Last Updated: 6/13/2017
It is important to note that the items on this list are cryptographic modules. A module may either be an embedded component of a product or application, or a complete product in-and-of-itself. If the cryptographic module is a component of a larger product or application, one should contact the product or application vendor in order to determine how the product utilizes the embedded validated cryptographic module. There may be a larger number of security products or applications available which use an embedded validated cryptographic module, than the number of modules which are found in this list. In addition, other vendors, who are not found in this list, may incorporate a validated cryptographic module from this list embedded into their own products.
When selecting a module from a vendor, verify that the module is either the product or application itself (e.g. VPN, SmartCard, USB memory token, etc.) or the module is embedded in a larger product or application (e.g. toolkit, etc.). If the module is embedded in a product or application, ask the product or application vendor to provide a signed letter or statement affirming that the unmodified validated cryptographic module is integrated in the solution; the module provides all the cryptographic services in the solution; and provide reference to the modules validation certificate number from this listing.
NOTE1: Module descriptions are provided by the module vendors and have not been verified for accuracy by the CMVP. The descriptions do not imply endorsement by the U.S. or Canadian Governments or NIST. Additionally, the descriptions may not necessarily reflect the capabilities of the modules when operated in the FIPS-Approved mode. The algorithms, protocols, and cryptographic functions listed as "other algorithms" (e.g. allowed or non-FIPS-Approved algorithms) have not been tested through the CMVP.
NOTE2: The operator of a cryptographic module is responsible for ensuring that the algorithms and key lengths are in compliance with the requirements of NIST SP 800-131A.
NOTE3: All questions regarding the implementation and/or use of any module located on the CMVP module validation lists should first be directed to the appropriate vendor point-of-contact (listed for each entry).
Please contact the CMVP if any errors are discovered or comments with suggestions for improvement of the validation listings.
Cert# | Vendor / CST Lab | Cryptographic Module | Module Type | Validation Date | Sunset Date | Level / Description |
---|---|---|---|---|---|---|
1247 | Good Technology, Inc. 430 N. Mary Avenue Suite 200 Sunnyvale, CA 94085 USA Rick Pitz TEL: 408-212-7878 CST Lab: NVLAP 200002-0 | FIPSCrypto on Windows Mobile (Software Version: 4.7.0.50906) Validated to FIPS 140-2 Certificate Security Policy | Software | 12/29/2009 02/05/2010 06/02/2010 10/25/2010 01/20/2011 07/19/2011 10/18/2011 04/04/2012 09/27/2012 10/25/2012 04/24/2013 10/18/2013 09/25/2014 04/10/2015 04/17/2015 10/12/2015 05/11/2016 01/18/2017 | 1/17/2022 | Overall Level: 1 -Design Assurance: Level 3 -Tested Configuration(s): Tested as meeting Level 1 with Windows CE 5.2 -FIPS Approved algorithms: AES (Cert. #1219); Triple-DES (Cert. #879); SHS (Cert. #1122); HMAC (Cert. #712) -Other algorithms: N/A Multi-chip standalone "The FIPSCrypto is a FIPS 140-2 validated software-based cryptographic module that implements Triple-DES, AES, SHA-1, and HMAC-SHA-1." |
1241 | Bloombase, Inc. 1300 Island Drive Redwood City, CA 94065 USA Certification Team TEL: 855-256-6622 FAX: 650-618-9898 CST Lab: NVLAP 200427-0 | Bloombase Cryptographic Module (Software Version: 8.0) Validated to FIPS 140-2 Certificate Security Policy | Software | 12/29/2009 07/02/2010 01/24/2013 03/15/2013 06/03/2016 04/28/2017 | 6/2/2021 | Overall Level: 1 -Tested Configuration(s): Tested as meeting Level 1 with Bloombase SpitfireOS 5 (single-user mode), JRE 1.6 -FIPS Approved algorithms: AES (Cert. #1041); HMAC (Cert. #583); RSA (Cert. #496); SHS (Cert. #991) -Other algorithms: PRNG Multi-chip standalone "Bloombase Cryptographic Module for multi-platforms is a scalable, generic and multipurpose module used by various Bloombase products, performing a broad range of approved cryptographic operations including encryption, key generation, key storage and zeroization, signature generation and verification, hashing, keyed hashing and random number generation, supporting services including cryptography, authentication, PKCS and key management, etc." |
1159 | RSA, The Security Division of EMC 174 Middlesex Turnpike Bedford, MA 01730 USA Rohit Mathur TEL: +61 7 3032 5220 CST Lab: NVLAP 200427-0 | RSA BSAFE® Crypto-Kernel (Software Versions: 1.3.1 [1] and 1.3.1.1 [2]) (When operated in FIPS mode) Validated to FIPS 140-2 Certificate Security Policy | Software | 07/29/2009 08/20/2010 09/07/2010 02/12/2016 | 2/11/2021 | Overall Level: 1 -Tested Configuration(s): Tested as meeting Level 1 with Windows Server 2003 SP2 (x86 Celeron) [1] Windows Server 2003 SP2 (Itanium 2) [1] Windows Server 2003 SP2 (x64 AMD Athlon X2) [2] (single-user mode) -FIPS Approved algorithms: AES (Certs. #1105 [1] and #1415 [2]); HMAC (Certs. #617 [1] and #835 [2]); SHS (Certs. #1028 [1] and #1285 [2]) -Other algorithms: AES-XTS Multi-chip standalone "RSA BSAFE® Crypto-Kernel is a cryptographic library from RSA, The Security Division of EMC, to provide symmetric encryption, hashing, and message authentication code creation, in the operating system kernel. It provides Advanced Encryption Standard (AES) cipher, SHA-256 message digest, and HMAC capabilities." |
1093 | Vertex Standard LMR, Inc. Sumitomo Fudosan Tamachi First Building, 4‐6‐8 Shibaura Minato‐ku, Tokyo 108‐0023 Japan Yukimasa Tomita CST Lab: NVLAP 100432-0 | Vertex Standard Cryptographic Module 001 (Hardware Version: P/N 013790D; Firmware Version: 71.72) Validated to FIPS 140-2 Certificate Security Policy | Hardware | 03/03/2009 06/05/2014 07/31/2014 | 7/30/2019 | Overall Level: 1 -EMI/EMC: Level 3 -FIPS Approved algorithms: AES (Cert. #813); SHS (Cert. #813) -Other algorithms: DES; LFSR Multi-chip embedded "The Vertex Standard Cryptographic Module 001 (VSCM) is a cryptographic module (also processes digital data) that is to be incorporated into two-way digital radio products. These digital radios are for use in communication with other APCO Project 25 compatible devices." |