Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #4973

Details

Module Name
VMware's BoringCrypto Module
Standard
FIPS 140-3
Status
Active
Sunset Date
7/22/2029
Overall Level
1
Caveat
No assurance of the minimum strength of generated SSPs (e.g., keys). When operated in approved mode.
Security Level Exceptions
  • Physical security: N/A
  • Non-invasive security: N/A
  • Mitigation of other attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
VMware’s BoringCrypto Module is a versatile software library that implements and provides FIPS 140-3 approved cryptographic functionalities to various VMware products and services.
Tested Configuration(s)
  • Debian Linux 5.17.11 (Rodete) running on n2d with AMD EPYC 7B12 with PAA
  • Debian Linux 5.17.11 (Rodete) running on n2d with AMD EPYC 7B12 without PAA
  • Google Prodimage with Linux 4.15.0 running on n1 with Intel Xeon E5 2696 v4 with PAA
  • Google Prodimage with Linux 4.15.0 running on n1 with Intel Xeon E5 2696 v4 without PAA
Approved Algorithms
AES-CBC
A2811
AES-CCM
A2811
AES-CTR
A2811
AES-ECB
A2811
AES-GCM
A2811
AES-KW
A2811
AES-KWP
A2811
Counter DRBG
A2811
ECDSA KeyGen (FIPS186-4)
A2811
ECDSA KeyVer (FIPS186-4)
A2811
ECDSA SigGen (FIPS186-4)
A2811
ECDSA SigVer (FIPS186-4)
A2811
HMAC-SHA-1
A2811
HMAC-SHA2-224
A2811
HMAC-SHA2-256
A2811
HMAC-SHA2-384
A2811
HMAC-SHA2-512
A2811
KAS-ECC-SSC Sp800-56Ar3
A2811
KDF TLS
A2811
RSA KeyGen (FIPS186-4)
A2811
RSA SigGen (FIPS186-4)
A2811
RSA SigVer (FIPS186-4)
A2811
SHA-1
A2811
SHA2-224
A2811
SHA2-256
A2811
SHA2-384
A2811
SHA2-512
A2811
SHA2-512/256
A2811
Software Versions
2022061300

Vendor

Broadcom Inc.
3401 Hillview Ave
Palo Alto, CA 94304
USA

VCF Trust and Assurance Engineering
[email protected]
Phone: +918067147256

Related Files

Security Policy

Validation History

Date Type Lab
2/26/2025 Initial Acumen Security