Module Name
Oracle OpenSSL FIPS Object Module
Validation Dates
12/03/2018;07/18/2019;04/29/2020;10/23/2020;03/02/2021;05/17/2021;08/03/2021
Caveat
When operated in FIPS mode. No assurance of the minimum strength of generated keys.
Security Level Exceptions
- Roles, Services, and Authentication: Level 2
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Oracle OpenSSL FIPS Object Module is a software library providing a C language application program interface (API) for use by processes that require cryptographic services. It is implemented in products such as Oracle Solaris 11, Oracle Integrated Lights Out Manager (ILOM), and Oracle ZFS Storage Appliance.
Tested Configuration(s)
- Oracle® ILOM OS v3.0 running on Emulex Pilot-4 Orion mainboard with Oracle® ILOM SP v2 (ARM v5) without PAA
- Oracle® ILOM OS v3.0 running on Oracle X5-2 server with Oracle® ILOM SP v3 (ARM v7) with PAA
- Oracle® ILOM OS v3.0 running on Oracle X5-2 server with Oracle® ILOM SP v3 (ARM v7) without PAA
- Oracle® ILOM OS v4.0 running on AST2400 Server Management Processor with Oracle® ILOM SP v4 (ARM v9) without PAA
- Oracle® ILOM OS v5.0 running on AST2520 Server Management Processor with Oracle® ILOM SP v5 (ARM v11) without PAA
- Oracle® Linux 7.6 64 bit running on Oracle® X7-2 Server with AMD® EPYC® 7551 with PAA
- Oracle® Linux 7.6 64 bit running on Oracle® X7-2 Server with AMD® EPYC® 7551 without PAA
- Oracle® Linux 7.6 64 bit running on Oracle® X7-2 Server with Intel® Xeon® Silver 4114 with PAA
- Oracle® Linux 7.6 64 bit running on Oracle® X7-2 Server with Intel® Xeon® Silver 4114 without PAA
- Oracle® Linux 7.8 64 bit running on Marvell MIPS III 64-bit (T73) without PAA (single-user mode)
- Oracle® Linux 7.8 64 bit running on Marvell ThunderX2 (ARM 8.1) without PAA
- Oracle® Solaris 11.4 running on Oracle S7-2L with an Oracle® SPARC S7 without PAA
- Oracle® Solaris 11.4 running on Oracle S7-2L with Oracle® SPARC S7 with PAA
- Oracle® Solaris 11.4 running on Oracle X5-2 server with Intel Xeon E5-2600 with PAA
- Oracle® Solaris 11.4 running on Oracle X5-2 server with Intel Xeon E5-2600 without PAA
- Oracle® Solaris 11.4 running on Oracle® SPARC T8 server with SPARC M8 with PAA
- Oracle® Solaris 11.4 running on Oracle® SPARC T8 server with SPARC M8 without PAA
- Oracle® Solaris 11.4 running on Oracle® X8-2 server with Intel Xeon Gold 5200 series with PAA
- Oracle® Solaris 11.4 running on Oracle® X8-2 server with Intel Xeon Gold 5200 series without PAA
- Oracle® ZFS Storage OS 8.8 running on Oracle® ZFS Storage ZS5-2 with Intel Xeon E5 with PAA
- Oracle® ZFS Storage OS 8.8 running on Oracle® ZFS Storage ZS5-2 with Intel Xeon E5 without PAA
- Oracle® ZFS Storage OS 8.8 running on Oracle® ZFS Storage ZS5-4 with Intel Xeon E7
- Oracle® ZFS Storage OS 8.8 running on Oracle® ZFS Storage ZS5-4 with Intel Xeon E7 without PAA
Allowed Algorithms
RSA (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
OpenSSL_2.0.13_OracleFIPS_1.0; OpenSSL_2.0.13_OracleFIPS_1.1
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
