OpenSSL FIPS Object Module

Certificate #733

Webpage information

Status historical
Historical reason Moved to historical list due to sunsetting
Validation dates 06.02.2007 , 30.11.2007
Standard FIPS 140-2
Security level 1
Type Software
Embodiment Multi-Chip Stand Alone
Caveat When built, installed, protected and initialized as assumed by the Crypto Officer role and specified in the provided Security Policy. Appendix B of the provided Security Policy specifies the complete set of source files of this module. There shall be no additions, deletions or alterations of this set as used during module build. All source files, including the specified OpenSSL distribution tar file, shall be verified as specified in Appendix B of the provided Security Policy. Installation, protection, and initialization shall be completed as specified in Appendix C of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a FIPS 140-2 non-compliant module.
Description The OpenSSL FIPS Object Module is a cryptographic library that can be downloaded from http://www.openssl.org/source/
Tested configurations
  • SuSE Linux Version 9.0 (gcc Compiler Version 3.3.1), and HPUX Version 11i (gcc Compiler Version 3.4.2) (in single user mode)
Vendor Open Source Software Institute
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, DES, 3DES, HMAC, HMAC-SHA-224, HMAC-SHA-384
Asymmetric Algorithms
DH, DSA
Hash functions
SHA-1, SHA1, SHA-224, SHA-384, SHA224, SHA256, SHA384, SHA512, SHA-2
Protocols
SSH, SSL, TLS
Randomness
RNG
Libraries
OpenSSL
Block cipher modes
ECB, CBC, CFB, OFB

Security level
level 1

Standards
FIPS 140-2, FIPS 140, FIPS 197, FIPS 198, FIPS 186-2, FIPS 46-3, FIPS 180-2, FIPS PUB 197, FIPS PUB 81, FIPS 171, PKCS #1, RFC 2246

File metadata

Title
Author smarques
Creation date D:20070129123503-05'00'
Pages 45
Creator Writer
Producer OpenOffice.org 2.0

