Certificate 1792 - Red Hat Enterprise Linux 6.2 OpenSSH Server Cryptographic Module
intCertNum 1792
strVendorName Red Hat, Inc.
strURL http://www.redhat.com
strAddress1 314 Littleton Road
strAddress2
strAddress3
strCity Westford
strStateProv MA
strPostalCode 01886
strCountry 01886
strContact Irina Boverman
strEmail iboverma@redhat.com
strPhone 978-392-1000
strFax 978-392-1001
strContact2
strEmail2
strFax2
strPhone2
intCertNum 1792
strModuleName Red Hat Enterprise Linux 6.2 OpenSSH Server Cryptographic Module
strPartNumber Software Version: 2.1
memModuleNotes When operated in FIPS mode. This module contains the embedded module Red Hat Enterprise Linux 6.2 OpenSSL Cryptographic Module validated to FIPS 140-2 under Cert. #1758 operating in FIPS mode. When obtained, installed, and initialized as specified in Section 9.1 of the provided Security Policy. Section 1 of the provided Security Policy specifies the precise RPM file containing this module. The integrity of the RPM is automatically verified during the installation and the Crypto officer shall not install the RPM file if the RPM tool indicates an integrity error. Any deviation from the specified verification, installation and initialization procedures will result in a non FIPS 140-2 compliant module. The module generates cryptographic keys whose strengths are modified by available entropy.
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL
strModuleType Software
strValidationDate 08/24/2012;10/23/2012
intOverallLevel 1
memIndividualLevelNotes ;;-Operational Environment: Tested as meeting Level 1 with Red Hat Enterprise Linux 6.2 (single-user mode)
strFIPSAlgorithms Triple-DES (Certs. #1226, #1227, #1231 and #1232);
AES (Certs. #1887, #1888, #1889, #1893, #1894 and #1895);
DSA (Certs. #592, #593, #597 and #598);
RNG (Certs. #989, #990, #994 and #995);
HMAC (Certs. #1129, #1130, #1134 and #1135);
SHS (Certs. #1658, #1659, #1663 and #1664);
RSA (Certs. #964, #965, #969 and #970)
strOtherAlgorithms RSA (key wrapping;
key establishment methodology provides between 112 and 160 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 160 bits of encryption strength;
non-compliant less than 112 bits of encryption strength)
strConfiguration Multi-chip standalone
memModuleDescription The OpenSSH Server cryptographic module provides the server-side component for an SSH protocol version 2 protected communication channel. OpenSSH is the standard SSH implementation and shipped with RHEL 6.2. Its cryptographic mechanisms use the OpenSSL library in FIPS 140-2 mode.
intModuleCount 1
memAdditionalNotes 10/23/12: replace SW 2.0 to 2.1 and updated security policy.
strFirstValidtionDate 08/24/12 00:00:00
strLabName atsec
strValidationYear 2012