The software described in this documentation is either in Extended Support or Sustaining Support. See https://www.oracle.com/us/support/library/enterprise-linux-support-policies-069172.pdf for more information.
Oracle recommends that you upgrade the software described by this documentation as soon as possible.
Oracle has completed FIPS 140-2 Level 1 certifications for cryptographic components that reside within Oracle Linux 6.9.
Completed certifications include those that are listed in the following table.
Cryptographic Module Name | Package Versions | Certificate Number |
|---|---|---|
Oracle Linux OpenSSL Cryptographic Module |
| |
Oracle Linux 6 OpenSSH Client Cryptographic Module |
| |
Oracle Linux 6 OpenSSH Server Cryptographic Module |
| |
Oracle Linux 6 NSS Cryptographic Module |
| |
Oracle Linux 6 Libreswan Cryptographic Module |
| |
Oracle Linux 6 Unbreakable Enterprise Kernel |
| |
Oracle Linux 6 Kernel Crypto API Cryptographic Module |
|
- List of modules that are currently in FIPS 140-2 validation
The site provides the following information for each module:
Name and description of the module.
Package version or versions for the module.
Status of the FIPS 140-2 validation process.
ImportantTo achieve compliance with FIPS Publication 140-2, you must use the package version that the Security Policy document specifies for each respective module only. You cannot install and use other versions of the cryptographic modules.
Instructions on how to configure the module for FIPS mode. You should refer to Section 10 of the Security Policy document when you install the module to verify that the package was FIPS 140-2 validated and to ensure that you correctly enable the module for FIPS mode.