Module Name
Cryptographic Module for BIG-IP®
Validation Dates
05/15/2017;06/06/2018;10/25/2018
Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Cryptographic library offering various cryptographic mechanisms to BIG-IP® Virtual Edition.
Tested Configuration(s)
- BIG-IP 12.1.2 HF1 on VMware ESXi 5.5 hypervisor running on HP ProLiant BL490c with PAA[1]
- BIG-IP 12.1.2 HF1 on VMware ESXi 5.5 hypervisor running on HP ProLiant BL490c without PAA[1]
- BIG-IP 13.1.1 on Hyper-V 10.0 on Windows Server 2016 running on Dell PowerEdge R630 with PAA[2]
- BIG-IP 13.1.1 on Hyper-V 10.0 on Windows Server 2016 running on Dell PowerEdge R630 without PAA[2] (single-user mode)
- BIG-IP 13.1.1 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 with PAA[2]
- BIG-IP 13.1.1 on VMware ESXi 6.5 hypervisor running on Dell PowerEdge R630 without PAA[2]
FIPS Algorithms
| AES |
Certs. #4436, #4437, #5696, #5697, #5698 and #5699 |
| CVL |
Certs. #1144, #2085 and #2086 |
| DRBG |
Certs. #1435, #1436, #2307, #2308, #2309 and #2310 |
| ECDSA |
Certs. #1076, #1547 and #1548 |
| HMAC |
Certs. #2948, #2949, #3793, #3794, #3795 and #3796 |
| RSA |
Certs. #2418, #3066 and #3067 |
| SHS |
Certs. #3655, #3656, #4566, #4567, #4568 and #4569 |
Other Algorithms
EC Diffie-Hellman (CVL Certs. #1144, #2085 and #2086 key agreement; key establishment methodology provides 128 or 192 bits of encryption strength); NDRNG
Software Versions
12.1.2 HF1[1] and 13.1.1[2]
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
