Module Name
Canonical Ltd. Ubuntu 22.04 Strongswan Cryptographic Module
Caveat
Interim validation. When installed, initialized and configured as specified in Section 11.1 of the Security Policy with module Canonical Ltd. Ubuntu 22.04 OpenSSL Cryptographic Module validated to FIPS 140-3 under Cert. #4794, operating in the approved mode, and with module Canonical Ltd. Ubuntu 22.04 Kernel Crypto API Cryptographic Module validated to FIPS 140-3 under Cert. #4894, operating in the approved mode.
Security Level Exceptions
- Physical security: N/A
- Non-invasive security: N/A
- Mitigation of other attacks: N/A
- Documentation requirements: N/A
- Cryptographic module security policy: N/A
Embodiment
Multi-Chip Stand Alone
Description
Strongswan IKE daemon implementing the IKEv2 protocol to negotiate the key material for IPSec.
Tested Configuration(s)
- Ubuntu 22.04 on IBM z15 with IBM z15 processor with PAI
- Ubuntu 22.04 on IBM z15 with IBM z15 processor without PAI
- Ubuntu 22.04 running on Amazon Web Services (AWS) c6g.metal with AWS Graviton2 processor with PAA
- Ubuntu 22.04 running on Amazon Web Services (AWS) c6g.metal with AWS Graviton2 processor without PAA
- Ubuntu 22.04 running on Supermicro SYS-1019P-WTR with Intel Xeon Gold 6226 processor with PAA
- Ubuntu 22.04 running on Supermicro SYS-1019P-WTR with Intel Xeon Gold 6226 processor without PAA
Approved Algorithms
Safe Primes Key Generation
Safe Primes Key Verification
Software Versions
5.9.5-2ubuntu2.1+Fips1