Module Name
Samsung BoringSSL Cryptographic Module
Validation Dates
01/30/2019;09/19/2019
Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: N/A
- EMI/EMC: Level 3
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Provides general purpose cryptographic services to user-space applications on the mobile platform for the protection of data.
Tested Configuration(s)
- Android 8.1 with processor Qualcomm MSM8998 running on Samsung Galaxy Tab S4
- Android 8.1 with processor Qualcomm SDM450 running on Samsung Galaxy Tab A 10.5
- Android 8.1 with processor Qualcomm SDM845 running on Samsung Galaxy Note9
- Android 8.1 with processor Samsung Electronics Exynos7870 running on Samsung Galaxy Tab Active2 (single-user mode)
- Android 8.1 with processor Samsung Electronics Exynos9810 running on Samsung Galaxy Note9
FIPS Algorithms
| AES |
Cert. #5468 |
| CKG |
vendor affirmed |
| CVL |
Certs. #1920 and #1921 |
| DRBG |
Cert. #2149 |
| DSA |
Cert. #1406 |
| ECDSA |
Cert. #1463 |
| HMAC |
Cert. #3626 |
| KBKDF |
Cert. #218 |
| KTS |
AES Cert. #5468; key establishment methodology provides 128 or 256 bits of encryption strength |
| RSA |
Cert. #2937 |
| SHS |
Cert. #4389 |
Allowed Algorithms
Diffie-Hellman (CVL Cert. #1920, key agreement; Key agreement; key establishment methodology provides between 112 and 150 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #1920, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (CVL Cert. # 1921, key wrapping; key establishment methodology provides between 112 and 128 bits of encryption strength)
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
