Historical Component Validation List

Last Update: 1/6/2016

NOTICE: The SP800-131A Transitions: Recommendation for Transitioning the Use of Cryptographic Algorithms and Key Lengths goes into effect January 1, 2014. Key lengths (modulus and curve sizes) providing less than 112 bits of security strength are no longer approved to generate digital signatures. Therefore, the modulus sizes 1024 and 1536 and the curve sizes P-192, K-163 and B-163 have been removed. The SP800-131A document also disallows the use of SHA-1 with Digital Signature Generation beginning January 1, 2014. All of the non-compliant features of the Components validation have been moved to this Historical Components Validation List for reference.

Overview

This page provides technical information pertaining to the testing of individual components of FIPS approved and NIST recommended cryptographic algorithms. These components are validated as conforming to the specifications in the associated publication. The testing that is performed on the component is described in the associated validation system (VS) document. The testing is handled by NVLAP- accredited Cryptographic And Security Testing (CST) Laboratories.

The implementations below consist of software, firmware, hardware, and any combination thereof. The National Institute of Standards and Technology (NIST) has made every attempt to provide complete and accurate information about the components described in this document. However, due to the possibility of changes made within individual companies, NIST cannot guarantee that this document reflects the current status of each component. It is the responsibility of the vendor to notify NIST of any necessary changes to its entry in the following list.

In addition to a general description of each component implementation, this list mentions the features that were tested as conforming to the appropriate publication. These features are described in the specific legend for each individual component and are listed below for each validation. Select the legend below for detail on the testing of that component.

Legends for Description Field for the Following Component

All of SP800-56A EXCEPT KDF

SP800-56A Section 5.7.1.2 Elliptic Curve Cryptography Cofactor Diffie-Hellman (ECCCDH) Primitive

FIPS 186-3 ECDSA Signature Generation Component

RSASP1 Signature Primitive Component

This list is ordered in reverse numerical order, by validation number. Thus, the more recent validations are located closer to the top of the list. The column after the Validation Date column contains information indicating what modes and features for these modes has been successfully tested.

