This page was not yet optimized for use on mobile
devices.
Ubuntu 20.04 Libgcrypt Cryptographic Module
Certificate #3902
Webpage information
Security policy
Symmetric Algorithms
AES, AES-256, AES-128, Twofish, Serpent, CAST5, RC2, DES, Triple-DES, TDEA, ChaCha20, Salsa20, Salsa20/12, IDEA, Blowfish, Camellia, SEED, HMAC, HMAC-SHA-224, HMAC-SHA-384, HMAC-SHA-256, CMACAsymmetric Algorithms
ECDSA, ECC, DSAHash functions
SHA-1, SHA1, SHA-224, SHA-384, SHA-512, SHA-256, SHA3-224, SHA3-256, SHA3-384, SHA3-512, SHA-3, MD4, MD5, RIPEMD, PBKDF, PBKDF2Schemes
MAC, Key AgreementProtocols
TLS, DTLSRandomness
PRNG, DRBG, RNGLibraries
libgcryptElliptic Curves
P-224, P-256, P-384, P-521Block cipher modes
ECB, CBC, CTR, CFB, OFB, GCM, CCM, XTSSecurity level
Level 1, level 1Side-channel analysis
Timing Attacks, timing attacksStandards
FIPS 140-2, FIPS PUB 140-2, FIPS197, FIPS186-4, FIPS198-1, FIPS180-4, FIPS202, FIPS 186-4, FIPS140-2, SP 800-132, SP 800-57, PKCS#1, RFC 4880, RFC2246, RFC3268, RFC4279, RFC4346, RFC4492, RFC5116, RFC5246, RFC5288, RFC5487, RFC5489, RFC6655, RFC7251File metadata
| Title | Microsoft Word - Ubuntu-Libgcrypt-SecurityPolicy.doc |
|---|---|
| Creation date | D:20210826212014Z00'00' |
| Modification date | D:20210826212014Z00'00' |
| Pages | 43 |
| Creator | Word |
| Producer | macOS Version 10.15.7 (Build 19H15) Quartz PDFContext |
Heuristics
No heuristics are available for this certificate.
References
No references are available for this certificate.
Updates Feed
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate data changed.
-
The certificate was first processed.
Raw data
{
"_type": "sec_certs.sample.fips.FIPSCertificate",
"cert_id": 3902,
"dgst": "80082211411078ac",
"heuristics": {
"_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
"algorithms": {
"_type": "Set",
"elements": [
"AES#A544",
"SHA-3#A1867",
"AES#A541",
"HMAC#A540",
"KTS#A540",
"DRBG#A541",
"DSA#A541",
"DSA#A1867",
"DRBG#A543",
"DRBG#A540",
"RSA#A540",
"SHS#A540",
"SHS#A543",
"HMAC#A543",
"DSA#A542",
"HMAC#A1867",
"AES#A543",
"SHA-3#A540",
"ECDSA#A544",
"ECDSA#A542",
"KTS#A1867",
"ECDSA#A541",
"HMAC#A544",
"RSA#A1867",
"AES#A540",
"ECDSA#A543",
"SHA-3#A541",
"AES#A1867",
"RSA#A544",
"SHS#A544",
"Triple-DES#A541",
"DRBG#A1867",
"KTS#A543",
"ECDSA#A1867",
"SHA-3#A542",
"DRBG#A544",
"DSA#A540",
"KTS#A541",
"RSA#A541",
"RSA#A543",
"SHS#A545",
"SHS#A541",
"DSA#A544",
"DSA#A543",
"DRBG#A542",
"ECDSA#A540",
"HMAC#A545",
"Triple-DES#A1867",
"SHS#A1867",
"KTS#A544",
"RSA#A542",
"HMAC#A541"
]
},
"cpe_matches": null,
"direct_transitive_cves": null,
"extracted_versions": {
"_type": "Set",
"elements": [
"20.04"
]
},
"indirect_transitive_cves": null,
"module_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"module_prunned_references": {
"_type": "Set",
"elements": []
},
"policy_processed_references": {
"_type": "sec_certs.sample.certificate.References",
"directly_referenced_by": null,
"directly_referencing": null,
