U.S. flag   An unofficial archive of your favorite United States government website

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3449

Details

Module Name
SAP CommonCryptoLib Crypto Kernel
Standard
FIPS 140-2
Status
Active
Sunset Date
5/1/2024
Validation Dates
05/02/2019
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
SAP CommonCryptoLib Crypto Kernel v8.4.47.0 is a shared library, i.e. it consists of software only. SAP CommonCryptoLib Crypto Kernel provides an API in terms of C++ methods for key management and operation of cryptographic functions.
Tested Configuration(s)
  • AIX 5.2 64-bit running on a IBM eServer p5 505 without PAA [2]
  • AIX 6.1 64-bit on IBM PowerVM 2.2 running on a IBM Power 750 Express without PAA [1][2]
  • HP-UX 11.11 64-bit running on a HP Server rp3440 [2]
  • HP-UX 11.23 64-bit running on a HP Server rx5670 [2]
  • HP-UX 11.31 64-bit running on a HP Integrity rx6600 [1][2]
  • SunOS 5.10 64-bit running on a Fujitsu PrimePower 650 [1][2]
  • SunOS 5.10 64-bit running on a Sun Fire X4150 without PAA [1][2]
  • SunOS 5.9 64-bit running on a Sun Fire V440 [2]
  • SUSE Linux Enterprise Server 11 SP1 (Linux Kernel 2.6.32) 32-bit running on a HP ProLiant DL385-G2 DC [1]
  • SUSE Linux Enterprise Server 11 SP1 (Linux Kernel 2.6.32) 64-bit on IBM PowerVM 2.2 running on a IBM Power 750 Express without PAA [1][2]
  • SUSE Linux Enterprise Server 11 SP1 (Linux Kernel 2.6.32) 64-bit running on a HP Integrity rx2660 [2]
  • SUSE Linux Enterprise Server 11 SP3 (Linux Kernel 3.0.101) 64-bit on IBM PowerVM 2.2 running on a IBM Power System S824 with PAA [2]
  • SUSE Linux Enterprise Server 11 SP3 (Linux Kernel 3.0.101) 64-bit on Vmware ESXi 5.1.0 running on a HP ProLiant DL580 G7 with PAA [1][2]
  • SUSE Linux Enterprise Server 11 SP4 (Linux Kernel 3.0.101) 64-bit on IBM z/VM 6.2.0 running on a IBM zEnterprise 196 (2817 series) [2]
  • SUSE Linux Enterprise Server 12 SP1 (Linux Kernel 3.12.51) 64-bit on IBM PowerVM 2.2 running on a IBM Power System E870 [2]
  • SUSE Linux Enterprise Server 9 SP2 (Linux Kernel 2.6.5) 64-bit running on a HP ProLiant DL585 without PAA [1][2]
  • Windows Server 2008 R2 SP1 64-bit on Vmware ESXi 5.1.0 running on a HP ProLiant DL580 G7 with PAA [1][2] (single-user mode)
  • Windows Server 2008 SP2 64-bit running on a HP ProLiant DL380 G6 without PAA [1][2]
FIPS Algorithms
AES Certs. #3665 and #3666
CVL Certs. #670, #671, #672, #673, #674, and #675
DRBG Certs. #986 and #987
DSA Certs. #1035 and #1036
ECDSA Certs. #772 and #773
HMAC Certs. #2415 and #2416
RSA Certs. #1898 and #1899
SHS Certs. #3083 and #3084
Triple-DES Certs. #2047 and #2048
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
8.4.47.0 32-bit [1] and 64-bit [2]

Vendor

SAP SE
Dietmar-Hopp-Allee 16
Walldorf 69190
Germany

Stephan André
stephan.andre@sap.com
Phone: +49-6227-7-47474
Fax: +49-6227-78-55975
 Thomas Rothe
t.rothe@sap.com
Phone: +49-6227-7-47474
Fax: +49-6227-78-55989

Related Files

Security Policy
Consolidated Certificate

Lab

TÜV INFORMATIONSTECHNIK GMBH
NVLAP Code: 200636-0