U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

Cryptographic Module Validation Program CMVP

Certificate #3954

Details

Module Name
Ubuntu 18.04 Google Kernel Crypto API Cryptographic Module
Standard
FIPS 140-2
Status
Active
Sunset Date
4/23/2025
Overall Level
1
Caveat
When operated in FIPS mode
Security Level Exceptions
  • Physical Security: N/A
  • Mitigation of Other Attacks: N/A
Module Type
Software
Embodiment
Multi-Chip Stand Alone
Description
The Ubuntu 18.04 Google Kernel Crypto API module is a software module running as part of the operating system kernel that provides general purpose cryptographic services.
Tested Configuration(s)
  • Ubuntu 18.04 LTS 64-bit running on Supermicro SYS-5018R-WR with Intel Xeon CPU E5-2620v3 with PAA
  • Ubuntu 18.04 LTS 64-bit running on Supermicro SYS-5018R-WR with Intel Xeon CPU E5-2620v3 without PAA (single-user mode)
FIPS Algorithms
AES Certs. #C755, #C756, #C757, #C758, #C759, #C760, #C761, #C762, #C763, #C764 and #C765
CVL Cert. #C755
DRBG Certs. #C755, #C758, #C761, #C766, #C767 and #C768
HMAC Certs. #C755, #C766, #C767 and #C768
KTS AES Certs. #C755, #C756, #C757, #C758, #C759, #C760, #C761, #C762, #C763, #C764 and #C765; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS AES Certs. #C755, #C756, #C757, #C758, #C759, #C760, #C761, #C762, #C763, #C764 and #C765 and HMAC Certs. #C755, #C766, #C767 and #C768; key establishment methodology provides between 128 and 256 bits of encryption strength
KTS Triple-DES Certs. #C755 and #C758 and HMAC Certs. #C755, #C766, #C767 and #C768; key establishment methodology provides 112 bits of encryption strength
RSA Certs. #C755, #C766, #C767 and #C768
SHA-3 Cert. #C755
SHS Certs. #C755, #C766, #C767 and #C768
Triple-DES Certs. #C755 and #C758
Allowed Algorithms
Diffie-Hellman (shared secret computation provides between 112 and 256 bits of encryption strength); NDRNG; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength)
Software Versions
2.0

Vendor

Canonical Ltd.
5th floor, Blue Fin Building
110 Southwark Street
London SE1 0SU
United Kingdom

Canonical Certification Team
security-certifications@lists.canonical.com

Validation History

Date Type Lab
6/14/2021 Initial ATSEC INFORMATION SECURITY CORP
10/18/2021 Update ATSEC INFORMATION SECURITY CORP