PGP Corporation

200 Jefferson Drive, Menlo Park, CA 94025 USA

David Finkelstein

TEL: +1-650-319-9000

FAX: +1-650-319-9001

PGP Software Developer's Kit (SDK) Cryptographic Module

• Software Version: 3.12.0

Certificate

Security Policy

Module Type: Software

Val. Date: 3/5/2010

Overall level:1

Operational Environment:

• Apple MacBook Pro 15"
  w/
  Mac OS X 10.5;
• Dell PowerEdge 860
  (CPU: Dual Core Xeon 3060 processor,
  1 GB RAM, DVD-ROM, and 80GB SATA hard disk drive)
  w/
  Windows XP Professional 2002 SP-2;
• Dell PowerEdge 860
  (CPU: Dual Core Xeon 3060 processor,
  1 GB RAM, DVD-ROM, and 80GB SATA hard disk drive)
  w/
  Linux, 32-bit: Fedora Core 6;

Approved algorithms:
DSA (CAVP #334, #335, #336), RSA (CAVP #459, #460, #461), 3-key Triple DES (CAVP #753, #754, #755), AES (CAVP #951, #954, #955), SHS (CAVP #925, #926, #927), HMAC (CAVP #529, #531, #532), RNG (CAVP #538, #539, #540)

Other algorithms:
CAST-5, IDEA, Two-Fish, Blow-Fish, ARC4-128, AES (EME2 mode; non-compliant), MD5, HMAC-MD5, RIPEMD-160(non-compliant), DSA with SHA-256 (FIPS 186-3), ElGamal, Shamir Threshold Secret Sharing, RSA Encrypt/Decrypt, OpenPGP Message Format (IETF RFC 4880)

Physical Embodiment:
Multi-chip standalone

Outline:
The PGP SDK Cryptographic Module is a MSR-01 validated software only cryptographic module. The module implements the cryptographic functions for PGP products including: PGP Whole Disk Encryption, PGP NetShare, PGP Command Line, PGP Universal, and PGP Desktop. It includes a wide range of field-tested and standards-based encryption, digital signature, and encoding algorithms as well as a variety of secure network protocol implementations. The PGP SDK offers developers this same cryptographic library that is at the heart of PGP products. FIPS 140-2 Validation Testing performed by ÆGISOLVE, INC.

Canon Inc.

30-2,Shimomaruko3-chome, Ohta-ku,
Tokyo 146-8501 Japan

Koji Harada
(Applied Software Technology Development Center)

TEL: +81-3-3758-2111

C-SELECT

• Software Version: 1.2

Certificate

Security Policy

Module Type: Software

Val. Date: 5/27/2009

Overall level:1

Operational Environment:

• HP Compaq Business Desktop dc7100US
  (CPU: Intel Celeron D330 2.66GHz,
  memory: 768MB, HDD: 40GB)
  w/
  Microsoft Windows 2000 Professional 5.00.2195 SP4;
• HP Compaq Business Desktop dc7100US
  (CPU: Intel Celeron D330 2.66GHz,
  memory: 768MB, HDD: 40GB)
  w/
  Microsoft Windows XP Professional Version2002 SP3;
• IBM xSeries 100
  (CPU: Intel Celeron D326 2.53GHz,
  memory: 512MB, HDD: 74.5GB)
  w/
  Microsoft Windows Vista Ultimate (32-bit Edition) SP1;
• HP Compaq Business Desktop dc7100US
  (CPU: Intel Celeron D330 2.66GHz,
  memory: 768MB, HDD: 40GB)
  w/
  Fedora Core release 6 (i386) 2.6.22.9-61.fc6;
• HP Workstation xw6200
  (CPU: Intel Xeon 3.40GHz,
  memory: 512MB, HDD: 36.7GB)
  w/
  Microsoft Windows XP Professional x64 Edition Version2002 SP2;
• HP Workstation xw6200
  (CPU: Intel Xeon 3.40GHz,
  memory: 2048MB, HDD: 80GB)
  w/
  Microsoft Windows Vista Ultimate 64-bit edition SP1;
• HP Workstation xw6200
  (CPU: Intel Xeon 3.40GHz,
  memory: 2048MB, HDD: 80GB)
  w/
  Fedora Core release 6 (x86_64) 2.6.22.9-61.fc6;
• Apple Mac mini
  (CPU: Intel Core Duo 1.83GHz,
  memory: 2GB, HDD: 80GB)
  w/
  Mac OS X v10.4.11;
• Apple Power Mac G3
  (CPU: PowerPC 750 350MHz,
  memory: 320MB, HDD: 28GB)
  w/
  Mac OS X v10.4.11;

