intCertNum |
1051 |
strVendorName |
Open Source Software Institute |
strURL |
http://www.oss-institute.org |
strAddress1 |
3610 Pearl Street |
strAddress2 |
|
strAddress3 |
|
strCity |
Hattiesburg |
strStateProv |
MS |
strPostalCode |
39401 |
strCountry |
39401 |
strContact |
John Weathersby |
strEmail |
OpenSSL@oss-institute.org |
strPhone |
601-427-0152 |
strFax |
601-427-0156 |
strContact2 |
|
strEmail2 |
|
strFax2 |
|
strPhone2 |
|
intCertNum |
1051 |
strModuleName |
OpenSSL FIPS Object Module |
strPartNumber |
Software Versions: 1.2, 1.2.1, 1.2.2, 1.2.3 or 1.2.4 |
memModuleNotes |
When built, installed, protected and initialized as assumed by the Crypto Officer role and as specified in the provided Security Policy. Appendix B of the provided Security Policy specifies the actual distribution tar file containing the source code of this module. There shall be no additions, deletions or alterations to the tar file contents as used during module build. The distribution tar file, shall be verified as specified in Appendix B of the provided Security Policy. Installation and protection shall be completed as specified in Appendix A of the provided Security Policy. Initialization shall be invoked as per Section 2.3 of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a FIPS 140-2 non-compliant module. |
str140Version |
140-2 |
_sp_ |
Security Policy [pdf][html][txt] |
_cert_ |
Certificate [pdf][txt] |
strPURL |
http://www.openssl.org/source/ |
strModuleType |
Software |
strValidationDate |
11/17/2008;11/20/2009;12/08/2010;05/12/2011;03/07/2012;03/14/2012;05/29/2012;06/21/2012 |
intOverallLevel |
1 |
memIndividualLevelNotes |
-Operational Environment: Tested as meeting Level 1 with OpenSuSE Linux 32-bit Version 10.2 (gcc Compiler Version 4.1.2 20061115 prerelease); OpenSuSE Linux 64-bit Version 10.2 (gcc Compiler Version 4.1.2 20061115 prerelease); Windows XP Pro SP2 32 bit (Microsoft Visual C++ version 8); Windows XP Pro SP2 64 bit (Microsoft Visual C++ version 8); µClinux Kernel Version 2.4.32 (gcc Compiler Version 3.4.4); Android 2.2 (gcc Compiler Version 4.4.0); VxWorks 6.7 (gcc Compiler Version 4.1.2); Wind River 1.4 (gcc Compiler Version 3.4.4); Wind River 4.0 (gcc Compiler Version 4.4.1); Apple iOS 5.0 (gcc Compiler Version 4.2.1); Apple OS X 11 32 bit (gcc Compiler Version 4.2.1); Apple OS X 11 64 bit (gcc Compiler Version 4.2.1) (single-user mode) |
strFIPSAlgorithms |
Triple-DES (Cert. #627, #1011, #1066, #1259 and #1297); AES (Cert. #695, #1534, #1630, #1933 and #2011); DSA (Cert. #264, #475, #512, #616 and #637); SHS (Cert. #723, #1362, #1435, #1698 and #1761); HMAC (Cert. #373, #892, #957, #1167 and #1216); RSA (Cert. #323, #745, #804, #999 and #1040); RNG (Cert. #407, #826, #873, #1018 and #1053) |
strOtherAlgorithms |
Diffie-Hellman; RSA (key wrapping; key establishment methodology provides between 112 and 256 bits of encryption strength; non-compliant less than 112 bits of encryption strength) |
strConfiguration |
Multi-chip standalone |
memModuleDescription |
The OpenSSL FIPS Object Module is a cryptographic library that can be downloaded from www.openssl.org/source/ |
intModuleCount |
1 |
memAdditionalNotes |
11/20/09: Added new OS and updated Security Policy. 12/08/10: Replaced SW v1.2 with v1.2.2 and updated Security Policy. 05/12/11: Replaced SW v1.2.2 with v1.2.3; added OE AndroidÂ:2.2Â:(gccÂ:CompilerÂ:VersionÂ:4.4.0);Â:VxWorksÂ:6.7Â:(gccÂ:CompilerÂ:VersionÂ:4.1.2), added Triple-DES #1011Â:andÂ:#1066, AES #1534 andÂ:#1630, DSA #475 andÂ:#512, SHS #1362Â:andÂ:#1435, HMAC #892Â:andÂ:#957, RSA #745Â:andÂ:#804, RNG #826Â:andÂ:#873, and updated Security Policy. 03/07/12: Added Oes Wind River 1.4 (gcc Compiler Version 3.4.0) and Wind River 4.0 (gcc Compiler Version 4.4.1). Added Triple-DES #1259, AES #1933, DSA #616, SHS #1698, HMAC #1167, RSA #999 and RNG #1018. Updated security policy. 03/14/12: Replaced Wind River 1.4 (gcc Compiler Version 3.4.0) with Wind River 1.4 (gcc Compiler Version 3.4.4). 05/22/2012: Modified certificate caveat. ; 05/29/2012: Re-added prior validated versions 1.2, 1.2.1 and 1.2.2. Updated security policy. 06/21/12: Added new SW v1.2.4 and additional OS's with additonal algortihm certificates and with updated Security Policy. |
strFirstValidtionDate |
11/17/08 00:00:00 |
strLabName |
DOMUS |
strValidationYear |
2008 |
|