Validated Component Implementations


Validation No.	Component Validated	Associated Publication	Vendor	Implementation	Operational Environment	Val. Date	Description/Notes
259	All of SP800-56A EXCEPT KDF	SP800-56A	United States Special Operations Command (USSOCOM) 7701 Tampa Point Boulevard MacDill Air Force Base, Florida 33621-5323 USA -William W. Burnham TEL: (813) 826-2282	Suite B Cryptographic Algorithms Version 1.0	Intel Xeon E5530; Qualcomm Snapdragon S2 MSM8655	8/16/2013	ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Full Validation Key Regeneration ) SCHEMES: FullUnified: (KARole: Initiator ) EA: P-192 ECDSA Val#448 SHS Val#2187 DRBG Val#132 HMAC Val#1610 "KEYW, in coordination with the United States Special Operations Command (USSOCOM), has developed a Suite B-compliant, standards based, AES/GCM-256 layer of encrypted communications between a BlackBerry Enterprise Server (BES) and a BlackBerry Mobile Set (MS) with Elliptic Curve (EC) key exchange used to negotiate symmetric keys." 07/25/14: Updated implementation information;
224	Signature Generation of hash sized messages	FIPS186-4 ECDSA	Gemalto Avenue du Jujubier Z.I Athelia IV La Ciotat, 13705 France -Arnaud Lotigier TEL: +33-4-42-36-60-74 FAX: +33-4-42-36-55-45	TOP DL V2 Version #11-M1005011+Softmask V02 (Firmware) Part # A1023378	Infineon SLE66CLX1280PE w/ TOP DL V2 smart Card	5/12/2010	ECDSA SigGen Component: CURVES( P-192 K-163 B-163 ) "This module is based on a Java Card platform (TOP DL V2) with 128K EEPROM memory available. The Cryptographic Module provides dual interfaces (i.e. contact and contact-less) where the same security level is achieved." 01/15/14: Originally verified as SigGen and SigVer - ECDSA#172;
222	Signature Generation of hash sized messages	FIPS186-4 ECDSA	Athena Smartcard Inc. 20380 Town Center Lane, Suite 240 Cupertino, CA 95014 USA -Ian Simmons TEL: (408) 865-0112 FAX: (408) 865-0333	Athena OS755 ECDSA2 Component Version A1.0 (Firmware) Part # Inside Secure AT90SC	Inside Secure AT90SC w/ OS755	6/16/2011	ECDSA SigGen Component: CURVES( P-192 ) "Athena OS755 is a GlobalPlatform Java Card smart card operating system implementing AES, TDES, DRBG, SHA-1/SHA-2, RSA, SP 800-56A, KAS ( ECC CDH Primitive only) and ECDSA2." 01/15/14: Originally verified as SigGen and SigVer - ECDSA#214;
221	Signature Generation of hash sized messages	FIPS186-4 ECDSA	Oberthur Technologies 4250 Pleasant Valley Road Chantilly, VA 20151 USA -Christophe Goyet TEL: 703-263-0100 FAX: 703-263-0503	ECDSA for ID-One Cosmo v7 A Version 0801 (Firmware) Part # C3	ID-One Cosmo v7.0 A	2/5/2009	ECDSA SigGen Component: CURVES( P-192 K-163 B-163 ) "The ID-One Cosmo Smart Card Platform is a single chip multi-application cryptographic module that offers a highly secure architecture together with enhanced cryptographic services. The tested algorithm implementation applies to the following hardware part number: BF, CO, C3, CF, with firmware version 0801." 01/15/14: Originally verified as SigGen and SigVer - ECDSA#120;
220	Signature Generation of hash sized messages	FIPS186-4 ECDSA	Oberthur Technologies 4250 Pleasant Valley Road Chantilly, VA 20151 USA -Christophe Goyet TEL: 703-263-0100 FAX: 703-263-0503	ECDSA for ID-One Cosmo v7 N Version FC10 (Firmware) Part # B0	ID-One Cosmo v7.0 N	1/16/2014	ECDSA SigGen Component: CURVES( P-192 K-163 B-163 ) "The ID-One Cosmo Smart Card Platform is a single chip multi-application that offers a highly secure architecture together with enhanced cryptographic services. The tested algorithm implementation applies to the following hardware part number: B0, BA, C8, CA, CB, C4, C7, C9, B7, CD, C6, with firmware version FC10." 01/15/14: Originally verified as SigGen and SigVer - ECDSA#94;
184	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Utimaco Safeware AG Germanusstraße 4 Aachen, 52080 Germany -Dr. Gesa Ott TEL: ++49 241-1696-200 FAX: ++49 241-1696-199 -Dieter Bong TEL: ++49 241-1696-200 FAX: ++49 241-1696-199	CryptoServer Se ECDSA Version ecdsa1.1.2.0_eca1.1.3.0 (Firmware)	Texas Instruments TMS320C6416T	12/20/2013	Curves tested: ( P-192 K-163 B-163 ) "ECDSA Component implements all ECDSA key sizes and curves to allow flexibility and efficiency."
153	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134 USA -Global Certification Team	CiscoSSL FIPS Object Module (Assembler) Version 4.1	ARM Cortex-A9 w/ Android 4.0; Intel Xeon w/ Windows 7; Freescale PowerPC-e500 w/ Linux 2.6; Intel Xeon with AES-NI w/ Windows 7; Cavium Octeon MIPS64 w/ Linux 2.6; Intel Xeon w/ Linux 2.6; Intel Xeon with AES-NI w/ Linux 2.6	11/22/2013	Curves tested: ( P-192 ) "The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."
151	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134 USA -Global Certification Team	CiscoSSL FIPS Object Module Version 4.1	Cavium Octeon MIPS64 w/ Linux 2.6; Intel Xeon w/ FreeBSD 9.0; Intel Xeon with AES-NI w/ Windows 8.1; Intel Xeon w/ Windows 8.1	11/22/2013	Curves tested: ( P-192 ) "The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products." 07/31/15: Added new tested information;
148	All of SP800-56A EXCEPT KDF	SP800-56A	Allegro Software Development Corporation 1740 Massachusetts Avenue Boxborough, MA 01719 USA -Alan Presser TEL: +1 (978) 264-6600	Allegro Cryptographic Engine Version 1.1.8	Intel Core 2 Duo E8400 w/ Windows 7 Ultimate (64-bit)	11/8/2013	FFC: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Full Validation ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA DSA Val#810 SHS Val#2243 DRBG Val#430 AES Val#2671 AES Val#2671 HMAC Val#1661 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Full Validation ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#465 SHS Val#2243 DRBG Val#430 AES Val#2671 AES Val#2671 HMAC Val#1661 "The Allegro Cryptographic Engine (ACE) is a cryptographic library module for embedded computing systems. ACE provides software implementations of algorithms for calculations of message digests, digital signature creation and verification, bulk encryption and decryption, key generation and key exchange."
124	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Sonus Networks, Inc. 4 Technology Park Drive Westford, MA 01886 USA -Sandeep Kaushik TEL: 1-855-GO-SONUS FAX: 978-614-8101 -Nui Chan TEL: 1-855-GO-SONUS FAX: 978-614-8101	Sonus Cryptographic Library Version 1	Intel Nehalem w/ Sonus Debian Linux 02.00.02-A026	10/25/2013	Curves tested: ( P-192 K-163 B-163 ) TLS( TLS1.2 (SHA 256 ) ) SHA Val#2217 HMAC Val#1635 SSH (SHA 1 , 224 , 256 , 384 , 512 ) SHA Val#2217 SNMP SHA1 Val#2217 "Sonus Session Border Controller FIPS-validated cryptographic software module"
121	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134 USA -Global Certification Team	CiscoSSL FIPS Object Module (Assembler) Version 4.0	ARM Cortex-A9 w/ Android 4.0; Intel Xeon w/ Windows 7; Freescale PowerPC-e500 w/ Linux 2.6; Freescale PowerPC-e500 w/ Linux 2.6; Intel Xeon with AES-NI w/ Windows 7; Cavium Octeon MIPS64 w/ Linux 2.6; Intel Xeon w/ Linux 2.6; Intel Xeon with AES-NI w/ Linux 2.6	10/1/2013	Curves tested: ( P-192 ) "The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."
120	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134 USA -Global Certification Team	CiscoSSL FIPS Object Module Version 4.0	Cavium Octeon MIPS64 w/ Linux 2.6; Intel Xeon w/ FreeBSD 9.0	10/1/2013	Curves tested: ( P-192 ) "The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."
