Module Name
Samsung BoringSSL Cryptographic Module
Validation Dates
07/20/2018
Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: N/A
- EMI/EMC: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Provides general purpose cryptographic services to user-space applications on the mobile platform for the protection of data.
Tested Configuration(s)
- Android 8.0 with processor Qualcomm MSM8996 running on Samsung Galaxy S7 edge
- Android 8.0 with processor Qualcomm MSM8998 running on Samsung Galaxy S8+
- Android 8.0 with processor Qualcomm SDM845 running on Samsung Galaxy S9+
- Android 8.0 with processor Samsung Electronics Exynos8890 running on Samsung Galaxy S7 edge
- Android 8.0 with processor Samsung Electronics Exynos8895 running on Samsung Galaxy S8
- Android 8.0 with processor Samsung Electronics Exynos9810 running on Samsung Galaxy S9+
- Android 8.0 with processor Samsung EXYNOS7570 running on Samsung Galaxy J3
- Android 8.0 with processor Samsung EXYNOS7884 running on Samsung Galaxy J3 (single-user mode)
FIPS Algorithms
AES |
Cert. #5255 |
CKG |
vendor affirmed |
CVL |
Certs. #1725 and #1726 |
DRBG |
Cert. #2010 |
DSA |
Cert. #1361 |
ECDSA |
Cert. #1369 |
HMAC |
Cert. #3479 |
KTS |
AES Cert. #5255; key establishment methodology provides 128 or 256 bits of encryption strength |
RSA |
Cert. #2810 |
SHS |
Cert. #4230 |
Allowed Algorithms
Diffie-Hellman (Key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #1725, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (CVL Cert. # 1726, key wrapping; key establishment methodology provides between 112 and 128 bits of encryption strength)