Module Name
SafeZone FIPS Cryptographic Module
Validation Dates
05/29/2020
Caveat
When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
Inside Secure FIPS Cryptographic Module is a FIPS 140-2 Security Level 1 validated software cryptographic module from INSIDE Secure. The module is a toolkit which provides the most commonly needed cryptographic primitives for a large variety of applications, including but not limited to, primitives needed for DAR, DRM, TLS, and VPN on mobile devices.
Tested Configuration(s)
- Debian 9 Linux running on a Raspberry Pi 2 with an ARM Cortex-A7
- Debian 9 Linux running on a ROCK64 with an ARM Cortex-A53 with PAA
- Debian 9 Linux running on a ROCK64 with an ARM Cortex-A53 without PAA
- Xubuntu 18.04.1 LTS running on a Lenovo MIIX 320 with an Intel Atom x5 (32-bit) with PAA
- Xubuntu 18.04.1 LTS running on a Lenovo MIIX 320 with an Intel Atom x5 (32-bit) without PAA
- Xubuntu 18.04.1 LTS running on a Lenovo MIIX 320 with an Intel Atom x5 (64-bit) with PAA
- Xubuntu 18.04.1 LTS running on a Lenovo MIIX 320 with an Intel Atom x5 (64-bit) without PAA (single-user mode)
FIPS Algorithms
AES |
Cert. #C510 |
CKG |
vendor affirmed |
CVL |
Cert. #C510 |
DRBG |
Cert. #C510 |
DSA |
Cert. #C510 |
ECDSA |
Cert. #C510 |
HMAC |
Cert. #C510 |
KBKDF |
Cert. #C510 |
KDA |
vendor affirmed |
KTS |
AES Cert. #C510; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
vendor affirmed |
PBKDF |
vendor affirmed |
RSA |
Cert. #C510 |
SHA-3 |
Cert. #C510 |
SHS |
Cert. #C510 |
Triple-DES |
Cert. #C510 |
Allowed Algorithms
Diffie-Hellman (CVL Cert. #C510 with SP 800-56C, vendor affirmed, key agreement; key establishment methodology provides between 112 and 200 bits of encryption strength); EC Diffie-Hellman (CVL Cert. #C510 with SP 800-56C, vendor affirmed, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); MD5; NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength)