U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3391

Details

Module Name
Security Builder FIPS Java Module
Standard
FIPS 140-2
Status
Active
Sunset Date
3/5/2024
Validation Dates
03/06/2019;09/19/2019;10/01/2019
Overall Level
1
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
  • Physical Security: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Security Builder FIPS Java Module is a standards-based cryptographic toolkit written in Java. It supports optimized Elliptic Curve Cryptography and provides application developers with sophisticated tools to flexibly integrate encryption, digital signatures and other security mechanisms into Java-based applications. The Security Builder FIPS Java Module is intended for use by developers who want government level security and can also be used in conjunction with other Certicom developer toolkits including Security Builder PKI and Security Builder SSL.
Tested Configuration(s)
  • Android 6.0.1 with processor Qualcomm 8992 Snapdragon running on BlackBerry PRIV[1][2]
  • Android 8.1.2 with Processor ARMv8 running on Venturi K502 tablet[2]
  • Android OS API Level 17 with processor NXP ARM Cortex-A9 running on Ricoh MP C3004[1]
  • CentOS 7.0 with Java JRE 1.8.0 running on a Dell PowerEdge 2950 with an Intel Xeon 5300[1]
  • Red Hat Enterprise Linux 7 with IBM Java JRE 1.8 running on a Dell PowerEdge R430 with an Intel Xeon E5-2620 v3[2]
  • SUSE Linux Enterprise 11 on VMware ESX 4.1.5 with Oracle JRE 1.8 running on a Dell PowerEdge R430 with an Intel Xeon E5-2620 v3[2]
  • Ubuntu Linux 16.04 on VMware ESX 4.1.5 with Oracle JRE 1.8 running on a Dell PowerEdge R430 with an Intel Xeon E5-2620 v3[2] (single-user mode)
  • Windows Server 2016 on VMware ESX 6.5 with Oracle JRE 1.8 running on a Dell PowerEdge R430 with an Intel Xeon E5-2620 v3[2]
FIPS Algorithms
AES Certs. #3988, #4299, #4300, #5539, #5608 and #5609
CKG vendor affirmed
DRBG Certs. #1180, #1359, #1360, #2194, #2250 and #2251
DSA Certs. #1084, #1142, #1143, #1421, #1443 and #1444
ECDSA Certs. #884, #1009, #1010, #1490, #1518 and #1519
HMAC Certs. #2603, #2835, #2836, #3690, #3741 and #3742
KAS Certs. #83, #98, #99, #190, #193 and #194
KTS vendor affirmed
RSA Certs. #2046, #2320, #2321, #2972, #3016 and #3017
SHS Certs. #3292, #3537, #3538, #4445, #4505 and #4506
Triple-DES Certs. #2188, #2320, #2321, #2788, #2822 and #2823
Allowed Algorithms
NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
2.9[1], 2.9.2[2]

Vendor

Certicom Corp.
4701 Tahoe Blvd
Building A
5th Floor
Mississauga, Ontario L4W 0B5
Canada

sales@certicom.com
sales@certicom.com
Phone: 905-507-4220 or Toll Free 1-800-561-6100
Fax: 905-507-4230

Related Files

Security Policy
Consolidated Certificate

Lab

EWA CANADA
NVLAP Code: 200556-0