116	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	BlackBerry 295 Phillip Street Waterloo, ON N2L3W8 Canada -Security Certifications Team TEL: 519-888-7465x72921 FAX: 905-507-4230	BlackBerry Cryptographic Algorithm Library Version 6.1	Intel Xeon X5650 w/ CentOS 5.5 Linux 32-bit; Intel Xeon X5650 w/ CentOS 5.5 Linux 64-bit; Intel Xeon X5650 w/ Windows XP 32-bit; Intel Xeon X5650 w/ Windows XP 64-bit; ARMv7 w/ QNX Neutrino 8.0	9/30/2013	Curves tested: ( P-192 K-163 ) "The BlackBerry Cryptographic Algorithm Library is a suite of cryptographic algorithms that provides advanced cryptographic functionality to systems running BlackBerry 10 OS and components of BlackBerry Enterprise Service 10."
111	All of SP800-56A EXCEPT KDF	SP800-56A	Entrust, Inc. One Lincoln Centre 5400 LBJ Freeway Suite 1340 Dallas, TX 75240 USA -Greg Wetmore TEL: 613-270-2773 FAX: 613-270-3400 -Mark Joynes TEL: 613-270-3134 FAX: 613-270-3400	Entrust Authority™ Security Kernel Version 8.1Sp1 R2	Intel Core 2 Duo E8400 w/ Microsoft Windows Server 2008 R2 Enterprise Edition	9/27/2013	ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPV KPG Full Validation ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 OnePassDH: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#454 SHS Val#2206 RNG Val#1244 DRBG Val#405 "The Security Kernel is a C++ implementation of cryptographic functions accessible by an object-oriented API. Depending on configuration, the algorithms may be implemented in software, hardware or both. The industry standard Cryptoki API from PKCS #11, is used as the interface to hardware-based cryptographic modules."
98	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	United States Special Operations Command (USSOCOM) 7701 Tampa Point Boulevard MacDill Air Force Base, Florida 33621-5323 USA -William W. Burnham TEL: (813) 826-2282	Suite B Cryptographic Algorithms Version 1.0	Intel Xeon E5530; Qualcomm Snapdragon S2 MSM8655	8/16/2013	Curves tested: ( P-192 ) "KEYW, in coordination with the United States Special Operations Command (USSOCOM), has developed a Suite B-compliant, standards based, AES/GCM-256 layer of encrypted communications between a BlackBerry Enterprise Server (BES) and a BlackBerry Mobile Set (MS) with Elliptic Curve (EC) key exchange used to negotiate symmetric keys." 07/25/14: Updated implementation information;
95	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134 USA -Global Certification Team	CiscoSSL FIPS Object Module (Assembler) Version 2.1	ARMv7 w/ Android 4.0; PowerPC, Freescale's PowerQUICC III Processor Family w/ Linux 2.6	7/22/2013	Curves tested: ( P-192 ) "The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco''s networking and collaboration products."
93	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Certicom Corp. 4701 Tahoe Blvd. Building A Missisauga, ON L4W 0B5 Canada -Certicom Sales TEL: 1-905-507-4220 FAX: 1-905-507-4230 -Ian Laidlaw TEL: 1-289-261-4277 FAX: 1-905-507-4230	Security Builder® FIPS Core Version 6.1	Intel x86 (Xeon X5650) w/ CentOS Linux 32-bit; Intel x64 (Xeon X5650) w/ CentOS Linux 64-bit; Intel x86 (Xeon X5650) w/ Windows XP 32-bit; Intel x64 (Xeon X5650) w/ Windows XP 64-bit; ARMv7 w/ QNX Neutrino 8.0	7/15/2013	Curves tested: ( P-192 K-163 ) "Security Builder® FIPS Core provides application developers with cryptographic tools to easily integrate encryption, digital signatures and other security mechanisms into C-based apps for FIPS 140-2 and Suite B security. It can also be used with Certicom''s PKI, IPSec and SSL modules."
91	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Pulse Secure, LLC. 2700 Zanker Road, Suite 200 San Jose, CA 95134 USA -Yvonne Sang TEL: 408-372-9600	Secure Pulse Cryptographic Module Version 1.0	Intel Pentium E2160 (x86) w/ IVE OS 1.1; Intel Xeon E5530 (x86) w/ IVE OS 1.1 on VMware ESX; Intel Xeon x5670 (x86) with AES-NI w/ IVE OS 1.1 on VMware ESXi; Intel Core i5-2430M (x86) 64-bit with AES-NI w/ Microsoft Windows 7; Intel Core i5-2430M (x86) 32-bit with AES-NI w/ Microsoft Windows 7; Intel Core i7-3615QM (x86) with AES-NI w/ OS X 10.8; Intel Xeon x5670 (x86) w/ IVE OS 1.1 on VMware ESXi; Intel Core i7-3615QM (x86) w/ OS X 10.8	7/5/2013	Curves tested: ( P-192 K-163 B-163 ) "The Secure Pulse Cryptographic Module provides secure cryptographic services. It enables dynamic SSL VPN, NAC, mobile security, online meetings and collaboration, and application acceleration while removing the complexities of device type and security state, location, identity, and adherence to policies." 01/26/15: Updated vendor information;
90	All of SP800-56A EXCEPT KDF	SP800-56A	Thales E-Security Ltd Jupiter House Station Road Cambridge, CB5 8JJ UK -Thales Certification Team TEL: +44 1223 723600 FAX: +44 1223 723601 -Thales Sales TEL: 888 744 4976	nShield Algorithm Library Version 2.51.10 (Firmware)	Panther-I 820x Series Die	6/28/2013	FFC: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA OneFlow: (KARole: Initiator / Responder ) FA Static: (KARole: Initiator / Responder ) FA DSA Val#777 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 OnePassDH: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#181 SHS Val#1844 DRBG Val#232 "The nShield algorithm library provides cryptographic functionality for Thales''s nShield Hardware Security Modules"
89	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	BlackBerry 295 Phillip Street Waterloo, ON N2L3W8 Canada -Eric Jen TEL: +1 561-289-0214	BlackBerry Algorithm Library for Secure Work Space Version 1.0	Intel Xeon 3430 w/ Ubuntu 12.04; Intel Xeon 3430 w/ Ubuntu 12.04 on ESXi 5.1; AMD Opteron 275 w/ Ubuntu 12.04; AMD Opteron 275 w/ Ubuntu 12.04 on ESXi 5.1; ARMv7-based A5 processor w/ iOS 5.0; ARM v7s -- Apple A6 w/ iOS 6.0; ARMv7-based Qualcomm Snapdragon processor w/ Android v4.1	6/28/2013	Curves tested: ( P-192 K-163 B-163 ) "The BlackBerry Algorithm Library for Secure Work Space provides a suite of cryptographic services utilized by the BlackBerry Cryptographic Library for the BlackBerry Secure Work Space (BBSWS). BBSWS provides the secure operation and management of iOS and Android devices when used in conjunction with BlackBerry® mobile device management solutions."
88	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenPeak, Inc. 1750 Clint Moore Road Boca Raton, FL 33487 USA -Eric Jen TEL: +1 561-893-7881 -Howard A. Kwon TEL: +1 561 893 7930 FAX: +1 561 208 8026	OpenPeak Cryptographic Security Module Version 1.0.1	Intel Xeon 3430 w/ Ubuntu 12.04; Intel Xeon 3430 w/ Ubuntu 12.04 on ESXi 5.1; AMD Opteron 275 w/ Ubuntu 12.04; AMD Opteron 275 w/ Ubuntu 12.04 on ESXi 5.1; ARM v7 -- Apple A5 w/ iOS 5.0; ARMv7-based A6 processor w/ iOS 6.0; IARMv7-based Qualcomm Snapdragon processor w/ Android v4.1	6/20/2013	Curves tested: ( P-192 K-163 B-163 ) "The OpenPeak Cryptographic Security Library provides advanced cryptographic functionalities for the OpenPeak Cryptographic Security Module (OCSM). The OCSM provides a secure encrypted container for enterprise-managed applications, content and data to enable a highly secure mobile workspace."