"indirectly_referenced_by": null,
"indirectly_referencing": null
},
"policy_prunned_references": {
"_type": "Set",
"elements": []
},
"related_cves": null,
"verified_cpe_matches": null
},
"pdf_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
"keywords": {
"asymmetric_crypto": {
"ECC": {
"ECC": {
"ECC": 3
},
"ECDSA": {
"ECDSA": 18
}
},
"FF": {
"DSA": {
"DSA": 21
}
}
},
"certification_process": {},
"cipher_mode": {
"CBC": {
"CBC": 6
},
"CCM": {
"CCM": 6
},
"CFB": {
"CFB": 3
},
"CTR": {
"CTR": 6
},
"ECB": {
"ECB": 9
},
"GCM": {
"GCM": 3
},
"OFB": {
"OFB": 6
},
"XTS": {
"XTS": 7
}
},
"cplc_data": {},
"crypto_engine": {},
"crypto_library": {
"libgcrypt": {
"libgcrypt": 8
}
},
"crypto_protocol": {
"TLS": {
"DTLS": {
"DTLS": 1
},
"TLS": {
"TLS": 13
}
}
},
"crypto_scheme": {
"KA": {
"Key Agreement": 1
},
"MAC": {
"MAC": 7
}
},
"device_model": {},
"ecc_curve": {
"NIST": {
"P-224": 4,
"P-256": 6,
"P-384": 4,
"P-521": 4
}
},
"eval_facility": {
"atsec": {
"atsec": 45
}
},
"fips_cert_id": {},
"fips_certlike": {
"Certlike": {
"AES-128": 2,
"AES-128/192/256": 2,
"AES-256 and 20": 1,
"HMAC SHA-1": 2,
"HMAC-SHA-1": 4,
"HMAC-SHA-256": 8,
"HMAC-SHA-512": 4,
"HMAC-SHA256": 2,
"PKCS#1": 6,
"SHA- 256": 1,
"SHA- 512": 2,
"SHA-1": 14,
"SHA-224": 22,
"SHA-256": 18,
"SHA-3": 3,
"SHA-384": 8,
"SHA-512": 4,
"SHA-512 112": 2,
"SHA1": 1,
"SHA3-224": 4,
"SHA3-256": 4,
"SHA3-384": 4,
"SHA3-512": 4
}
},
"fips_security_level": {
"Level": {
"Level 1": 3,
"level 1": 2
}
},
"hash_function": {
"MD": {
"MD4": {
"MD4": 2
},
"MD5": {
"MD5": 2
}
},
"PBKDF": {
"PBKDF": 10,
"PBKDF2": 1
},
"RIPEMD": {
"RIPEMD": 2
},
"SHA": {
"SHA1": {
"SHA-1": 14,
"SHA1": 1
},
"SHA2": {
"SHA-224": 26,
"SHA-256": 14,
"SHA-384": 12,
"SHA-512": 2
},
"SHA3": {
"SHA-3": 3,
"SHA3-224": 4,
"SHA3-256": 4,
"SHA3-384": 4,
"SHA3-512": 4
}
}
},
"ic_data_group": {},
"javacard_api_const": {},
"javacard_packages": {},
"javacard_version": {},
"os_name": {},
"pq_crypto": {},
"randomness": {
"PRNG": {
"DRBG": 28,
"PRNG": 1
},
"RNG": {
"RNG": 1
}
},
"side_channel_analysis": {
"SCA": {
"Timing Attacks": 2,
"timing attacks": 1
}
},
"standard_id": {
"FIPS": {
"FIPS 140-2": 53,
"FIPS 186-4": 1,
"FIPS PUB 140-2": 2,
"FIPS140-2": 1,
"FIPS180-4": 3,
"FIPS186-4": 8,
"FIPS197": 3,
"FIPS198-1": 3,
"FIPS202": 3
},
"NIST": {
"SP 800-132": 5,
"SP 800-57": 1
},
"PKCS": {
"PKCS#1": 3
},
"RFC": {
"RFC 4880": 2,
"RFC2246": 1,
"RFC3268": 1,
"RFC4279": 1,
"RFC4346": 1,
"RFC4492": 1,
"RFC5116": 1,
"RFC5246": 1,
"RFC5288": 1,
"RFC5487": 1,
"RFC5489": 1,
"RFC6655": 1,
"RFC7251": 1
}
},
"symmetric_crypto": {
"AES_competition": {
"AES": {
"AES": 30,
"AES-128": 2,
"AES-256": 1
},
"CAST": {
"CAST5": 2
},
"RC": {
"RC2": 2
},
"Serpent": {
"Serpent": 2
},
"Twofish": {
"Twofish": 2
}
},
"DES": {
"3DES": {
"TDEA": 1,
"Triple-DES": 19
},
"DES": {
"DES": 10
}
},
"constructions": {
"MAC": {
"CMAC": 11,
"HMAC": 17,
"HMAC-SHA-224": 2,
"HMAC-SHA-256": 2,
"HMAC-SHA-384": 2
}
},
