Module Name
Hewlett Packard Enterprise SSL crypto module
Validation Dates
09/21/2017;03/13/2018;04/03/2018;08/29/2018;10/01/2018;04/16/2019;05/22/2019;07/29/2020;02/11/2021;03/11/2021
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy. This validation entry is a non-security relevant modification to Cert. #2038.
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Hewlett Packard Enterprise SSL crypto module is the FIPS validated OpenSSL cryptographic provider for Hewlett Packard Enterprise components. The module features robust algorithm support including CNSA algorithms. The module provides services for secure communications, secure key management, data integrity and data encryption.
Tested Configuration(s)
- CentOS 7 running on an AW-HWDL360-PRO/AW-HWDL360-ENT (single-user mode)
- Linux kernel 3.10.101 with GNU C Library 2.21 running on an HPE Synergy Interconnect Module
- Yocto Linux 3.0.35 running on an HPE Synergy Frame Link Module
FIPS Algorithms
| AES |
Certs. #4590, #5099 and #C580 |
| CVL |
Certs. #1277, #1649 and #C580 |
| DRBG |
Certs. #1554, #1905, and #C580 |
| DSA |
Certs. #1222, #1337 and #C580 |
| ECDSA |
Certs. #1132, #1324 and #C580 |
| HMAC |
Certs. #3038, #3401 and #C580 |
| RSA |
Certs. #2520, #2761 and #C580 |
| SHS |
Certs. #3764, #4147 and #C580 |
| Triple-DES |
Certs. #2442, #2626 and #C580 |
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #1277, #1649 and #C 580, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
