cert_id |
4589 |
3725 |
dgst |
886b73d4b098e551 |
8b088301586d31d3 |
heuristics/algorithms |
HMAC#C1305, AES#C1259, Triple-DES#C1257, AES#C1258, DSA#C1305, AES#C1266, KTS#C1257, HMAC#C1269, AES#C1270, AES#C1267, KTS#C1305, AES#C1264, SHS#C1269, AES#C1260, RSA#C1304, KTS#C1304, DRBG#C1269, DSA#C1304, DRBG#C1305, SHS#C1304, ECDSA#C1304, ECDSA#C1305, SHS#C1305, RSA#C1269, AES#C1265, DRBG#C1304, CVL#C1269, DSA#C1269, DRBG#C1265, ECDSA#C1269, AES#C1261, CVL#C1304, HMAC#C1304, KTS#C1269, CVL#C1305, RSA#C1305 |
HMAC#C1305, AES#C1259, Triple-DES#C1257, AES#C1258, DSA#C1305, AES#C1266, KTS#C1257, HMAC#C1269, AES#C1270, AES#C1267, AES#C1264, SHS#C1269, KTS#C1305, AES#C1260, RSA#C1304, KTS#C1304, DRBG#C1269, DSA#C1304, DRBG#C1305, SHS#C1304, ECDSA#C1304, ECDSA#C1305, SHS#C1305, RSA#C1269, AES#C1265, DRBG#C1304, CVL#C1269, DSA#C1269, DRBG#C1265, ECDSA#C1269, AES#C1261, CVL#C1304, HMAC#C1304, KTS#C1269, CVL#C1305, RSA#C1305 |
heuristics/cpe_matches |
{} |
{} |
heuristics/direct_transitive_cves |
{} |
{} |
heuristics/extracted_versions |
16.04 |
16.04 |
heuristics/indirect_transitive_cves |
{} |
{} |
heuristics/module_processed_references/directly_referenced_by |
{} |
2906, 2907 |
heuristics/module_processed_references/directly_referencing |
{} |
{} |
heuristics/module_processed_references/indirectly_referenced_by |
{} |
2906, 2907 |
heuristics/module_processed_references/indirectly_referencing |
{} |
{} |
heuristics/module_prunned_references |
{} |
{} |
heuristics/policy_processed_references/directly_referenced_by |
{} |
2906, 2907 |
heuristics/policy_processed_references/directly_referencing |
{} |
{} |
heuristics/policy_processed_references/indirectly_referenced_by |
{} |
2906, 2907 |
heuristics/policy_processed_references/indirectly_referencing |
{} |
{} |
heuristics/policy_prunned_references |
{} |
{} |
heuristics/related_cves |
{} |
{} |
heuristics/verified_cpe_matches |
{} |
{} |
pdf_data/keywords/fips_cert_id |
|
|
pdf_data/keywords/fips_security_level |
|
|
pdf_data/keywords/fips_certlike |
- Certlike:
- AES-128: 1
- AES-192: 1
- AES-256: 2
- HMAC SHA-1: 1
- HMAC-SHA-256: 2
- PKCS#1: 6
- SHA 1: 1
- SHA 224: 1
- SHA 256: 1
- SHA 384: 1
- SHA 512: 1
- SHA- 1: 1
- SHA-1: 15
- SHA-224: 15
- SHA-256: 26
- SHA-384: 14
- SHA-512: 9
- SHA-512 1024: 2
- SHA-512 112: 1
- SHA-512 2048: 2
- SHA-512 4096: 1
|
- Certlike:
- AES-128: 1
- AES-192: 1
- AES-256: 2
- HMAC SHA-1: 1
- HMAC-SHA-256: 2
- PKCS#1: 6
- SHA 1: 1
- SHA 224: 1
- SHA 256: 1
- SHA 384: 1
- SHA 512: 1
- SHA-1: 16
- SHA-224: 15
- SHA-256: 26
- SHA-384: 14
- SHA-512: 9
- SHA-512 1024: 2
- SHA-512 112: 1
- SHA-512 2048: 2
- SHA-512 4096: 1
- SHA1: 2
|
pdf_data/keywords/vendor |
|
|
pdf_data/keywords/eval_facility |
|
|
pdf_data/keywords/symmetric_crypto |
- AES_competition:
- AES:
- AES: 66
- AES-: 1
- AES-128: 1
- AES-192: 1
- AES-256: 2
- DES:
- 3DES:
- TDEA: 1