85	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 27101 USA -Steve Marquess TEL: 877-673-6775	OpenSSL FIPS Object Module Version 2.0.5	Freescale i.MX27 926ejs (ARMv5TEJ) w/ eCos 3; Freescale i.MX25 (ARMv4) w/ QNX 6.4; Apple A6X Soc (ARMv7s) w/ iOS 6.1; Intel Xeon E3-1220 w/ VMware Horizon Workspace 1.5 under vSphere; Intel Xeon E3-1220 w/ AES-NI w/ VMware Horizon Workspace 1.5 under vSphere; AM335x Cortex-A8 (ARMv7) w/ Ubuntu 13.04; ARM926 (ARMv5TEJ) w/ Linux 3.8; AM335x Cortex-A8 (ARMv7) with NEON w/ Ubuntu 13.04; Intel Xeon E5-2430L (x86) without AES-NI w/ Linux 3.4 64-bit under Citrix XenServer; Intel Xeon E5-2430L (x86) with AES-NI w/ Linux 3.4 64-bit under Citrix XenServer; Intel Xeon E5-2430L (x86) without AES-NI w/ Linux 3.4 64-bit on under VMware ESX; Intel Xeon E5-2430L (x86) with AES-NI w/ Linux 3.4 64-bit under VMware ESX; Intel Xeon E5-2430L (x86) without AES-NI w/ Linux 3.4 64-bit under Microsoft Hyper-V; Intel Xeon E5-2430L (x86) with AES-NI w/ Linux 3.4 64-bit under Microsoft Hyper-V; Apple A5 / ARM Cortex-A9 (ARMv7) without NEON w/ iOS 6.0; Apple A5 / ARM Cortex-A9 (ARMv7) with NEON w/ iOS 6.0; Intel Xeon E5-2430L (x86) with AES-NI w/ PexOS 1.0 on x86 under vSphere; Intel Xeon E5-2430L (x86) without AES-NI w/ PexOS 1.0 on x86 under vSphere	5/31/2013	Curves tested: ( P-192 K-163 B-163 ) "The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/." 08/06/13: Updated implementation information; 08/13/13: Added new tested information; 10/25/13: Added new tested information; 11/14/13: Added new tested information; 11/29/13: Updated implementation information;
83	Signature Generation of hash sized messages	FIPS186-4 ECDSA	whiteCryption Corporation 920 Stewart Drive Suite #100 Sunnyvale, CA 94085 USA -Alex Bessonov TEL: 408-616-1647	whiteCryption SKB - Ecdsa256Component Version 4.6.0	Nvidia Tegra 4 w/ Android 4.2	5/31/2013	ECDSA SigGen Component: CURVES( P-192 ) "whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."
79	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	whiteCryption Corporation 920 Stewart Drive Suite #100 Sunnyvale, CA 94085 USA -Alex Bessonov TEL: 408-616-1647	whiteCryption SKB - Ecdh256 Version 4.6.0	Nvidia Tegra 4 w/ Android 4.2	5/24/2013	Curves tested: ( P-192 ) "whiteCryption Secure Key Box (SKB) is a C/C++ library that provides cryptographic algorithms. SKB''s unique white-box implementation is specifically designed to hide and protect cryptographic keys at all times. It allows safe deployment in insecure environments."
72	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Samsung Electronics Co., Ltd R4 416, Maetan 3-dong, Yeongtong-gu Suwon-si, Gyeonggi-do 443-742 Korea -Kyung-Hee Lee TEL: +82-10-9397-1589	Samsung OpenSSL Cryptographic Module Version SecOpenSSL2.0.3	ARMv7 w/ Android Jelly Bean 4.2	5/10/2013	Curves tested: ( P-192 K-163 B-163 ) "General purpose cryptographic services available for Android used by Samsung devices to provide secure cryptography. Salt length 0, 1 and 2 has been tested for RSASSA-PSS." 01/16/14: Updated implementation information;
71	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 27101 USA -Steve Marquess TEL: 877-673-6775	OpenSSL FIPS Object Module Version 2.0.4	MIPS 24Kc w/ OpenWRT 2.6	4/30/2013	Curves tested: ( P-192 K-163 B-163 ) "The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/."
64	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Cummings Engineering Consultants, Inc. 145 S. 79th St., Suite 26 Chandler, AZ 85226 USA -Darren Cummings TEL: 480-809-6024	Cummings Engineering's Secure Mobility Suite B Crypto Module Version 1.1	ARM Cortex A8 (ARMv7) w/ Apple iOS 5.0; Intel Core i7-3615QM w/ Apple OS X 10.7	4/5/2013	Curves tested: ( P-192 K-163 B-163 ) "The cryptographic module used by the Cummings Engineering suite of products which allow for efficient and effective deployment of robust secure communications capability on commercial off the shelf (COTS) devices, such as Smartphones and Tablets, as well as speciality communications devices."
63	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	CoCo Communications 800 5th Ave Seattle, WA 98104 USA -David Weidenkopf TEL: 206-812-5783	CoCo OpenSSL Algorithms for Intel x86 Version 2.1	x86 32bit w/ Vyatta 6.4	4/5/2013	Curves tested: ( P-192 K-163 B-163 ) "The CoCo OpenSSL Crypto Module is an OpenSSL cryptographic library that provides cryptographic services to its calling applications." 03/31/14: Updated implementation information;
62	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	CoCo Communications 800 5th Ave Seattle, WA 98104 USA -David Weidenkopf TEL: 206-812-5783	CoCo OpenSSL Algorithms for AMD Geode Version 2.1	AMD Geode 32bit w/ Red Hat Enterprise Linux 6	4/5/2013	Curves tested: ( P-192 K-163 B-163 ) "The CoCo OpenSSL Crypto Module is an OpenSSL cryptographic library that provides cryptographic services to its calling applications." 04/30/13: Updated implementation information; 03/31/14: Updated implementation information;
61	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Toshiba Corporation Social Infrastructure Systems Company 1, Komukai, Toshiba-cho, Saiwai-ku Kawasaki, Kanagawa 212-8583 Japan -Hiroki Fukuoka TEL: +81-44-549-8323	TSBIC CryptoLib Version 1.0.0	Intel Core i7 w/ Windows 7 Professional 32-bit	3/29/2013	Curves tested: ( P-192 ) "TSBIC CryptoLib is a general-purpose library which ensures high security to the applications requiring standard cryptographic algorithms."
56	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Samsung Electronics Co., Ltd R4 416, Maetan 3-dong, Yeongtong-gu Suwon-si, Gyeonggi-do 443-742 Korea -Ross Choi TEL: 972-761-7628 -Kyung-Hee Lee TEL: +82-10-6640-8499	Samsung OpenSSL Cryptographic Module Version SecOpenSSL2.0.3	ARMv7 w/ Android Jelly Bean 4.1	3/8/2013	Curves tested: ( P-192 K-163 B-163 ) "General purpose cryptographic services available for Android used by Samsung devices to provide secure cryptography. Salt length 0, 1 and 2 has been tested for RSASSA-PSS." 01/16/14: Updated implementation information;
53	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 27101 USA -Steve Marquess TEL: 877-673-6775	OpenSSL FIPS Object Module Version 2.0.3	Freescale i.MX53xA (ARMv7) with NEON w/ Windows Embedded Compact 7; Freescale i.MX53xD (ARMv7) with NEON w/ Windows Embedded Compact 7; Qualcomm Snapdragon APQ8060 (ARMv7) with NEON w/ Android 4.0	2/19/2013	Curves tested: ( P-192 K-163 B-163 ) "The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/." 02/21/13: Added new tested information; 02/26/13: Updated implementation information; 04/10/13: Added new tested information; 04/24/13: Updated implementation information;
51	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Kony, Inc. 7380 West Sand Lake Rd. #390 Orlando, FL 32819 USA -Matthew Terry TEL: 407-730-5669 FAX: 407-404-3738	Kony Cryptographic Library Version 2.0	Qualcomm QSD 8250 (ARMv7) w/ Android 2.2; Qualcomm QSD 8250 (ARMv7) with NEON w/ Android 2.2; TI OMAP 3621 (ARMv7) w/ Android 3.0; TI OMAP 3621 (ARMv7) with NEON w/ Android 3.0; TI DM3730 (ARMv7) w/ Android 4.0; TI DM3730 (ARMv7) with NEON w/ Android 4.0; ARM Cortex-A8 (ARMv7) with NEON w/ Apple iOS 5.0; ARMv7 Cortex-A8 (ARMv7) with NEON w/ Apple iOS 6.0; ARM Cortex-A8 (ARMv7) without NEON w/ Apple iOS 5.0; ARM Cortex-A8 (ARMv7) without NEON w/ Apple iOS 6.0	2/19/2013	Curves tested: ( P-192 K-163 B-163 ) "The Kony Cryptographic Library v2.0 is a full featured cryptographic module used in Kony mobile and multi-channel application platforms and the KonyOne Platform." 08/09/13: Added new tested information; 08/27/13: Updated implementation information; 08/30/13: Updated vendor information;
