| intCertNum |
1837 |
| strVendorName |
Red Hat, Inc. |
| strURL |
http://www.redhat.com |
| strAddress1 |
100 East Davie Street |
| strAddress2 |
|
| strAddress3 |
|
| strCity |
Raleigh |
| strStateProv |
NC |
| strPostalCode |
27601 |
| strCountry |
27601 |
| strContact |
Robert Relyea |
| strEmail |
rrelyea@redhat.com |
| strPhone |
650-254-4236 |
| strFax |
|
| strContact2 |
|
| strEmail2 |
|
| strFax2 |
|
| strPhone2 |
|
| intCertNum |
1837 |
| strModuleName |
NSS Cryptographic Module |
| strPartNumber |
Software Version: 3.12.9.1 |
| memModuleNotes |
When operated in FIPS mode and when obtained, installed, and initialized as specified in Section 5 of the provided Security Policy. Section 5 also specifies the precise RPM file containing this module. The integrity of the RPM is automatically verified during the installation and the Crypto officer shall not install the RPM file if the RPM tool indicates an integrity error. Any deviation from the specified verification, installation and initialization procedures will result in a non FIPS 140-2 compliant module. The module generates cryptographic keys whose strengths are modified by available entropy. |
| str140Version |
140-2 |
| _sp_ |
Security Policy [pdf][html][txt] |
| _cert_ |
Certificate [pdf] |
| strPURL |
|
| strModuleType |
Software |
| strValidationDate |
11/08/2012 |
| intOverallLevel |
1 |
| memIndividualLevelNotes |
-Design Assurance: Level 2;;;-Operational Environment: Tested as meeting Level 1 with Red Hat Enterprise Linux v6.2 32-bit running on an Intel Core i7 system; Red Hat Enterprise Linux v6.2 64-bit running on an Intel Core i7 system; Red Hat Enterprise Linux v6.2 64-bit running on an Intel Core i7 system with PAA (single-user mode) |
| strFIPSAlgorithms |
AES (Cert. #1908);
DRBG (Cert. #165);
DSA (Cert. #602);
HMAC (Cert. #1145);
RSA (Cert. #979);
SHS (Cert. #1675);
Triple-DES (Cert. #1240) |
| strOtherAlgorithms |
AES (Cert. #1908, key wrapping;
key establishment methodology provides between 128 and 256 bits of encryption strength);
Camellia;
DES;
Diffie-Hellman (key agreement: key establishment methodology provides 112 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
HKDF;
J-PAKE;
MD2;
MD5;
RC2;
RC4;
RSA (key wrapping;
key establishment methodology provides between 112 and 150 bits of encryption strength;
non-compliant less than 112 bits of encryption strength);
SEED;
Triple-DES (Cert. #1240, key wrapping;
key establishment methodology provides 112 bits of encryption strength;
non-compliant less than 112 bits of encryption strength) |
| strConfiguration |
Multi-chip standalone |
| memModuleDescription |
Network Security Services (NSS) is a set of open source C libraries designed to support cross-platform development of security-enabled applications. NSS implements major Internet security standards. NSS is available free of charge under a variety of open source compatible licenses. See http://www.mozilla.org/projects/security/pki/nss/ . |
| intModuleCount |
1 |
| memAdditionalNotes |
|
| strFirstValidtionDate |
11/08/12 00:00:00 |
| strLabName |
Leidos |
| strValidationYear |
2012 |