Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Cryptographic Module Validation Program CMVP

Certificate #4895

Details

Module Name
Cryptographic Module for BIG-IP
Standard
FIPS 140-3
Status
Active
Sunset Date
11/20/2026
Overall Level
1
Caveat
Interim validation. When operated in approved mode. When installed, initialized and configured as specified in Section 11.1 of the Security Policy.
Security Level Exceptions
  • Physical security: N/A
  • Non-invasive security: N/A
  • Mitigation of other attacks: N/A
  • Documentation requirements: N/A
  • Cryptographic module security policy: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
Cryptographic library offering various cryptographic mechanisms to BIG-IP Virtual Edition.
Tested Configuration(s)
  • BIG-IP 17.1.0.1 on Hyper-V version 10.0.20348.1 on Windows Server 2022 Standard running on Dell PowerEdge R450 with an Intel® Xeon® Silver Ice Lake 4309Y with PAA
  • BIG-IP 17.1.0.1 on Hyper-V version 10.0.20348.1 on Windows Server 2022 Standard running on Dell PowerEdge R450 with an Intel® Xeon® Silver Ice Lake 4309Y without PAA
  • BIG-IP 17.1.0.1 on KVM on Ubuntu 22.04.1 LTS running on Dell PowerEdge R450 with an Intel® Xeon® Silver Ice Lake 4309Y with PAA
  • BIG-IP 17.1.0.1 on KVM on Ubuntu 22.04.1 LTS running on Dell PowerEdge R450 with an Intel® Xeon® Silver Ice Lake 4309Y without PAA.
  • BIG-IP 17.1.0.1 on VMware ESXi™ 8.0.0.10100 (Build: 20920323) running on Dell PowerEdge R650 with an Intel® Xeon® Gold Ice Lake 6330N with PAA
  • BIG-IP 17.1.0.1 on VMware ESXi™ 8.0.0.10100 (Build: 20920323) running on Dell PowerEdge R650 with an Intel® Xeon® Gold Ice Lake 6330N without PAA
Approved Algorithms
AES-CBC
AES-CBC
AES-CTR
AES-ECB
AES-ECB
AES-GCM
AES-GCM
AES-GCM
AES-GMAC
AES-GMAC
Counter DRBG
Counter DRBG
ECDSA KeyGen (FIPS186-4)
ECDSA KeyVer (FIPS186-4)
ECDSA SigGen (FIPS186-4)
ECDSA SigVer (FIPS186-4)
HMAC-SHA-1
HMAC-SHA-1
HMAC-SHA2-256
HMAC-SHA2-384
KAS-ECC-SSC Sp800-56Ar3
KAS-FFC-SSC Sp800-56Ar3
KDF SSH
KDF TLS
RSA KeyGen (FIPS186-4)
RSA SigGen (FIPS186-4)
RSA SigVer (FIPS186-4)
Safe Primes Key Generation
SHA-1
SHA-1
SHA2-256
SHA2-384
TLS v1.2 KDF RFC7627
Hardware Versions
N/A
Software Versions
1.0.2za-fips
Firmware Versions
N/A

Vendor

F5, Inc.
801 Fifth Ave
Seattle, WA 98104
USA

Maryrita Steinhour
fipsbigip17@f5.com
Phone: 206-272-7351

Related Files

Validation History

Date Type Lab
11/21/2024 Initial ATSEC INFORMATION SECURITY CORP