50	All of SP800-56A EXCEPT KDF	SP800-56A	Allegro Software Development Corporation 1740 Massachusetts Avenue Boxborough, MA 01719 USA -Larry LaCasse TEL: +1 (978) 264-6600	Allegro Cryptographic Engine Version 1.1	Intel Core 2 Duo w/ Windows 7 Ultimate (64-bit)	1/18/2013	FFC: SCHEMES: Ephem: (KARole: Initiator / Responder ) FA DSA Val#728 SHS Val#1997 DRBG Val#286 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Full Validation ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#379 SHS Val#1997 DRBG Val#286 "The Allegro Cryptographic Engine (ACE) is a cryptographic library module for embedded computing systems. ACE provides software implementations of algorithms for calculations of message digests, digital signature creation and verification, bulk encryption and decryption, key generation and key exchange"
49	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 27101 USA -Steve Marquess TEL: 877-673-6775	OpenSSL FIPS Object Module Version 2.0.2	TI DM3730 (ARMv7) w/ Android 4.1; TI DM3730 (ARMv7) with NEON w/ Android 4.1; Nvidia Tegra 3 (ARMv7) w/ Android 4.2; Nvidia Tegra 3 (ARMv7) with NEON w/ Android 4.2	1/18/2013	Curves tested: ( P-192 ) "The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/." 02/06/13: Updated implementation information;
45	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	SafeNet, Inc. 4690 Millennium Drive Belcamp, MD 21017 USA -Chris Brych TEL: 613-221-5081 FAX: 613-723-5079	SafeNet Software Cryptographic Library Version 1.0	Intel Xeon E3-1220v2 w/ AES-NI w/ Windows Server 2008R2 64-bit; Intel Xeon E3-1220v2 w/ Windows Server 2008 64-bit; Intel Core i5-2430M w/ AES-NI w/ Windows 7 64-bit; Intel Core i5-2430M w/ Windows 7 32-bit; Intel Xeon E3-1220v2 w/ AES-NI w/ NetBSD 4.1 32-bit on VMware ESX; ARMv7 w/ NEON w/ Android 4.0; Intel Xeon E3-1220v2 w/ AES-NI w/ RHEL 6.2 64-bit; Intel Xeon 3050 w/ CentOS 5.6 32-bit	12/7/2012	Curves tested: ( P-192 K-163 B-163 ) "The SafeNet Software Cryptographic Library is SafeNet’s cryptographic service provider that provides extended high performance cryptographic services for SafeNet''s broad range of Data Protection products."
44	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	SafeLogic Inc 530 Lytton Ave, Ste 200 Palo Alto, CA 94301 USA -SafeLogic Inside Sales	CryptoComply Server Engine Version 2.1	Intel i7 w/ CentOS 6.3; Intel i7 w/ Mac OS X 10.8; Intel i7 w/ RHEL 6.3; Intel i7 w/ SUSE Linux Enterprise 11 SP2; Intel i7 w/ Windows 2008 R2; PowerPC P2020 w/ CentOS 6.3;	11/21/2012	Curves tested: ( P-192 K-163 B-163 ) "CryptoComply \| Server is a standards-based "Drop-in Compliance" solution for servers and appliances. The module features robust algorithm support, including Suite B algorithm compliance. CryptoComply offloads secure key management, data integrity, data at rest encryption, and secure communications to a trusted implementation." 01/16/14: Added new tested information;
43	All of SP800-56A EXCEPT KDF	SP800-56A	Allegro Software Development Corporation 1740 Massachusetts Avenue Boxborough, MA 01719 USA -Larry LaCasse TEL: +1 (978) 264-6600	Allegro Cryptographic Engine Version 1.1	Dell Optiplex 775, Intel Core 2 Duo w/ Windows 7 Ultimate	11/15/2012	FFC: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Full Validation ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA DSA Val#708 SHS Val#1952 DRBG Val#279 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Full Validation ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#367 SHS Val#1952 DRBG Val#179 AES Val#2271 AES Val#2271 HMAC Val#1390 "The Allegro Cryptographic Engine (ACE) is a cryptographic library module for embedded computing systems. ACE provides software implementations of algorithms for calculations of message digests, digital signature creation and verification, bulk encryption and decryption, key generation and key exchange."
42	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Panzura, Inc. 22 Great Oaks Blvd #150 San Jose, CA 95119 USA -Rich Weber TEL: (408) 578-8888	Panzura Cryptographic Module Version 4.2	Intel Xeon E5620 (x86) with AES-NI w/ Panzura Cloud Controller 8.0; Intel Xeon E5620 (x86) with AES-NI w/ Panzura Cloud Controller 8.0 on VMware ESX; Intel Xeon E5620 (x86) w/ Panzura Cloud Controller 8.0 on VMware ESX	11/15/2012	Curves tested: ( P-192 K-163 B-163 ) "The Panzura Cyrptographic Module provides validated cryptographic services for multiple Panzura products."
41	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Gemalto Avenue du Jujubier Z.I Athelia IV La Ciotat, 13705 France -Florence Defrance TEL: +33 442366734 FAX: +33 442365792 -Arnaud Lotigier TEL: +33 442366074 FAX: +33 442365545	IDCore 30 Cryptographic Library Version 1.6 (Firmware) Part # IFX SLE78 (M7892 & M7820) chip family	Infineon SLE78 (M7892 & M7820) chip family.	10/23/2012	Curves tested: ( P-192 ) "The IDCore 30 Cryptographic Library v1.6 operates on the Infineon SLE78 (M7892 & M7820) chip family, targeting Javacard 2.2.2, GP 2.1.1 & GP 2.2 Amdt D compliant modules. The library implements TDEA, AES, AES-CMAC, SHA1-224-256-384-512, RSA, RSA CRT, ECDSA, ECC CDH and ANSI X9.31 RNG algorithms." 10/31/12: Updated implementation information;
40	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Cisco Systems, Inc. 170 West Tasman Drive San Jose, CA 95134 USA -Global Certification Team	CiscoSSL FIPS Object Module Version 2.0	Intel Core i5-650 with AES-NI (x64) w/ Microsoft Windows 7; Intel Core i5-2520M with AES-NI (x64) w/ Mac OS X 10.7; Intel Xeon E5504 (x64) w/ FreeBSD 9.0; Intel Xeon E5649 with AES-NI (x64) w/ Linux 2.6; Cavium CN5230 (MIPS) (x64) w/ Linux 2.6; Snapdragon S3 APQ8060 (ARM) w/ Android 4.0; Freescale 8548 (PowerPC) w/ Linux 2.6; Apple A5X (ARM) w/ Apple iOS 5.1; ARMv7 w/ Android 4.0; PowerPC, Freescale's PowerQUICC III Processor Family w/ Linux 2.6	10/17/2012	Curves tested: ( P-192 ) "The Cisco FIPS Object Module is a software library that provides cryptographic services to a vast array of Cisco's networking and collaboration products." 07/03/13: Added new tested information;
38	Section 5.7.1.2: ECC CDH Primitive All of SP800-56A EXCEPT KDF	SP800-56A SP800-56A	Stonesoft Corporation Itälahdenkatu 22A Helsinki, FI-00210 Finland -Klaus Majewski TEL: +358-9-476711 -Jorma Levomäki TEL: +358-9-476711	Stonesoft Cryptographic Library Version 1.1	Intel X3450 w/ GNU / Linux (Debian) 6.0	10/5/2012	Curves tested: ( P-192 ) FFC: (FUNCTIONS INCLUDED IN IMPLEMENTATION: Full Validation ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA DSA Val#695 SHS Val#1930 DRBG Val#267 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: KPG ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#350 SHS Val#1930 DRBG Val#267 "Stonesoft Cryptographic Library is a software module that provides cryptographic services for Stonesoft network security products." 09/25/13: Updated implementation information;
