Certificate 2396 - Apple iOS CoreCrypto Module v5.0
intCertNum 2396
strVendorName Apple Inc.
strURL http://www.apple.com
strAddress1 1 Infinite Loop
strAddress2
strAddress3
strCity Cupertino
strStateProv CA
strPostalCode 95014
strCountry 95014
strContact Shawn Geddis
strEmail geddis@apple.com
strPhone (669) 227-3579
strFax (866) 315-1954
strContact2
strEmail2
strFax2
strPhone2
intCertNum 2396
strModuleName Apple iOS CoreCrypto Module v5.0
strPartNumber Software Version: 5.0
memModuleNotes When operated in FIPS mode. The module generates cryptographic keys whose strengths are modified by available entropy
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf]
strPURL
strModuleType Software
strValidationDate 06/23/2015
intOverallLevel 1
memIndividualLevelNotes -Physical Security: N/A ;;;-Operational Environment: Tested as meeting Level 1 with iOS 8.0 running on iPhone4S with Apple A5 CPU with AES hardware accelaration; iOS 8.0 running on iPhone4S with Apple A5 CPU without AES hardware accelaration; iOS 8.0 running on iPhone5 with Apple A6 CPU with AES hardware accelaration; iOS 8.0 running on iPhone5 with Apple A6 CPU without AES hardware accelaration; iOS 8.0 running on iPad (3rd generation) with Apple A5X CPU with AES hardware accelaration; iOS 8.0 running on iPad (3rd generation) with Apple A5X CPU without AES hardware accelaration; iOS 8.0 running on iPad (4th generation) with Apple A6X CPU with AES hardware accelaration; iOS 8.0 running on iPad (4th generation) with Apple A6X CPU without AES hardware accelaration; iOS 8.0 running on iPhone5S with Apple A7 CPU; iOS 8.0 running on iPhone6 (iPhone6 and iPhone6 Plus) with Apple A8 CPU; iOS 8.0 running on iPad Air 2 with Apple A8X CPU (single-user mode)
strFIPSAlgorithms Triple-DES (Certs. #1856, #1857, #1858, #1859, #1860, #1861, #1862, #1863, #1910 and #1920);
AES (Certs. #3015, #3016, #3017, #3018, #3019, #3020, #3021, #3022, #3023, #3024, #3025, #3034, #3035, #3036, #3037, #3038, #3039, #3040, #3074, #3075, #3267, #3268, #3269, #3270, #3271, #3272, #3273, #3274, #3355, #3376, #3377, #3378, #3379 and #3381);
RSA (Certs. #1667, #1668, #1669, #1670, #1671, #1672, #1673, #1674, #1734 and #1736);
ECDSA (Certs. #623, #624, #625, #626, #627, #628, #629, #630, #670 and #672);
SHS (Certs. #2523, #2524, #2525, #2526, #2527, #2532, #2533, #2534, #2705, #2706, #2707, #2708, #2709, #2710, #2711,#2712, #2781, #2796, #2797 and #2799);
HMAC (Certs. #1907, #1908, #1909, #1910, #1911, #1916, #1917, #1918, #2066, #2067, #2068, #2069, #2070, #2071, #2072, #2073, #2137, #2151, #2152 and #2154);
DRBG (Certs. #575, #576, #577, #581, #582, #583, #584, #585, #726, #727, #728, #729, #730, #731, #732, #733, #800, #801, #802 and #804);
PBKDF (vendor affirmed)
strOtherAlgorithms AES (non-compliant);
RSA (key wrapping;
key establishment methodology provides between 112 and 150 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
ECDSA (non-compliant);
Diffie-Hellman (key agreement: key establishment methodology provides between 112 and 150 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
EC Diffie-Hellman (key agreement: key establishment methodology provides 128 or 160 bits of encryption strength);
Integrated Encryption Scheme on elliptic curves;
Ed25519;
AES (key wrapping;
key establishment methodology provides between 128 and 160 bits of encryption strength);
KBKDF (non-compliant);
ANSI X9.63 KDF;
RFC6637 KDF;
DES;
TDES (non-compliant);
CAST5;
RC2;
RC4;
MD2;
MD4;
MD5;
RIPEMD;
Blowfish;
OMAC (One-Key CBC MAC);
Hash-DRBG (non-compliant);
HMAC-DRBG (non-compliant);
RSA (non-compliant)
strConfiguration Multi-chip standalone
memModuleDescription The Apple iOS CoreCrypto Module is a software cryptographic module running on a multi-chip standalone mobile device and provides services intended to protect data in transit and at rest.
intModuleCount 1
memAdditionalNotes
strFirstValidtionDate 06/23/15 00:00:00
strLabName atsec
strValidationYear 2015