- TDES: 2
- Triple-DES: 34
- DES:
- constructions:
- MAC:
- CMAC: 10
- HMAC: 29
- HMAC-SHA-256: 1
|
- AES_competition:
- AES:
- AES: 64
- AES-: 2
- AES-128: 1
- AES-192: 1
- AES-256: 2
- DES:
- 3DES:
- TDEA: 1
- TDES: 2
- Triple-DES: 32
- DES:
- constructions:
- MAC:
- CMAC: 10
- HMAC: 27
- HMAC-SHA-256: 1
|
pdf_data/keywords/asymmetric_crypto |
|
|
pdf_data/keywords/pq_crypto |
|
|
pdf_data/keywords/hash_function |
- MD:
- SHA:
- SHA1:
- SHA2:
- SHA-224: 15
- SHA-256: 26
- SHA-384: 14
- SHA-512: 15
|
- MD:
- SHA:
- SHA1:
- SHA2:
- SHA-224: 15
- SHA-256: 26
- SHA-384: 14
- SHA-512: 15
|
pdf_data/keywords/crypto_scheme |
|
|
pdf_data/keywords/crypto_protocol |
- IKE:
- SSH:
- TLS:
- DTLS:
- SSL:
- TLS:
- TLS: 59
- TLS v1.0: 2
- TLSv1.0: 1
- TLSv1.2: 2
|
- IKE:
- SSH:
- TLS:
- DTLS:
- SSL:
- TLS:
- TLS: 60
- TLS v1.0: 2
- TLSv1.0: 1
- TLSv1.2: 2
|
pdf_data/keywords/randomness |
|
|
pdf_data/keywords/cipher_mode |
- CBC:
- CCM:
- CFB:
- CTR:
- ECB:
- GCM:
- OFB:
- XTS:
|
- CBC:
- CCM:
- CFB:
- CTR:
- ECB:
- GCM:
- OFB:
- XTS:
|
pdf_data/keywords/ecc_curve |
- NIST:
- B-163: 2
- B-233: 2
- B-283: 2
- B-409: 2
- B-571: 2
- K-163: 2
- K-233: 2
- K-283: 2
- K-409: 2
- K-571: 2
- P-192: 4
- P-224: 6
- P-256: 8
- P-384: 6
- P-521: 6
|
- NIST:
- B-163: 2
- B-233: 2
- B-283: 3
- B-409: 3
- B-571: 3
- K-163: 2
- K-233: 2
- K-283: 3
- K-409: 3
- K-571: 3
- P-192: 4
- P-224: 14
- P-256: 20
- P-384: 12
- P-521: 14
|
pdf_data/keywords/crypto_engine |
|
|
pdf_data/keywords/tls_cipher_suite |
- TLS:
- TLS_PSK_WITH_3DES_EDE_CBC_SHA: 1
- TLS_PSK_WITH_AES_128_CBC_SHA: 1
- TLS_PSK_WITH_AES_256_CBC_SHA: 1
- TLS_RSA_WITH_3DES_EDE_CBC_SHA: 1
- TLS_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_RSA_WITH_AES_256_GCM_SHA384: 1
|
- TLS:
- TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA: 1
- TLS_DHE_DSS_WITH_AES_128_CBC_SHA: 1
- TLS_DHE_DSS_WITH_AES_128_CBC_SHA256: 1
- TLS_DHE_DSS_WITH_AES_128_GCM_SHA256: 1
- TLS_DHE_DSS_WITH_AES_256_CBC_SHA: 1
- TLS_DHE_DSS_WITH_AES_256_CBC_SHA256: 1
- TLS_DHE_DSS_WITH_AES_256_GCM_SHA384: 1
- TLS_DHE_RSA_WITH_3DES_EDE_CBC_SHA: 1
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_DHE_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_DHE_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_DHE_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_DHE_RSA_WITH_AES_256_GCM_SHA384: 1
- TLS_DH_DSS_WITH_AES_128_CBC_SHA: 1
- TLS_DH_DSS_WITH_AES_128_CBC_SHA256: 1
- TLS_DH_DSS_WITH_AES_128_GCM_SHA256: 1
- TLS_DH_DSS_WITH_AES_256_CBC_SHA: 1
- TLS_DH_DSS_WITH_AES_256_CBC_SHA256: 1
- TLS_DH_DSS_WITH_AES_256_GCM_SHA384: 1
- TLS_DH_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_DH_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_DH_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_DH_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_DH_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_DH_RSA_WITH_AES_256_GCM_SHA384: 1
- TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA: 1
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA: 1
- TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256: 1
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA: 1
- TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384: 1
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384: 1
- TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA: 1
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384: 1
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384: 1
- TLS_PSK_WITH_3DES_EDE_CBC_SHA: 1
- TLS_PSK_WITH_AES_128_CBC_SHA: 1
- TLS_PSK_WITH_AES_256_CBC_SHA: 1
- TLS_RSA_WITH_3DES_EDE_CBC_SHA: 1
- TLS_RSA_WITH_AES_128_CBC_SHA: 1
- TLS_RSA_WITH_AES_128_CBC_SHA256: 1
- TLS_RSA_WITH_AES_128_GCM_SHA256: 1
- TLS_RSA_WITH_AES_256_CBC_SHA: 1
- TLS_RSA_WITH_AES_256_CBC_SHA256: 1
- TLS_RSA_WITH_AES_256_GCM_SHA384: 1
|
pdf_data/keywords/crypto_library |
|
|
pdf_data/keywords/vulnerability |
|
|
pdf_data/keywords/side_channel_analysis |
- SCA:
- Timing Attack: 1
- Timing Attacks: 2
- timing attacks: 1
|
- SCA:
- Timing Attack: 1
- Timing Attacks: 2
- timing attacks: 1
|
pdf_data/keywords/device_model |
|
|
pdf_data/keywords/tee_name |
|
|
pdf_data/keywords/os_name |
|
|
pdf_data/keywords/cplc_data |
|
|
pdf_data/keywords/ic_data_group |
|
|
pdf_data/keywords/standard_id |
- FIPS:
- FIPS 140-2: 53
- FIPS 186-4: 1
- FIPS 198-1: 2
- FIPS PUB 140-2: 2
- FIPS140-2: 1
- FIPS180-4: 5
- FIPS186-2: 1
- FIPS186-4: 5
- FIPS197: 2
- FIPS198-1: 2
- NIST:
- PKCS:
- RFC:
- RFC2246: 6
- RFC3268: 3
- RFC4253: 1
- RFC4279: 7
- RFC4346: 3
- RFC4492: 1
- RFC5116: 3
- RFC5246: 6
- RFC5288: 4
- RFC5487: 9
- RFC5489: 1
- RFC6655: 7
- RFC7251: 1
- RFC7296: 1
|
- FIPS:
- FIPS 140-2: 58
- FIPS 198-1: 1
- FIPS PUB 140-2: 2
- FIPS140-2: 1
- FIPS180-4: 4
- FIPS186-2: 1
- FIPS186-4: 6
- FIPS197: 2
- FIPS198-1: 2
- NIST:
- PKCS:
- RFC:
- RFC2246: 7
- RFC3268: 13
- RFC4253: 1
- RFC4279: 10
- RFC4346: 3
- RFC4492: 10
- RFC5116: 5
- RFC5246: 14
- RFC5288: 14
- RFC5289: 8
- RFC5487: 13
- RFC5489: 6
- RFC6655: 13
- RFC7251: 5
- RFC7296: 1
|
pdf_data/keywords/javacard_version |
|
|
pdf_data/keywords/javacard_api_const |
|
|
pdf_data/keywords/javacard_packages |
|
|
pdf_data/keywords/certification_process |
|
|
pdf_data/policy_metadata |
- /CreationDate: D:20230905211647Z00'00'
- /Creator: Word
- /ModDate: D:20230905211647Z00'00'
- /Producer: macOS Version 13.3.1 (a) (Build 22E772610a) Quartz PDFContext
- /Title: Microsoft Word - UbuntuOpenSSL-SecurityPolicy.doc
- pdf_file_size_bytes: 824593
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 43
|
- /AAPL:Keywords: []
- /CreationDate: D:20200925205345Z00'00'
- /Creator: Word
- /Keywords:
- /ModDate: D:20200925205345Z00'00'
- /Producer: macOS Version 10.14.6 (Build 18G5033) Quartz PDFContext