37	Section 5.7.1.2: ECC CDH Primitive All of SP800-56A EXCEPT KDF	SP800-56A SP800-56A	Stonesoft Corporation Itälahdenkatu 22A Helsinki, FI-00210 Finland -Klaus Majewski TEL: +358-9-476711 -Jorma Levomäki TEL: +358-9-476711	Stonesoft Cryptographic Library Version 1.1	Intel Atom 425 w/ GNU / Linux (Debian) 6.0	10/5/2012	Curves tested: ( P-192 ) FFC: SCHEMES: Ephem: (KARole: Initiator / Responder ) FA DSA Val#694 SHS Val#1929 DRBG Val#266 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: KPG ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#349 SHS Val#1929 DRBG Val#266 "Stonesoft Cryptographic Library is a software module that provides cryptographic services for Stonesoft network security products." 09/20/13: Updated implementation information;
36	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 27101 USA -Steve Marquess TEL: 877-673-6775	OpenSSL FIPS Object Module Version 2.0.2	PowerPC-e500 w/ NetBSD 5.1; Intel Xeon 5500 (x86-64) w/ NetBSD 5.1; Intel Xeon E3-1220v2 (x86) w/ RHEL 6 32-bit under vSphere; Intel Xeon E3-1220v2 (x86) w/ Windows 2008 32-bit under vSphere; Intel Xeon E3-1220v2 (x86) w/ RHEL 6 64-bit under vSphere; Intel Xeon E3-1220v2 (x86) w/ Windows 2008 64-bit under vSphere; Intel Core i5-2430M (x86) w/ Windows 7 64-bit with AES-NI; ARM Cortex A8 (ARMv7) with NEON w/ Apple iOS 5.0; Qualcomm MSM8X60 (ARMv7) with NEON w/ VMware Horizon Mobile 1.3 under VMware; Intel Core i7-3615QM w/ Apple OS X 10.7	10/5/2012	Curves tested: ( P-192 K-163 B-163 ) "The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/." 12/31/12: Added new tested information; 02/21/13: Added new tested information; 03/11/13: Updated implementation information;
35	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	McAfee, Inc. 2821 Mission College Blvd. Santa Clara, CA 95054 USA -Andy Nissen TEL: 651-628-5385 FAX: 651-628-2706 -James Reardon TEL: 651-628-5346 FAX: 651-628-2706	McAfee SIEM 64-bit Cryptographic Engine Version 1.0	VMware ESXi 5.0 on Intel Xeon w/ Nitro OS 9.1	10/5/2012	Curves tested: ( P-192 K-163 B-163 ) "The McAfee SIEM 64-bit Cryptographic Engine v1.0 provides the necessary services to support the cryptographic features and functions of McAfee''s line of SIEM products including Nitro IPS."
34	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	McAfee, Inc. 2821 Mission College Blvd. Santa Clara, CA 95054 USA -Andy Nissen TEL: 651-628-5385 FAX: 651-628-2706 -James Reardon TEL: 651-628-5346 FAX: 651-628-2706	McAfee SIEM 64-bit Cryptographic Engine Version 1.0	Intel Xeon w/ Nitro OS 9.1	10/5/2012	Curves tested: ( P-192 K-163 B-163 ) "The McAfee SIEM 64-bit Cryptographic Engine v1.0 provides the necessary services to support the cryptographic features and functions of McAfee''s line of SIEM products including Nitro IPS."
33	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	McAfee, Inc. 2821 Mission College Blvd. Santa Clara, CA 95054 USA -Andy Nissen TEL: 651-628-5385 FAX: 651-628-2706 -James Reardon TEL: 651-628-5346 FAX: 651-628-2706	McAfee SIEM 32-bit Cryptographic Engine Version 1.0	Intel Xeon w/ Nitro OS 9.1	10/5/2012	Curves tested: ( P-192 K-163 B-163 ) "The McAfee SIEM 32-bit Cryptographic Engine v1.0 provides the necessary services to support the cryptographic features and functions of McAfee''s line of SIEM products including Nitro IPS."
32	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	McAfee, Inc. 2821 Mission College Blvd. Santa Clara, CA 95054 USA -Andy Nissen TEL: 651-628-5385 FAX: 651-628-2706 -James Reardon TEL: 651-628-5346 FAX: 651-628-2706	McAfee SIEM 32-bit Cryptographic Engine Version 1.0	VMware ESXi 5.0 on Intel Xeon w/ Nitro OS 9.1	10/5/2012	Curves tested: ( P-192 K-163 B-163 ) "The McAfee SIEM 32-bit Cryptographic Engine v1.0 provides the necessary services to support the cryptographic features and functions of McAfee''s line of SIEM products including Nitro IPS."
29	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	SafeLogic Inc 530 Lytton Ave, Ste 200 Palo Alto, CA 94301 USA -SafeLogic Inside Sales	CryptoComply Mobile Engine for iOS Version 2.1	A5X w/ iOS 5.1; A5X w/ iOS 6; A5X w/ iOS 7	7/18/2012	Curves tested: ( P-192 K-163 B-163 ) "CryptoComply \| Mobile is a standards-based “Drop-in Compliance” solution for mobile devices. The module features robust algorithm support, including Suite B algorithm compliance. CryptoComply offloads functions for secure key management, data integrity, data at rest encryption, and secure communications." 10/31/12: Added new tested information; 11/14/12: Updated vendor information; 09/25/13: Added new tested information;
28	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	SafeLogic Inc 530 Lytton Ave, Ste 200 Palo Alto, CA 94301 USA -SafeLogic Inside Sales	CryptoComply Mobile Engine for Android Version 2.1	ARM Cortex-A9 w/ Android Version 4.0	7/18/2012	Curves tested: ( P-192 K-163 B-163 ) "CryptoComply \| Mobile is a standards-based “Drop-in Compliance” solution for mobile devices. The module features robust algorithm support, including Suite B algorithm compliance. CryptoComply offloads functions for secure key management, data integrity, data at rest encryption, and secure communications." 11/14/12: Updated vendor information;
27	All of SP800-56A EXCEPT KDF	SP800-56A	Thales E-Security Ltd Jupiter House Station Road Cambridge, CB5 8JJ UK -Thales Certification Team TEL: +44 1223 723600 FAX: +44 1223 723601 -Thales Sales TEL: 888 744 4976	nShield Algorithm Library Version 2.51.10 (Firmware)	Freescale PowerPC	7/13/2012	FFC: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA OneFlow: (KARole: Initiator / Responder ) FA Static: (KARole: Initiator / Responder ) FA DSA Val#664 SHS Val#1844 DRBG Val#232 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 OnePassDH: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#318 SHS Val#1844 DRBG Val#232 "The nShield algorithm library provides cryptographic functionality for Thales''s nShield Hardware Security Modules" 12/17/12: Updated implementation information;
26	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	NXP Semiconductors Mikronweg 1 Gratkorn, 8101 Austria -Markus Moesenbacher TEL: +43 3124 299 652 FAX: +43 3124 299 270	NXP ECC CDH Component Version ECDH_CL_V2.7 (Firmware) Part # NXP P5CD081 Family	NXP P5CD081 Family	7/13/2012	Curves tested: ( P-192 ) "Single Chip Module with NXP Secure Smart Card Controller of P5CD081 Family and NXP Java Card and GP OS JCOP 2.4.2 R2. P5CD081 Family means: P5CD145V0A, P5CC145V0A, P5CN145V0A, P5CD128V0A, P5CC128V0A, P5CD081V1A, P5CC081V1A, P5CN081V1A, P5CD051V1A, P5CD041V1A, P5CD021V1A, P5CD016 V1A, P5CD145V0B, P5CC145V0B, P5CD081V1D."
24	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 27101 USA -Steve Marquess TEL: 877-673-6775	OpenSSL FIPS Object Module Version 2.0.1	ARMv7 w/ Apple iOS 5.1; ARMv5TEJ w/ Microsoft Windows CE 6.0 R2; ARMv7 w/ Microsoft Windows CE 5.0	6/29/2012	Curves tested: ( P-192 K-163 B-163 ) "The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/."