Heuristics

No heuristics are available for this certificate.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 733,
  "dgst": "367461e6dd07bdb5",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "Triple-DES#451",
        "AES#420",
        "HMAC#194",
        "RSA#177",
        "SHS#490",
        "DSA#175"
      ]
    },
    "cpe_matches": null,
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "-"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": null,
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "FF": {
          "DH": {
            "DH": 5
          },
          "DSA": {
            "DSA": 9
          }
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "CFB": {
          "CFB": 1
        },
        "ECB": {
          "ECB": 4
        },
        "OFB": {
          "OFB": 3
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {
        "OpenSSL": {
          "OpenSSL": 64
        }
      },
      "crypto_protocol": {
        "SSH": {
          "SSH": 2
        },
        "TLS": {
          "SSL": {
            "SSL": 1
          },
          "TLS": {
            "TLS": 2
          }
        }
      },
      "crypto_scheme": {},
      "device_model": {},
      "ecc_curve": {},
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1
        }
      },
      "fips_certlike": {
        "Certlike": {
          "DES1": 1,
          "DES; 5": 1,
          "HMAC SHA1": 1,
          "HMAC-SHA-1": 4,
          "HMAC-SHA-256": 2,
          "HMAC-SHA-512": 2,
          "PKCS #1": 2,
          "SHA-1": 2,
          "SHA-2": 1,
          "SHA-256": 1,
          "SHA-512": 1,
          "SHA1": 1,
          "SHA224": 1,
          "SHA256": 1,
          "SHA384": 1,
          "SHA512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "level 1": 2
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 2,
            "SHA1": 1
          },
          "SHA2": {
            "SHA-2": 1,
            "SHA-224": 1,
            "SHA-384": 1,
            "SHA224": 1,
            "SHA256": 1,
            "SHA384": 1,
            "SHA512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "RNG": {
          "RNG": 5
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140": 3,
          "FIPS 140-2": 1,
          "FIPS 171": 1,
          "FIPS 180-2": 1,
          "FIPS 186-2": 1,
          "FIPS 197": 2,
          "FIPS 198": 2,
          "FIPS 46-3": 2,
          "FIPS PUB 197": 1,
          "FIPS PUB 81": 1
        },
        "PKCS": {
          "PKCS #1": 1
        },
        "RFC": {
          "RFC 2246": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 8
          }
        },
        "DES": {
          "3DES": {
            "3DES": 7
          },
          "DES": {
            "DES": 16
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 5,
            "HMAC-SHA-224": 1,
            "HMAC-SHA-384": 1
          }
        }
      },
      "tee_name": {},
      "tls_cipher_suite": {},
      "vendor": {},
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "smarques",
      "/CreationDate": "D:20070129123503-05\u002700\u0027",
      "/Creator": "Writer",
      "/Producer": "OpenOffice.org 2.0",
      "/Title": " ",
      "pdf_file_size_bytes": 1395381,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "mailto:[email protected]",
          "http://hp.com/",
          "http://csrc.nist.gov/cryptval/140-1/1401val2006.htm",
          "mailto:[email protected]",
          "http://csrc.nist.gov/cryptval/",
          "http://www.openssl.org/support/",
          "http://csrc.nist.gov/cryptval/aes/AESAVS.pdf",
          "http://ww.tricare.osd.mil/dmlss/",
          "http://csrc.nist.gov/cryptval/140-1/FIPS1402IG.pdf",
          "http://www.cvshome.org/",
          "http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf",
          "http://oss-institute.org/",
          "http://www.drh-consultancy.co.uk/",
          "http://www.domusitsl.com/",
          "http://www.ietf.org/rfc/rfc2246.txt",
          "mailto:[email protected]",
          "http://csrc.nist.gov/publications/fips/fips46-3/fips46-3.pdf",
          "http://cvs.openssl.org/",
          "http://www.openssl.org/source/OpenSSL-fips-1.0.tar.gz",
          "http://openssl.org/",
          "http://csrc.nist.gov/publications/nistpubs/800-20/800-20.pdf",
          "http://csrc.nist.gov/cryptval/140-1/fips1402DTR.pdf",
          "mailto:[email protected]",
          "http://csrc.nist.gov/publications/fips/fips197/fips-197.pdf",
          "mailto:[email protected]",
          "http://www.openssl.org/",
          "http://csrc.nist.gov/publications/fips/fips171/fips171.txt",
          "mailto:[email protected]",
          "file:///mnt/sd/ossi/Released/www.openssl.org",
          "http://csrc.nist.gov/publications/nistpubs/800-17/800-17.pdf",
          "mailto:[email protected]",
          "http://www.oss-institute.org/",
          "http://www.cacr.math.uwaterloo.ca/hac/about/chap5.pdf",
          "http://www.itl.nist.gov/fipspubs/fip81.htm",
          "http://www.itl.nist.gov/fipspubs/fip180-1.htm",
          "mailto:[email protected]",
          "mailto:[email protected]"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 45
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "3a64fe6d4e5e4e248ce95ac499743947ea73d2509bfac7b446fe9543cf5d1763",
    "policy_txt_hash": "3e84d8485ca47956e1abe1e84986712b815b61adc2352459a7f1c0cd6cb799b2"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "When built, installed, protected and initialized as assumed by the Crypto Officer role and specified in the provided Security Policy. Appendix B of the provided Security Policy specifies the complete set of source files of this module. There shall be no additions, deletions or alterations of this set as used during module build. All source files, including the specified OpenSSL distribution tar file, shall be verified as specified in Appendix B of the provided Security Policy. Installation, protection, and initialization shall be completed as specified in Appendix C of the provided Security Policy. Any deviation from specified verification, protection, installation and initialization procedures will result in a FIPS 140-2 non-compliant module.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/140crt733.pdf",
    "date_sunset": null,
    "description": "The OpenSSL FIPS Object Module is a cryptographic library that can be downloaded from http://www.openssl.org/source/",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": null,
    "fw_versions": null,
    "historical_reason": "Moved to historical list due to sunsetting",
    "hw_versions": null,
    "level": 1,
    "mentioned_certs": {},
    "module_name": "OpenSSL FIPS Object Module",
    "module_type": "Software",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "historical",
    "sw_versions": null,
    "tested_conf": [
      "SuSE Linux Version 9.0 (gcc Compiler Version 3.3.1), and HPUX Version 11i (gcc Compiler Version 3.4.2) (in single user mode)"
    ],
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2007-02-06",
        "lab": "DOMUS",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2007-11-30",
        "lab": "",
        "validation_type": "Update"
      }
    ],
    "vendor": "Open Source Software Institute",
    "vendor_url": "http://www.oss-institute.org"
  }
}