- /Title: Microsoft Word - UbuntuOpenSSL-SecurityPolicy.doc
- pdf_file_size_bytes: 855144
- pdf_hyperlinks: {}
- pdf_is_encrypted: False
- pdf_number_of_pages: 48
|
state/module_download_ok |
True |
True |
state/module_extract_ok |
True |
True |
state/policy_convert_garbage |
False |
False |
state/policy_convert_ok |
True |
True |
state/policy_download_ok |
True |
True |
state/policy_extract_ok |
True |
True |
state/policy_pdf_hash |
Different |
Different |
state/policy_txt_hash |
Different |
Different |
web_data/caveat |
When operated in FIPS mode and installed, initialized and configured as specified in Sections 9.1 of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy |
When operated in FIPS mode and installed, initialized and configured as specified in Sections 9.1 of the Security Policy. The module generates cryptographic keys whose strengths are modified by available entropy |
web_data/certificate_pdf_url |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/September 2023_101023_1100 signed (2).pdf |
https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/October 2020_021120_0702_signed.pdf |
web_data/date_sunset |
08.10.2025 |
|
web_data/description |
OpenSSL is an open-source library of various cryptographic algorithms written mainly in C. |
OpenSSL is an open-source library of various cryptographic algorithms written mainly in C. |
web_data/embodiment |
Multi-Chip Stand Alone |
Multi-Chip Stand Alone |
web_data/exceptions |
Physical Security: N/A |
Physical Security: N/A |
web_data/fw_versions |
[] |
[] |
web_data/historical_reason |
|
SP 800-56Arev3 transition - replaced by certificate #4589 |
web_data/hw_versions |
[] |
[] |
web_data/level |
1 |
1 |
web_data/mentioned_certs |
|
|
web_data/module_name |
Ubuntu 16.04 OpenSSL Cryptographic Module |
Ubuntu 16.04 OpenSSL Cryptographic Module |
web_data/module_type |
Software |
Software |
web_data/revoked_link |
None |
None |
web_data/revoked_reason |
None |
None |
web_data/standard |
FIPS 140-2 |
FIPS 140-2 |
web_data/status |
active |
historical |
web_data/sw_versions |
2.0 |
2.0 |
web_data/tested_conf |
Ubuntu 16.04 LTS 64-bit running on Supermicro SYS-5018R-WR with Intel Xeon E5 with PAA, Ubuntu 16.04 LTS 64-bit running on Supermicro SYS-5018R-WR with Intel Xeon E5 without PAA (single-user mode) |
Ubuntu 16.04 LTS 64-bit running on Supermicro SYS-5018R-WR with Intel Xeon E5 with PAA, Ubuntu 16.04 LTS 64-bit running on Supermicro SYS-5018R-WR with Intel Xeon E5 without PAA (single-user mode) |
web_data/validation_history |
- date: 08.09.2023
- lab: ATSEC INFORMATION SECURITY CORP
- validation_type: Initial
|
- date: 09.10.2020
- lab: ATSEC INFORMATION SECURITY CORP
- validation_type: Initial
|
web_data/vendor |
Canonical Ltd. |
Canonical Ltd. |
web_data/vendor_url |
http://www.canonical.com |
http://www.canonical.com |