21	All of SP800-56A EXCEPT KDF	SP800-56A	AuthenTec Inc. Boxtelseweg 26A Vught, 5261 NE The Netherlands -Bob Oerlemans TEL: +31 73 6581 900	SafeZone FIPS Cryptographic Module Version 1.0.3	ARMv7 w/ Android 4.0; ARMv7 w/ Android 2.3; ARMv7 w/ Linux (kernel 2.6)	6/5/2012	FFC: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG DPV KPG Full Validation ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA Static: (KARole: Initiator / Responder ) FA DSA Val#648 SHS Val#1787 DRBG Val#203 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: Partial Validation ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#299 SHS Val#1787 DRBG Val#203 "SafeZone FIPS Cryptographic Module is a FIPS 140-2 Security Level 1 validated software cryptographic module from AuthenTec Inc. The module is a toolkit which provides the most commonly needed cryptographic primitives for a large variety of applications, including but not limited to, primitives needed for DAR, DRM, TLS, and VPN on mobile devices."
19	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Certicom Corp. 4701 Tahoe Blvd. Building A Missisauga, ON L4W 0B5 Canada -Certicom Sales TEL: 905-507-4220 FAX: 905-507-4230 -Kris Orr TEL: 289-261-4104 FAX: 905-507-4230	Security Builder FIPS Core Version 6.0.2	64-bit Intel Core i5-2300 w/ Red Hat Linux 5.6; 64-bit Intel Core i5-2300 w/ Windows 7	3/26/2012	Curves tested: ( P-192 K-163 ) "Security Builder FIPS Core provides application developers with cryptographics tools to easily integrate encryption, digital signatures and other security mechanisms into C-based apps for FIPS 140-2 and Suite B security. It can also be used with Certicom''s PKI, IPSec SSL and DRM modules."
18	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Gemalto Avenue du Jujubier Z.I Athelia IV La Ciotat, 13705 France -Arnaud Lotigier TEL: +33-4-42-36-60-74 FAX: +33-4-42-36-55-45	TOP V2 Version Version #11-M1005011+Softmask V04 (Firmware) (Firmware)	Infineon SLE66CLX1280PE	3/21/2012	Curves tested: ( P-192 ) "This module is based on a Java Card platform (TOP DL V2) with 128K EEPROM memory available. The Cryptographic Module provides dual interfaces (i.e. contact and contact-less) where the same security level is achieved."
17	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Gemalto Avenue du Jujubier Z.I Athelia IV La Ciotat, 13705 France -Michael Bruyere TEL: +33-4-42-36-61-65 FAX: +33-4-42-36-57-92 -Anthony Vella TEL: +33-4-42-36-61-38 FAX: +33-4-42-36-52-36	MultiApp V2.1 Platform Cryptographic Library Version 1.2 (Firmware) Part # NXP P5Cx081 Family	NXP P5Cx081 Family	2/29/2012	Curves tested: ( P-192 ) "MultiApp V2.1 is a highly secured smartcard platform conformant to the Javacard 2.2.2 and GP 2.1.1 standards, designed to operate on the NXP P5Cx081 family, inclusive of NXP P5CC081 and P5CC145 integrated circuits. Its cryptographic library implements TDEA, AES, SHA, RSA, RSA CRT, ECDSA, ECC CDH and RNG ANSX9.31 algorithms."
16	All of SP800-56A EXCEPT KDF	SP800-56A	Entrust, Inc. One Lincoln Centre 5400 LBJ Freeway Suite 1340 Dallas, TX 75240 USA -Entrust Sales TEL: 888-690-2424	Entrust Authority™ Java Toolkit Version 8.0	Intel Core 2 Duo E8400 w/ Microsoft Windows Server 2008 R2 with Oracle J2RE 6; Intel Core 2 Duo E8400 w/ Microsoft Windows Server 2008 R2 with Oracle J2RE 7	2/21/2012	ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPV KPG Partial Validation ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 OnePassDH: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#277 SHS Val#1700 DRBG Val#170 "The Java toolkit is an implementation of cryptographic functions accessible by an object-oriented API. Depending on configuration, the algorithms may be implemented in software, hardware, or both. The industry standard Cryptopki API from PKCS #11, is used as the interface to hardware-based cryptographic modules."
15	All of SP800-56A EXCEPT KDF	SP800-56A	Entrust, Inc. One Lincoln Centre 5400 LBJ Freeway Suite 1340 Dallas, TX 75240 USA -Entrust Sales TEL: 888-690-2424	Entrust Authority™ Security Kernel Version 8.1sp1	Intel Core 2 Duo E8400 w/ Windows Server 2008 R2 Enterprise Edition	1/19/2012	ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPV KPG Partial Validation ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 OnePassDH: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#275 SHS Val#1689 RNG Val#1011 DRBG Val#167 "The Security Kernel is a C++ implementation of cryptographic functions accessible by an object-oriented API. Depending on configuration, the algorithms may be implemented in software, hardware or both. The industry standard Cryptoki API from PKCS #11, is used as the interface to hardware-based cryptographic modules."
14	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Catbird Networks, Inc. 1800 Green Hills Road, Suite 113 Scotts Valley, CA 95066 USA -Michael Berman TEL: 831-440-8152	Catbird vSecurity Crypto Module v1.0 Version v1.0	Intel Core i5 with AES-NI w/ CentOS 6.0	1/19/2012	Curves tested: ( P-192 K-163 B-163 ) "The cryptographic module used by Catbird''s comprehensive security and compliance solutions for virtualized data centers." 01/25/12: Updated implementation information;
13	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Cummings Engineering Consultants, Inc. 145 S. 79th St., Suite 26 Chandler, AZ 85226 USA -Darren Cummings TEL: 480-809-6024	Cummings Engineering's Secure Mobility Suite B Crypto Module v1.0 Version v1.0	TI OMAP 3 w/ Linux 3.0.4; Intel Pentium T4200 w/ Android 2.2; Qualcomm QSD 8250 w/ Android 2.2; Intel Pentium T4200 w/ Ubuntu 10.04; Intel Celeron (64 bit mode) w/ Microsoft Windows 7; Intel Core i5 (with AES-NI) w/ Android 2.2; Intel Core i5 (with AES-NI) (64 bit mode) w/ Microsoft Windows 7; Intel Core i5 (with AES-NI) w/ Fedora 14	1/26/2012	Curves tested: ( P-192 K-163 B-163 ) "The cryptographic module used by the Cummings Engineering suite of products which allow for efficient and effective deployment of robust secure communications capability on commercial off the shelf (COTS) devices, such as Smartphones and Tablets, as well as speciality communications devices." 02/01/12: Added new tested information;
12	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 27101 USA -Steve Marquess TEL: 877-673-6774 FAX: 301-874-4893	OpenSSL FIPS Object Module Version 2.0	Intel Itanium 2 (64 bit mode) w/ HP-UX 11i; Intel Itanium 2 (32 bit mode) w/ HP-UX 11i; Freescale PowerPC32-e300 w/ Linux 2.6.33; TI OMAP 3530 (ARMv7) w/ Android 2.2; Intel Pentium (R) T4200 w/ Ubuntu 10.04; ARM Limited ARM922T (ARMv4) w/ uCLinux 0.9.29; Intel Core i5 with AES-NI (64 bit mode) w/ Fedora 14; Intel Core i5 with AES-NI (32 bit mode) w/ Ubuntu 10.04; Intel Celeron (32 bit mode) w/ Microsoft Windows 7; TI TNETV1050 w/ VxWorks 6.8; PowerPC e300c3 w/ Linux 2.6.27; Intel Pentium T4200 (64 bit mode) w/ Cascade Server 6.10; Intel Pentium T4200 (32 bit mode) w/ Cascade Server 6.10; Intel Pentium 4 (64 bit mode) w/ Microsoft Windows 7; TI AM3703CBP w/ Linux 2.6.32; Broadcom BCM11107 (ARMv6) w/ Linux 2.6; TI TMS320DM6446 (ARMv7) w/ Linux 2.6; Intel Xeon 5675 (x86) with AES-NI (32 bit mode) w/ Oracle Solaris 11; Intel Xeon 5675 (x86) (64 bit mode) w/ Oracle Solaris 11; Intel Pentium T4200 (x86) (32 bit mode) w/ Ubuntu 10.04; Intel Xeon 5675 (x86) (32 bit mode) w/ Oracle Solaris 11; Intel Xeon 5675 (x86) with AES-NI (64 bit mode) w/ Oracle Solaris 11; Intel Pentium T4200 (x86) (64 bit mode) w/ Ubuntu 10.04; SPARC-T3 (SPARCv9) (32 bit mode) w/ Oracle Solaris 10; SPARC-T3 (SPARCv9) (64 bit mode) w/ Oracle Solaris 10; Intel Xeon 5675 (x86) (64 bit mode) w/ Oracle Linux 5; Intel Xeon 5675 with AES-NI (64 bit mode) w/ Oracle Linux 5; Intel Xeon 5675 (64-bit mode) w/ Oracle Linux 6; Intel Xeon 5675 with AES-NI (64-bit mode) w/ Oracle Linux 6; SPARC-T3 (SPARCv9) (32-bit mode) w/ Oracle Solaris 11; SPARC-T3 (SPARCv9) (64-bit mode) w/ Oracle Solaris 11; Freescale PowerPC-e500 w/ Linux 2.6; TI C64x+ w/ DSP Media Framework 1.4	12/29/2011	Curves tested: ( P-192 K-163 B-163 ) "The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/." 01/26/12: Added new tested information; 01/30/12: Added new tested information; 02/27/12: Added new tested information; 03/20/12: Added new tested information; 04/02/12: Updated implementation information; 04/24/12: Updated implementation information; 05/31/12: Added new tested information; 06/29/12: Updated implementation informaton;
