Module Name
TippingPoint Crypto Core OpenSSL
Validation Dates
04/12/2021;08/23/2021
Caveat
When operated in FIPS mode
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
The Trend Micro, TippingPoint Crypto Core OpenSSL is a software library which provides FIPS 140-2 approved cryptographic algorithms and services for Trend Micro TippingPoint security products.
Tested Configuration(s)
- Linux 4.4 on a Trend Micro TippingPoint Virtual Threat Protection System (vTPS) on KVM 1.5.3 on Red Hat Enterprise Linux (RHEL) 7 running on a HP Proliant DL360 Gen7 with an Intel Xeon X5650 with PAA
- Linux 4.4 on a Trend Micro TippingPoint Virtual Threat Protection System (vTPS) on VMWare ESXi 5.5 running on an HP ProLiant DL360 Gen8 with an Intel Xeon E5-2697 v2 with PAA
- Linux 4.4 on a Trend Micro TippingPoint Virtual Threat Protection System (vTPS) on VMWare ESXi 6.0 running on an HP ProLiant DL360 Gen9 with an Intel Xeon E5-2698 v3 with PAA
- Linux 4.4 on a Trend Micro TippingPoint Virtual Threat Protection System (vTPS) on VMWare ESXi 6.5 running on a Dell PowerEdge Server R640 with an Intel Xeon E5-2690 with PAA
- Linux 4.4 on a Trend Micro TippingPoint Virtual Threat Protection System (vTPS) on VMWare ESXi 6.5 running on a Dell PowerEdge Server R640 with an Intel Xeon E5-2690 without PAA
- Linux 4.4 on a Trend Micro TippingPoint Virtual Threat Protection System (vTPS) on VMWare ESXi 6.7 running on a Dell PowerEdge Server R640 with an Intel Xeon E5-2683 with PAA
- Linux 4.4 running on a Trend Micro TippingPoint Threat Protection System 1100TX with an Intel Pentium D1517 with PAA
- Linux 4.4 running on a Trend Micro TippingPoint Threat Protection System 2200T with an Intel Xeon E5-2620 with PAA
- Linux 4.4 running on a Trend Micro TippingPoint Threat Protection System 440T with an Intel Core i3-3220 without PAA
- Linux 4.4 running on a Trend Micro TippingPoint Threat Protection System 5500TX with an Intel Xeon D-1559 with PAA
- Linux 4.4 running on a Trend Micro TippingPoint Threat Protection System 8200TX with an Intel Xeon E5-2648L v3 with PAA
- Linux 4.4 running on a Trend Micro TippingPoint Threat Protection System 8400TX with an Intel Xeon E5-2648L v3 with PAA (single-user mode)
FIPS Algorithms
AES |
Certs. #5484 and #C1262 |
CKG |
vendor affirmed |
CVL |
Certs. #1937, #C1262 and #C1566 |
DRBG |
Certs. #2159 and #C1262 |
DSA |
Certs. #1411 and #C1262 |
ECDSA |
Certs. #1470 and #C1262 |
HMAC |
Certs. #3640 and #C1262 |
KTS |
AES Certs. #5484, #C1262 and HMAC Certs. #3640, #C1262; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
AES Certs. #5484 and #C1262; key establishment methodology provides between 128 and 256 bits of encryption strength |
KTS |
Triple-DES Certs. #2761, #C1262 and HMAC Certs. #3640, #C1262; key establishment methodology provides 112 bits of encryption strength |
RSA |
Certs. #2945 and #C1262 |
SHS |
Certs. #4401 and #C1262 |
Triple-DES |
Certs. #2761 and #C1262 |
Allowed Algorithms
Diffie-Hellman (key agreement; key establishment methodology provides 112 or 128 bits of encryption strength); Diffie-Hellman (with CVL Certs. #1566 and #C1262, key agreement; key establishment methodology provides 112 or 128 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1937 and #C1262, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); EC Diffie-Hellman (CVL Certs. #1937 and #C1262 with CVL Cert. #1566 and #C1262, key agreement; key establishment methodology provides between 112 and 256 bits of encryption strength); MD5; NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
1.0.2l-fips