Module Name
Oracle Linux 7 OpenSSH Server Cryptographic Module
Validation Dates
01/06/2020;04/24/2020
Caveat
When operated in FIPS mode with module Oracle Linux OpenSSL Cryptographic Module validated to FIPS 140-2 under Cert. #3474 operating in FIPS mode
Security Level Exceptions
- Physical Security: N/A
- Design Assurance: Level 3
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Oracle Linux OpenSSH Cryptographic Module is a software module that supplies cryptographic support for the SSH protocol.
Tested Configuration(s)
- Oracle Linux 7.6 64 bit running on Oracle Server X7-2 with an Intel(R) Xeon(R) Silver 4114 with PAA
- Oracle Linux 7.6 64 bit running on Oracle Server X7-2 with an Intel(R) Xeon(R) Silver 4114 without PAA
- Oracle Linux 7.6 64 bit running on Oracle X7-2 Server with AMD« EPYC« 7551 with PAA
- Oracle Linux 7.6 64 bit running on Oracle X7-2 Server with AMD« EPYC« 7551 without PAA (single user mode)
FIPS Algorithms
| AES |
Certs. #C422, #C423 and #C429 |
| CVL |
Certs. #C429 and #C611 |
| DRBG |
Certs. #C422, #C423 and #C429 |
| ECDSA |
Cert. #C429 |
| HMAC |
Certs. #C422, #C423 and #C429 |
| KTS |
AES Certs. #C422, #C423 and #C429 and HMAC Certs. #C422, #C423 and #C429; key establishment methodology provides between 128 and 256 bits of encryption strength |
| RSA |
Cert. #C429 |
| SHS |
Certs. #C422, #C423 and #C429 |
| Triple-DES |
Cert. #C429 |
Allowed Algorithms
Diffie-Hellman (CVL Cert #C429 with CVL Cert #C611, key agreement; key establishment methodology provides between 112 and 202 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C429 with CVL Cert #C611, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); NDRNG
Software Versions
R7-4.0.0
) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)