11	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	SafeNet, Inc. 20 Colonnade Road Suite 200 Ottawa, ON K2E 7M6 Canada -Chris Brych TEL: 613 221 5081 FAX: 613 723 5079 -Laurie Smith TEL: 613 221 5026 FAX: 613 723 5079	Luna K5 Cryptographic Library Version 4.8.7 (Firmware)	StrongARM II 80219	12/16/2011	Curves tested: ( P-192 K-163 B-163 ) "The Luna K5 Cryptographic Library provides a broad suite of high-performance cryptographic operations. All cryptographic algorithms are implemented within the module''s firmware and associated co-processor."
10	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	OpenSSL Software Foundation, Inc. 1829 Mount Ephraim Road Adamstown, MD 27101 USA -Steve Marquess TEL: 877-673-6775	OpenSSL FIPS Object Module Version 2.0	ARMv7 (HTC Desire) w/ Android 2.2; Qualcomm QSD 8250 (Dell Streak; ARMv7) w/ Android 2.2; NVIDIA Tegra 250 T20 (Motorola Xoom, ARMv7) w/ Android 3.0; NVIDIA Tegra 250 T20 (ARMv7) w/ Android 4.0; TI OMAP 3 (ARMv7) with NEON w/ Android 4.0	11/29/2011	Curves tested: ( P-192 ) "The OpenSSL FIPS Object Module is a full featured general purpose cryptographic library that is distributed in source code form under an open source license. It can be downloaded from www.openssl.org/source/." 12/14/11: Updated implementation information; 12/22/11: Added new tested information; 04/26/12: Added new tested information; 06/08/12: Updated implementation information; 07/02/12: Added new tested information;
9	All of SP800-56A EXCEPT KDF	SP800-56A	IBM Corporation 2455 South Road Poughkeepsie, New York 12601-5400 USA -William Penny TEL: 1-845-435-3010 -Jim Sweeny TEL: 1-845-435-7453	IBM z/OS(r) Cryptographic Services ICSF PKCS #11 Version OA36882 Part # 5694-A01	IBM zEnterprise 196 (z196) w/ IBM z/OS® V1.13	11/9/2011	FFC: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPG ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA OneFlow: (KARole: Initiator / Responder ) FA Static: (KARole: Initiator / Responder ) FA DSA Val#584 SHS Val#1641 DRBG Val#151 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: ) SCHEMES: OnePassDH: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#261 SHS Val#1641 DRBG Val#151 "ICSF is a software element of z/OS that works with hardware cryptographic features and the Security Server (RACF) to provide secure, high-speed cryptographic services in the z/OS environment. ICSF, which runs as a started task, provides the application programming interfaces by which applications request the cryptographic services." 11/15/11: Update implementation information; 02/07/12: Updated implementation information;
8	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Athena Smartcard Inc. 20380 Town Center Lane, Suite 240 Cupertino, CA 95014 USA -Ian Simmons TEL: (408) 865-0112 FAX: (408) 865-0333	Athena OS755 KAS Component Version S1.0 (Firmware) Part # STMicroelectronics ST23	STMicroelectronics ST23	10/13/2011	Curves tested: ( P-192 ) "Athena OS755 is a GlobalPlatform Java Card smart card operating system implementing AES, TDES, DRBG, SHA-1/SHA-2, RSA, SP 800-56A KAS (ECC CDH Primitive only) and ECDSA2."
7	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Certicom Corp. 4701 Tahoe Blvd. Building A Missisauga, ON L4W 0B5 Canada -Certicom Sales TEL: 905-507-4220 FAX: 905.507.4230 -Kris Orr TEL: 289.261.4104 FAX: 905.507.4230	Security Builder FIPS Core Version 6.0	64-bit Intel Core i5-2300 w/ RedHat Linux 5.6; 32-bit Intel Core i7 w/ RedHat Linux 5.6; 32-bit Intel Pentium III w/ QNX 6.5; ARM Cortex A9 MPCore w/ QNX 6.6; Intel Core 2 Duo w/ Mac OS X 10.5; 32-bit Intel Core i5-2300 w/ Windows 7	9/20/2011	Curves tested: ( P-192 K-163 ) "Security Builder FIPS Core provides application developers with cryptographics tools to easily integrate encryption, digital signatures and other security mechanisms into C-based apps for FIPS 140-2 and Suite B security. It can also be used with Certicom''s PKI, IPSec SSL and DRM modules." 10/01/11: Update implementation information; 01/19/12: Added new tested information;
6	All of SP800-56A EXCEPT KDF	SP800-56A	Thales E-Security Ltd Jupiter House Station Road Cambridge, CB5 8JJ UK -Marcus Streets TEL: +44 1223 723600 FAX: +44 1223 723601 -Mark Wooding TEL: +44 1223 723600 FAX: +44 1223 723601	MiniHSM Algorithm Library Version 2.50.17 (Firmware)	Freescale DragonBall MXL	8/30/2011	FFC: (FUNCTIONS INCLUDED IN IMPLEMENTATION: DPV KPG Full Validation Partial Validation ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA OneFlow: (KARole: Initiator / Responder ) FA Static: (KARole: Initiator / Responder ) FA DSA Val#553 SHS Val#1554 DRBG Val#120 ECC: ( FUNCTIONS INCLUDED IN IMPLEMENTATION: DPV KPG Full Validation Partial Validation ) SCHEMES: OnePassDH: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#238 SHS Val#1554 DRBG Val#120 "The MiniHSM Algorithm Library provides cryptographic functionality for the MiniHSM series of Thales hardware security modules."
2	Section 5.7.1.2: ECC CDH Primitive	SP800-56A	Athena Smartcard Inc. 20380 Town Center Lane, Suite 240 Cupertino, CA 95014 USA -Ian Simmons TEL: (408) 865-0112 FAX: (408) 865-0333	Athena OS755 KAS Component Version A1.0 (Firmware) Part # Inside Secure AT90SC	Inside Secure AT90SC w/ OS755	6/16/2011	Curves tested: ( P-192 ) "Athena OS755 is a GlobalPlatform Java Card smart card operating system implementing AES, TDES, DRBG, SHA-1/SHA-2, RSA, SP 800-56A KAS (ECC CDH Primitive only) and ECDSA2."
1	All of SP800-56A EXCEPT KDF	SP800-56A	Thales E-Security Ltd Jupiter House Station Road Cambridge, CB5 8JJ UK -Marcus Streets TEL: +44 1223 723600 FAX: +44 1223 723601 -Mark Wooding TEL: +44 1223 723600 FAX: +44 1223 723601	nShield Algorithm Library Version 2.50.16 (Firmware)	Motorola PowerPC	5/12/2011	FFC: (ASSURANCES < 5.5.2: #1 , #2 , #3 > < 5.6.2.1: #1 , #3 > < 5.6.2.2: #1 > < 5.6.2.3: #1 > < 5.6.3.1: #1 , #2 > ) SCHEMES: Ephem: (KARole: Initiator / Responder ) FA OneFlow: (KARole: Initiator / Responder ) FA Static: (KARole: Initiator / Responder ) FA DSA Val#487 SHS Val#1398 DRBG Val#72 ECC: ( ASSURANCES < 5.5.2: #1 , #2 , #3 > < 5.6.2.1: #1 , #3 > < 5.6.2.1: #1 > < 5.6.2.3: #1 #3 > ) SCHEMES: EphemUnified: (KARole: Initiator / Responder ) EA: P-192 OnePassDH: (KARole: Initiator / Responder ) EA: P-192 StaticUnified: (KARole: Initiator / Responder ) EA: P-192 ECDSA Val#192 SHS Val#1398 DRBG Val#72 "The nShield algorithm library provides cryptographic functionality for Thales''s nShield Hardware Security Modules"

Need Assistance?

Computer Security Division
National Institute of Standards and Technology