Cryptographic Module Validation Program

Cryptographic Module Validation Program CMVP

Certificate #3320

Details

Module Name

Splunk Phantom Cryptographic Module

Standard

FIPS 140-2

Status

Active

Sunset Date

11/5/2023

Validation Dates

11/06/2018

Overall Level

Caveat

When operated in FIPS mode

Security Level Exceptions

Physical Security: N/A
Mitigation of Other Attacks: N/A

Module Type

Software

Embodiment

Multi-Chip Stand Alone

Description

The Splunk Phantom Cryptographic Module is a statically linked object module, providing cryptographic functionality to Splunk’s Phantom series of applications. Phantom solutions provide security automation and orchestration functionality.

Tested Configuration(s)

CentOS 6 running on a Dell PowerEdge 440 (Intel Xeon Silver ) with PAA
CentOS 6 running on a Dell PowerEdge 440 (Intel Xeon Silver) without PAA (single-user mode)
Red Hat Enterprise Linux Server 7.4 running on a Dell PowerEdge 440 (Intel Xeon Silver) with PAA
Red Hat Enterprise Linux Server 7.4 running on a Dell PowerEdge 440 (Intel Xeon Silver) without PAA

FIPS Algorithms

AES	Certs. #5441 and #5442
CKG	vendor affirmed
CVL	Cert. #1883
DRBG	Cert. #2125
DSA	Cert. #1399
ECDSA	Cert. #1446
HMAC	Cert. #3599
RSA	Cert. #2917
SHS	Cert. #4361
Triple-DES	Cert. #2734

Allowed Algorithms

NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 270 bits of encryption strength)

Software Versions

1.0

Vendor

Splunk, Inc.
270 Brannan Street
San Francisco, CA 94107
USA

Robert Truesdell
rtruesdell@splunk.com
Phone: 412-913-8242

Related Files

Security Policy
Consolidated Certificate

Lab

BOOZ ALLEN HAMILTON
NVLAP Code: 200423-0

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

Computer Security Resource Center