U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Computer Security Resource Center

Computer Security Resource Center

This is an archive
(replace .gov by .rip)
    Projects Cryptographic Module Validation Program Validated Modules Search

Cryptographic Module Validation Program CMVP

Certificate #3608

Details

Module Name
Wickr FIPS Object Module for OpenSSL
Standard
FIPS 140-2
Status
Active
Sunset Date
1/29/2022
Validation Dates
01/24/2020
Overall Level
1
Caveat
When built, installed, protected and initialized as assumed by the Crypto Officer role and as specified in the provided Security Policy. Appendix A of the provided Security Policy specifies the actual distribution tar file containing the source code of this module. There shall be no additions, deletions or alterations to the tar file contents as used during module build. The distribution tar file shall be verified as specified in Appendix A of the provided Security Policy. Installation and protection shall be completed as specified in Appendix A of the provided Security Policy. Initialization shall be invoked as per Section 4 of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a non FIPS 140-2 compliant module. This validation entry is a non-security relevant modification to Cert. #2398. No assurance of the minimum strength of generated keys
Security Level Exceptions
  • Roles, Services, and Authentication: Level 2
  • Physical Security: N/A
  • Design Assurance: Level 3
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Wickr FIPS Object Module for OpenSSL is a general purpose cryptographic module compiled from the source code for the OpenSSL FIPS Object Module 2.0.16.
Tested Configuration(s)
  • Android 9 running on a Samsung Galaxy S10 with a Qualcomm Snapdragon 855 (Kryo) with PAA
  • Android 9 running on a Samsung Galaxy S10 with a Qualcomm Snapdragon 855 (Kryo) without PAA
  • Apple iOS 13.1 running on an Apple iPhone X with an Apple A11 Bionic (Monsoon, Mistral) with PAA
  • Apple iOS 13.1 running on an Apple iPhone X with an Apple A11 Bionic (Monsoon, Mistral) without PAA
  • Apple macOS Mojave running on an Apple Macbook Pro A1502 with an Intel Core i5 with PAA
  • Apple macOS Mojave running on an Apple Macbook Pro A1502 with an Intel Core i5 without PAA
  • Microsoft Windows 10 April 2018 Update running on an IBM ThinkPad with an Intel Core i7 with PAA
  • Microsoft Windows 10 April 2018 Update running on an IBM ThinkPad with an Intel Core i7 without PAA (single-user mode)
  • Ubuntu 18.04 running on an IBM ThinkPad with an Intel Core i7 with PAA
  • Ubuntu 18.04 running on an IBM ThinkPad with an Intel Core i7 without PAA
FIPS Algorithms
AES Cert. #C1359
CVL Cert. #C1359
DRBG Cert. #C1359
DSA Cert. #C1359
ECDSA Cert. #C1359
HMAC Cert. #C1359
RSA Cert. #C1359
SHS Cert. #C1359
Triple-DES Cert. #C1359
Allowed Algorithms
EC Diffie-Hellman (CVL Cert. #C1359, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
2.0.16

Vendor

Wickr Inc.
1459 18th St.
#313
San Francisco, CA 94107
USA

Related Files

Security Policy
Consolidated Certificate

Lab

LEIDOS CSTL
NVLAP Code: 200427-0