-CFB8
AES-CFB8
AES-CFB8
AES-CFB8
AES-CFB8
AES-CFB8
AES-CMAC
AES-CMAC
AES-CMAC
AES-CMAC
AES-CMAC
AES-CMAC
AES-CTR
AES-CTR
AES-CTR
AES-CTR
AES-CTR
AES-CTR
AES-ECB
AES-ECB
AES-ECB
AES-ECB
AES-ECB
AES-ECB
AES-ECB
AES-ECB
AES-ECB
AES-ECB
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GCM
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-GMAC
AES-KW
AES-KW
AES-KW
AES-KW
AES-KW
AES-KW
AES-KWP
AES-KWP
AES-KWP
AES-KWP
AES-KWP
AES-KWP
AES-OFB
AES-OFB
AES-OFB
AES-OFB
AES-OFB
AES-OFB
AES-XTS Testing Revision 2.0
AES-XTS Testing Revision 2.0
AES-XTS Testing Revision 2.0
AES-XTS Testing Revision 2.0
AES-XTS Testing Revision 2.0
AES-XTS Testing Revision 2.0
Counter DRBG
ECDSA KeyGen (FIPS186-4)
ECDSA KeyGen (FIPS186-4)
ECDSA KeyGen (FIPS186-4)
ECDSA KeyGen (FIPS186-4)
ECDSA KeyGen (FIPS186-4)
ECDSA KeyVer (FIPS186-4)
ECDSA KeyVer (FIPS186-4)
ECDSA KeyVer (FIPS186-4)
ECDSA KeyVer (FIPS186-4)
ECDSA KeyVer (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigVer (FIPS186-4)
ECDSA SigVer (FIPS186-4)
ECDSA SigVer (FIPS186-4)
ECDSA SigVer (FIPS186-4)
ECDSA SigVer (FIPS186-4)
ECDSA SigVer (FIPS186-4)
Hash DRBG
HMAC DRBG
HMAC-SHA-1
HMAC-SHA-1
HMAC-SHA-1
HMAC-SHA-1
HMAC-SHA-1
HMAC-SHA2-224
HMAC-SHA2-224
HMAC-SHA2-224
HMAC-SHA2-224
HMAC-SHA2-224
HMAC-SHA2-256
HMAC-SHA2-256
HMAC-SHA2-256
HMAC-SHA2-256
HMAC-SHA2-256
HMAC-SHA2-256
HMAC-SHA2-384
HMAC-SHA2-384
HMAC-SHA2-384
HMAC-SHA2-384
HMAC-SHA2-384
HMAC-SHA2-512
HMAC-SHA2-512
HMAC-SHA2-512
HMAC-SHA2-512
HMAC-SHA2-512
HMAC-SHA2-512/224
HMAC-SHA2-512/224
HMAC-SHA2-512/224
HMAC-SHA2-512/224
HMAC-SHA2-512/224
HMAC-SHA2-512/256
HMAC-SHA2-512/256
HMAC-SHA2-512/256
HMAC-SHA2-512/256
HMAC-SHA2-512/256
HMAC-SHA3-224
HMAC-SHA3-256
HMAC-SHA3-384
HMAC-SHA3-512
KAS-ECC-SSC Sp800-56Ar3
KAS-ECC-SSC Sp800-56Ar3
KAS-ECC-SSC Sp800-56Ar3
KAS-ECC-SSC Sp800-56Ar3
KAS-ECC-SSC Sp800-56Ar3
KAS-FFC-SSC Sp800-56Ar3
KDA HKDF Sp800-56Cr1
KDA OneStep SP800-56Cr2
KDF ANS 9.42
KDF ANS 9.42
KDF ANS 9.42
KDF ANS 9.42
KDF ANS 9.42
KDF ANS 9.42
KDF ANS 9.63
KDF ANS 9.63
KDF ANS 9.63
KDF ANS 9.63
KDF ANS 9.63
KDF ANS 9.63
KDF SP800-108
KDF SSH
KDF SSH
KDF SSH
KDF SSH
PBKDF
PBKDF
PBKDF
PBKDF
PBKDF
PBKDF
RSA KeyGen (FIPS186-4)
RSA KeyGen (FIPS186-4)
RSA KeyGen (FIPS186-4)
RSA KeyGen (FIPS186-4)
RSA KeyGen (FIPS186-4)
RSA SigGen (FIPS186-4)
RSA SigGen (FIPS186-4)
RSA SigGen (FIPS186-4)
RSA SigGen (FIPS186-4)
RSA SigGen (FIPS186-4)
RSA SigVer (FIPS186-4)
RSA SigVer (FIPS186-4)
RSA SigVer (FIPS186-4)
RSA SigVer (FIPS186-4)
RSA SigVer (FIPS186-4)
Safe Primes Key Generation
Safe Primes Key Generation
SHA-1
SHA-1
SHA-1
SHA-1
SHA-1
SHA2-224
SHA2-224
SHA2-224
SHA2-224
SHA2-224
SHA2-256
SHA2-256
SHA2-256
SHA2-256
SHA2-256
SHA2-256
SHA2-384
SHA2-384
SHA2-384
SHA2-384
SHA2-384
SHA2-512
SHA2-512
SHA2-512
SHA2-512
SHA2-512
SHA2-512/224
SHA2-512/224
SHA2-512/224
SHA2-512/224
SHA2-512/224
SHA2-512/256
SHA2-512/256
SHA2-512/256
SHA2-512/256
SHA2-512/256
SHA3-224
SHA3-256
SHA3-384
SHA3-512
SHAKE-128
SHAKE-256
TLS v1.2 KDF RFC7627
TLS v1.2 KDF RFC7627
TLS v1.2 KDF RFC7627
TLS v1.2 KDF RFC7627
TLS v1.2 KDF RFC7627
TLS v1.3 KDF
Software Versions
3.0.7-1d2bd88ee26b3c90

Vendor

Cloudlinux Inc., TuxCare division
2318 Louis Road, Suite B
Palo Alto, CA 94303
USA

Simon John
sjohn@tuxcare.com
Phone: 000-000-0000

Related Files

Validation History

Date Type Lab
10/7/2024 Initial ATSEC INFORMATION SECURITY CORP