| intCertNum |
1692 |
| strVendorName |
IBM Corporation |
| strURL |
http://www.IBM.com |
| strAddress1 |
2455 South Road |
| strAddress2 |
|
| strAddress3 |
|
| strCity |
Poughkeepsie |
| strStateProv |
NY |
| strPostalCode |
12601 |
| strCountry |
12601 |
| strContact |
William F Penny |
| strEmail |
wpenny@us.ibm.com |
| strPhone |
845-435-3010 |
| strFax |
|
| strContact2 |
|
| strEmail2 |
|
| strFax2 |
|
| strPhone2 |
|
| intCertNum |
1692 |
| strModuleName |
IBM z/OS Version 1 Release 13 System SSL Cryptographic Module |
| strPartNumber |
Hardware Versions: FC3863 w/System Driver Level 86E, and optional CEX3A and CEX3C [CEX3A and CEX3C are separately configured versions of 4765-001 (P/N 45D6048)];
Firmware Version: 4765-001 (e1ced7a0);
Software Versions: System SSL level HCPT3D0/JCPT3D1 w/ APAR OA36775, RACF level HRF7780 and ICSF level HCR7780 w/ APAR OA36882 |
| memModuleNotes |
When operated in FIPS mode |
| str140Version |
140-2 |
| _sp_ |
Security Policy [pdf][html][txt] |
| _cert_ |
Certificate [pdf] |
| strPURL |
|
| strModuleType |
Software-Hybrid |
| strValidationDate |
03/12/2012 |
| intOverallLevel |
1 |
| memIndividualLevelNotes |
-Cryptographic Module Specification: Level 3;;;-Operational Environment: Tested as meeting Level 1 with IBM zEnterprise (TM) 196 (z196) with CP Assist for Cryptographic Functions DES/TDES Enablement Feature 3863 [Base GPC, and optional Crypto Express3 Card (Coprocessor (CEX3C)); Crypto Express3 Card (Accelerator (CEX3A)) and Crypto Express3 Cards (Coprocessor (CEX3C) and Accelerator (CEX3A))] [IBM zEnterprise (TM) (z196) with CP Assist for Cryptographic Functions DES/TDES Enablement Feature 3863 includes FC3863 w/System Driver Level 86E and z/OS V1R13] (single-user mode) |
| strFIPSAlgorithms |
AES (Certs. #1713, #1864 and #1865);
Triple-DES (Certs. #1103, #1210 and #1211);
DSA (Certs. #582 and #583);
RSA (Certs. #944, #945, #946, #947 and #948);
SHS (Certs. #1497, #1639 and #1640);
HMAC (Certs. #1110 and #1111);
RNG (Certs. #977 and #978) |
| strOtherAlgorithms |
Diffie-Hellman (key agreement: key establishment methodology provides 112 bits of encryption strength);
RSA (key wrapping;
key establishment methodology provides between 112 and 150 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
DES;
RC2;
ArcFour;
MD5;
MD2;
HMAC-MD5;
ECDSA (non-compliant) |
| strConfiguration |
Multi-chip standalone |
| memModuleDescription |
System SSL is a set of generic services provided in z/OS to protect TCP/IP communications using the SSL/TLS protocol. System SSL is exploited by many SSL enabled servers and clients in z/OS to meet the transport security constraints required in an On Demand environment. The System SSL APIs are also externalized to customer applications. System SSL has evolved through the latest releases of z/OS to support the new TLS (Transaction Layer Security) standard, to reach an unmatched level of performance and to extend the APIs available to applications to new functions. |
| intModuleCount |
1 |
| memAdditionalNotes |
|
| strFirstValidtionDate |
03/12/12 00:00:00 |
| strLabName |
atsec |
| strValidationYear |
2012 |