Crypto-C ME Cryptographic Toolkit
5
2 Crypto-C ME Cryptographic Toolkit
The CryptoC ME software development toolkit enables developers to incorporate cryptographic
technologies into applications. CryptoC ME security software is designed to help protect sensitive data
as it is stored, using strong encryption techniques that ease integration with existing data models. Using
the capabilities of CryptoC ME software in applications helps provide a persistent level of protection
for data, lessening the risk of internal, as well as external, compromise.
The features of CryptoC ME include the ability to optimize code for different processors, and specific
speed or size requirements. Assemblylevel optimizations on key processors mean that CryptoC ME
algorithms can be used at increased speeds on many platforms.
CryptoC ME offers a full set of cryptographic algorithms including publickey (asymmetric) algorithms,
symmetric (secret key) block and stream ciphers, message digests, message authentication, and Pseudo
Random Number Generator (PRNG) support. Developers can implement the full suite of algorithms
through a single Application Programming Interface (API) or select a specific set of algorithms to reduce
code size or meet performance requirements.
Note: When operating in a FIPS 1402approved manner, the set of algorithm implementations is not
customizable.
2.1 Cryptographic Module
CryptoC ME is classified as a multichip standalone cryptographic module for the purposes of
FIPS 1402. As such, CryptoC ME must be tested on a specific operating system and computer platform.
The cryptographic boundary includes CryptoC ME running on selected platforms running selected
operating systems while configured in single user mode. CryptoC ME was validated as meeting all
FIPS 1402 Level 1 security requirements, including cryptographic key management and operating
system requirements. CryptoC ME is packaged as a set of dynamically loaded modules or shared
library files that contain the module's entire executable code. The CryptoC ME toolkit relies on the
physical security provided by the host PC in which it runs.
For FIPS 1402 validation, CryptoC ME is tested on the following platforms:
·
Red Hat® Enterprise Linux® AS 4.0, x86 (32bit), built with LSB3.0.3 and gcc 3.4.6.
·
Microsoft®:
o
Windows® XP Professional SP2, x86 (32bit), built with Visual Studio 2005 SP1 using the /MT option
T
o
Windows Vista® Ultimate, x86 (32bit), built with Visual Studio 2005 SP1 using the /MD option.
1
The /MT compiler option causes the application to use the multithread, static version of the runtime
library(libcmt.lib), while the /MD causes the application to use the multithread and DLLspecific version of