Certificate 1387 - Red Hat Enterprise Linux 5 Kernel Crypto API Cryptographic Module
intCertNum 1387
strVendorName Red Hat, Inc.
strURL http://www.redhat.com
strAddress1 314 Littleton Road
strAddress2
strAddress3
strCity Westford
strStateProv MA
strPostalCode 01886
strCountry 01886
strContact Irina Boverman
strEmail iboverma@redhat.com
strPhone 978-392-1000
strFax 978-392-1001
strContact2
strEmail2
strFax2 919-754-3701
strPhone2 919-754-3700
intCertNum 1387
strModuleName Red Hat Enterprise Linux 5 Kernel Crypto API Cryptographic Module
strPartNumber Software Version: 1.0
memModuleNotes When operated in FIPS mode. When obtained, installed, and initialized as assumed by the Crypto Officer role and specified in Section 9.1 of the provided Security Policy. This module contains the embedded module Network Security Services (NSS) Cryptographic Module validated to FIPS 140-2 under Cert. #815 (Approved algorithms retested on listed operating environment) operating in FIPS mode. Section 1 of the provided Security Policy specifies the precise RPM files containing this module. The integrity of the RPMs is automatically verified during the installation and the Crypto officer shall not install the RPM files if the RPM tool indicates an integrity error. Any deviation from the specified verification, installation and initialization procedures will result in a non FIPS 140-2 compliant module.
str140Version 140-2
_sp_ Security Policy   [pdf][html][txt]
_cert_ Certificate   [pdf][txt]
strPURL
strModuleType Software
strValidationDate 08/12/2010
intOverallLevel 1
memIndividualLevelNotes -Operational Environment: Tested as meeting Level 1 with Red Hat Enterprise Linux 5.4 (single-user mode)
strFIPSAlgorithms AES (Cert. #1224);
Triple-DES (Cert. #882);
SHS (Cert. #1125);
HMAC (Certs. #715 and #812);
RNG (Cert. #679);
DSA (Certs. #406 and #449)
strOtherAlgorithms DES, Triple-DES (CTR mode;
non-compliant)
strConfiguration Multi-chip standalone
memModuleDescription The Linux kernel Crypto API implemented in Red Hat Enterprise Linux 5 provides services operating inside the Linux kernel with various ciphers, message digests and an approved random number generator.
intModuleCount 1
memAdditionalNotes 05/22/12: Modified certificate caveat
strFirstValidtionDate 08/12/10 00:00:00
strLabName atsec
strValidationYear 2010