FIPS 140-2 Non-Proprietary Security Policy
Total Page:16
File Type:pdf, Size:1020Kb
Red Hat Enterprise Linux 6.6 OpenSSL Module v3.0 and Red Hat Enterprise Linux 7.1 OpenSSL Module v4.0 FIPS 140-2 Non-proprietary Security Policy version 2.18 Last Update: 2016-12-20 Red Hat Enterprise Linux 6.6 & 7.1 OpenSSL Modules FIPS 140-2 Non-proprietary Security Policy Table of Contents 1.Cryptographic Modules' Specifications................................................................................................................3 1.1.Description of the Modules.......................................................................................................................... 3 1.2.Description of the Approved Modes.............................................................................................................4 1.3.Cryptographic Boundary............................................................................................................................14 1.3.1.Hardware Block Diagram...................................................................................................................15 1.3.2.Software Block Diagram....................................................................................................................16 2.Cryptographic Modules' Ports and Interfaces....................................................................................................17 3.Roles, Services and Authentication...................................................................................................................18 3.1.Roles......................................................................................................................................................... 18 3.2.Services..................................................................................................................................................... 18 3.3.Operator Authentication.............................................................................................................................19 3.4.Mechanism and Strength of Authentication................................................................................................19 4.Physical Security............................................................................................................................................... 20 5.Operational Environment................................................................................................................................... 21 5.1.Policy......................................................................................................................................................... 21 6.Cryptographic Key Management....................................................................................................................... 22 6.1.Random Number Generation.....................................................................................................................22 6.2.Key/Critical Security Parameter (CSP) Authorized Access and Use by Role and Service/Function..........22 6.3.Key/CSP Storage....................................................................................................................................... 22 6.4.Key/CSP Zeroization.................................................................................................................................. 22 7.Electromagnetic Interference/Electromagnetic Compatibility (EMI/EMC)..........................................................23 8.Self-Tests........................................................................................................................................................... 24 8.1.Power-Up Tests......................................................................................................................................... 24 8.2.Conditional Tests....................................................................................................................................... 24 9.Guidance........................................................................................................................................................... 26 9.1.Crypto Officer Guidance............................................................................................................................26 9.2.User Guidance........................................................................................................................................... 27 9.2.1.TLS and Diffie-Hellman......................................................................................................................27 9.2.2.AES XTS Guidance........................................................................................................................... 28 9.2.3.Random Number Generator..............................................................................................................28 9.2.4.AES GCM IV...................................................................................................................................... 28 9.2.5.RSA and DSA Keys...........................................................................................................................28 9.3.Handling Self-Test Errors...........................................................................................................................28 10.Mitigation of Other Attacks...............................................................................................................................30 11.Glossary and Abbreviations.............................................................................................................................31 12.References...................................................................................................................................................... 32 Appendix A: Code for Invoking the OpenSSL Module...........................................................................................33 © 2016 Red Hat/atsec information security. This document can be reproduced and distributed only whole and intact, including this copyright notice. 2 of 33 Red Hat Enterprise Linux 6.6 & 7.1 OpenSSL Modules FIPS 140-2 Non-proprietary Security Policy 1. Cryptographic Modules' Specifications This document is the non-proprietary Security Policy for both the Red Hat Enterprise Linux 6.6 OpenSSL Module v3.0 and the Red Hat Enterprise Linux 7.1 OpenSSL Module v4.0, and was prepared as part of the requirements for conformance to Federal Information Processing Standard (FIPS) 140-2, Level 1. The reason for having a single Security Policy document encompassing two cryptographic Modules is to still keep the Red Hat Enterprise Linux 6.6 OpenSSL Module listed on CMVP website, and not be superseded by the Red Hat Enterprise Linux 7.1 OpenSSL Module: the Red Hat Enterprise Linux 7.1 OpenSSL Module would otherwise replace the Red Hat Enterprise Linux 6.6 OpenSSL Module, instead of being a stand-alone re-validation. The difference between the Red Hat Enterprise Linux 6.6 OpenSSL Module and the Red Hat Enterprise Linux 7.1 OpenSSL Module is the new test platforms in Table 3, which enables some implementation to be CAVS tested and used in FIPS mode. 1.1. Description of the Modules The Red Hat Enterprise Linux 6.6 OpenSSL Module and the Red Hat Enterprise Linux 7.1 OpenSSL Module (hereafter referred to as the “Modules”) are software libraries supporting FIPS 140-2 Approved cryptographic algorithms. The code base of the Modules is formed in a combination of standard OpenSSL shared library, OpenSSL FIPS Object Module and development work by Red Hat. The Modules provide a C language application program interface (API) for use by other processes that require cryptographic functionality. For the purpose of the FIPS 140-2 validation, their embodiment type is defined as multi-chip standalone. The following table shows the security level for each of the eleven sections of the validation. Security Component FIPS 140-2 Security Level Cryptographic Module Specification 1 Cryptographic Module Ports and Interfaces 1 Roles, Services and Authentication 1 Finite State Model 1 Physical Security N/A Operational Environment 1 Cryptographic Key Management 1 EMI/EMC 1 Self-Tests 1 Design Assurance 1 Mitigation of Other Attacks 1 Table 1: Security Level of the Modules The Red Hat Enterprise Linux 6.6 OpenSSL Module has been tested on the following multi-chip standalone platforms: © 2016 Red Hat/atsec information security. This document can be reproduced and distributed only whole and intact, including this copyright notice. 3 of 33 Red Hat Enterprise Linux 6.6 & 7.1 OpenSSL Modules FIPS 140-2 Non-proprietary Security Policy Manufacturer Model O/S & Ver. HP (Hewlett- ProLiant DL380p Gen8 Red Hat Enterprise Linux 6.6 (single Packard) operator) IBM (International System x3500 M4 Red Hat Enterprise Linux 6.6 (single Business Machines) operator) Table 2: Test Platforms for the Red Hat Enterprise Linux 6.6 OpenSSL Module The Red Hat Enterprise Linux 7.1 OpenSSL Module has been tested on the following multi-chip standalone platforms: Manufacturer Model O/S & Ver. HP (Hewlett-Packard) ProLiant DL380 Gen8 Red Hat Enterprise Linux 7.1 (single operator) IBM (International POWER8 Little Endian 8286- Red Hat Enterprise Linux 7.1 (single operator) Business Machines) 41A IBM (International z13 Red Hat Enterprise Linux 7.1 (single operator) Business Machines) Table 3: Tested Platforms for the Red Hat Enterprise Linux 7.1 OpenSSL Module For the HP ProLiant DL380 Gen8 test platform, the Modules have been tested for the following