Module Name
IBM CryptoLite for C
Historical Reason
RNG SP800-131A Revision 1 Transition
Caveat
When operated in FIPS mode
Security Level Exceptions
- Cryptographic Module Specification: Level 3
Embodiment
Multi-chip standalone
Description
IBM CryptoLite is a C software package providing advanced cryptographic services in a very small footprint. CryptoLite supports public key encryption, digital signatures, symmetric ciphers, hash functions, message authentication codes, and other cryptographic algorithms through a simple programming interface. There are no runtime dependencies and the code has been optimized for high performance.
Tested Configuration(s)
- Red Hat Enterprise Linux v4 (single-user mode)
- Windows Vista Ultimate
Approved Algorithms
AES |
Cert. #615 |
DSA |
Cert. #238 |
ECDSA |
Cert. #66 |
HMAC |
Cert. #318 |
RNG |
Cert. #350 |
RSA |
Cert. #286 |
SHS |
Cert. #663 |
Triple-DES |
Cert. #585 |
Other Algorithms
DES; CAST-5; CAST-6; RC2; ArcFour; Blowfish; Diffie-Hellman (key agreement; key establishment methodology provides 112 bits of encryption strength; non-compliant less than 112 bits of encryption strength); ECDH (key agreement; key establishment methodology provides 112 to 256 bits of encryption strength; non-compliant less than 112 bits of encryptino strength); RSA (key wrapping; key establishment methodology provides 112 to 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength); MD2; MD5; Whirlpool; HMAC MD5