7.1 FIPS Validated Cryptographic Modules for Oracle Linux

Oracle has completed FIPS 140-2 Level 1 certifications for cryptographic components that reside within Oracle Linux 6 Update 9.

Completed certifications include those that are listed in the following table.

Cryptographic Module Name

Package Versions

Certificate Number

Oracle Linux OpenSSL Cryptographic Module

openssl-1.0.1e-57.0.1.el6.x86_64

3017

Oracle Linux 6 OpenSSH Client Cryptographic Module

openssh-clients-5.3p1-122.el6.x86_64

3030

Oracle Linux 6 OpenSSH Server Cryptographic Module

openssh-server-5.3p1-122.el6.x86_64

3031

Oracle Linux 6 NSS Cryptographic Module

nss-softokn-3.14.3-23.3.0.1.el6_8.x86_64

3111

Oracle Linux 6 Libreswan Cryptographic Module

libreswan-3.15-7.5.0.1.el6_9.x86_64

3170

Oracle Linux 6 Unbreakable Enterprise Kernel

kernel-uek-4.1.12-124.16.4.el6uek.x86_64

3348

Oracle Linux 6 Kernel Crypto API Cryptographic Module

kernel-2.6.32-754.3.5.0.1.el6.x86_64.rpm

3421

List of modules that are currently in FIPS 140-2 validation

The site provides the following information for each module:

  • Name and description of the module.

  • Package version or versions for the module.

  • Status of the FIPS 140-2 validation process.

    Important

    To achieve compliance with FIPS Publication 140-2, you must use the package version that the Security Policy document specifies for each respective module only. You cannot install and use other versions of the cryptographic modules.

  • Explains how to configure the module for FIPS mode. You should refer to Section 10 of the Security Policy document when you install the module to verify that the package was FIPS 140-2 validated and to ensure that you correctly enable the module for FIPS mode.