Module Name
OpenSSL FIPS Object Module
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When built, installed, protected and initialized as assumed by the Crypto Officer role and specified in the provided Security Policy. Appendix B of the provided Security Policy specifies the complete set of source files of this module. There shall be no additions, deletions or alterations of this set as used during module build. All source files shall be verified as specified in Appendix B of the provided Security Policy. Installation, protection, and initialization shall be completed as specified in Appendix C of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a FIPS 140-2 non-compliant module.
Embodiment
Multi-chip standalone
Tested Configuration(s)
- SuSE Linux Version 9.0 (gcc Compiler Version 3.3.1), and HPUX Version 11i (gcc Compiler Version
3.4.2)
Approved Algorithms
AES |
Cert. #146 |
DSA |
Cert. #108 |
HMAC-SHA-1 |
Cert. #95 |
RNG |
Cert. #111 |
RSA |
Cert. #78 |
SHS |
Certs. #235 and #360 |
Triple-DES |
Cert. #256 |
Other Algorithms
DES ((Cert. #258); Diffie-Hellman (key agreement, key establishment methodology provides
between 112-bits and 256-bits of encryption strength; non-compliant less than 112 bits of encryption strength)