1. FIPS Compliance Guide
  2. FIPS Compliance
  3. Cryptographic Modules

Cryptographic Modules

FIPS compliance requires the clear definition of modules that perform cryptographic functions. The following modules are present on the supported Acme Packet platforms.

  • OpenSSL — This software module provides cryptographic functions to include the following:
    • AES
    • AES_GCM
    • DRBG800-90A
    • ECDSA2
    • HMAC
    • KDF135
    • RSA2
    • SHA
    • TDES
  • Mocana — This software module provides cryptographic functions to include the following:
    • AES CBC 192 & 256
    • HMAC 20 with SHA-2 32 with SHA-2
    • KDF (IKEv2 and SSH)
    • RSA2 (KeyGen_RandomProbablyPrime3_3 and SigVer15_186-3)
    • SHA (SHA1, SHA2)
    • TDES
  • Cavium Nitrox PX1620
  • Cavium Octeon CN688X

Note:

Cryptographic modules are described in detail in the relevant Oracle Security Policy documents.

Cryptographic Hardware Accleration

Cryptographic hardware acceleration is supported on the Acme Packet 4600 and Acme Packet 6300 platforms for AES, TDES, RSA, SHA, and HMAC-SHA.