"djb": {
"ChaCha": {
"ChaCha20": 2
},
"Salsa": {
"Salsa20": 2,
"Salsa20/12": 2
}
},
"miscellaneous": {
"Blowfish": {
"Blowfish": 2
},
"Camellia": {
"Camellia": 2
},
"IDEA": {
"IDEA": 2
},
"SEED": {
"SEED": 2
}
}
},
"tee_name": {},
"tls_cipher_suite": {},
"vendor": {},
"vulnerability": {}
},
"policy_metadata": {
"/CreationDate": "D:20210826212014Z00\u002700\u0027",
"/Creator": "Word",
"/ModDate": "D:20210826212014Z00\u002700\u0027",
"/Producer": "macOS Version 10.15.7 (Build 19H15) Quartz PDFContext",
"/Title": "Microsoft Word - Ubuntu-Libgcrypt-SecurityPolicy.doc",
"pdf_file_size_bytes": 657736,
"pdf_hyperlinks": {
"_type": "Set",
"elements": []
},
"pdf_is_encrypted": false,
"pdf_number_of_pages": 43
}
},
"state": {
"_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
"module_download_ok": true,
"module_extract_ok": true,
"policy_convert_ok": true,
"policy_download_ok": true,
"policy_extract_ok": true,
"policy_json_hash": null,
"policy_pdf_hash": "9a26643ed0f551e3c1d948f7bf3fea75f64710500c62fb317c3271423e7b44f6",
"policy_txt_hash": "9252c4a9f789f28a3a311fab7566ddcc9ccf2c15ca4f27fe3c6ec4605a8f736f"
},
"web_data": {
"_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
"caveat": "When operated in FIPS mode and installed, initialized and configured as specified in Section 9.1 of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy",
"certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/April 2021_030521_0757_signed.pdf",
"date_sunset": "2026-04-19",
"description": "The libgcrypt library implementation providing cryptographic services to Linux user space software components in general and to GnuPG in particular.",
"embodiment": "Multi-Chip Stand Alone",
"exceptions": [
"Physical Security: N/A"
],
"fw_versions": null,
"historical_reason": null,
"hw_versions": null,
"level": 1,
"mentioned_certs": {},
"module_name": "Ubuntu 20.04 Libgcrypt Cryptographic Module",
"module_type": "Software",
"revoked_link": null,
"revoked_reason": null,
"standard": "FIPS 140-2",
"status": "active",
"sw_versions": "3.0",
"tested_conf": [
"Ubuntu 20.04 LTS 64-bit running on IBM z15(TM) with z15(TM) without PAI [2] (single-user mode)",
"Ubuntu 20.04 LTS 64-bit running on Supermicro SYS-1019P-WTR with Intel Xeon(R) Gold Skylake without PAA [1][2]",
"Ubuntu 20.04 LTS 64-bit running on Supermicro SYS-1019P-WTR with Intel(R) Xeon(R) Gold Skylake with PAA [1][2]"
],
"validation_history": [
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2021-04-20",
"lab": "atsec information security corporation",
"validation_type": "Initial"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2021-10-18",
"lab": "atsec information security corporation",
"validation_type": "Update"
},
{
"_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
"date": "2022-04-11",
"lab": "atsec information security corporation",
"validation_type": "Update"
}
],
"vendor": "Canonical Ltd.",
"vendor_url": "http://www.canonical.com"
}
}