Approved algorithms:
DSA(#3), RSA (#8), 3key Triple-DES(#5), AES(#10), Camellia(#3), SHS(#11), HMAC(#8), DH(#4), RNG(#3)

Other algorithms:
DES, 2-key Triple DES, RC2, AES CCM mode, Elgamal, MD2, MD4, MD5, HMAC-MD5, DESMAC, TDES Key wrap, AES Key wrap, PRNG based on DES for general purpose in FIPS 186-2 (+ change notice 1) Appendix 3.1

Physical Embodiment:
Multi-chip standalone

Outline:
C-SELECT is the software library where the processing of symmetric key encryption/decryption, digital signature generation/verification, message digest, pseudo-random number generation, key sharing, and the key wrapping functions are achieved on MS Windows, Macintosh, and Linux.

NTT Electronics Corporation
Shibuya Mark City,1-12-1 Dogenzaka, Shibuya-ku,
Tokyo 150- 0043 Japan

Makoto Sasaki
(Safety & Network Group)

TEL : +81-45-453-3682
FAX : +81-45-440-4701

1Gbps Encryptor for wide area Ethernet
"T-Cypher GigaEther"

• Hardware Version : 1.30
• Firmware Version : 1.00

Certificate

Security Policy

Overall level:2
-Physical Security :Level 3

Operational Environment: N/A

Approved algorithms:
RSA(#6), AES(#8), SHS(#8), HMAC(#6), RNG(#2)

Other algorithms:
RSA, AES(original block-cipher mode of operation; non-compliant), SHA-1

Physical Embodiment:
Multi-chip standalone

Outline:
This cryptographic module is installed between router/SW in the LAN and DCE of the wide area Ethernet. The module prevents the wiretapping of layer 2 frames by encryption. As security functions, this cryptographic module implements AES CBC/OFB mode, SHA-256, RSASSA- PKCS1-v1.5, RSAES-PKCS1-v1.5, HMAC and PRNG based on SHA-1 for general purpose in FIPS 186-2(+ change notice 1) Appendix 3.1 .

NEC Corporation
4-14-22, Shibaura, Minato-ku,
Tokyo 108-8558 Japan

(The First System Sofware Division)

“SecureWare/Development Kit Ver5.0” with
“SecureWare/Development Kit Ver5.0 CIPHERUNICORN Options”

• Software Version :
  Ver5.0
  (model number: UL1123-401 (Windows edition),
  UQ3042-000C1, UQ3042-H000C1, UQ3042-G000C1 (HP-UX edition))

Certificate

Security Policy

Overall level:1

Operational Environment:

• NEC VJ21A/W-4
  (CPU: Intel Core2Duo Processor T7400 2.16GHz,
  Memory: 2048MB, HDD: 80GB),
  w/
  Microsoft Windows XP Professional Version 2002 Service Pack 3;
• NEC VJ21A/W-4
  (CPU: Intel Core2Duo Processor T7400 2.16GHz,
  Memory: 2048MB, HDD: 80GB),
  w/
  Microsoft Windows Vista Business Service Pack 1;
• NEC Express 5800/120Rj-2
  (CPU: Intel Xeon Processor X5460 3.16GHz ×2,
  Memory: 16GB, HDD: 73.2GB ×4),
  w/
  Microsoft Windows Server 2003 R2 Enterprise Edition Service Pack 2;
• NEC NX7700i/5012L-8
  (CPU: Intel Itanium Processor 9140N 1.6GHz ×4,
  Memory: 16GB, HDD: 73GB ×4),
  w/
  HP-UX 11i v2 Mission Critical Operating Environment;

Approved algorithms:
RSA(#5), CIPHERUNICORN-E(#1), 3-key Triple DES(#4), AES(#7), CIPHERUNICORN-A(#1), SHS(#7), HMAC(#5), DH(#3),
Hash_DRBG in NIST SP800-90(Vender Affirmed)

Other algorithms:
RSA-raw, Triple DES (2Key), DES, RC2, RC5, MD2, MD4, MD5, HMAC-MD2, HMAC-MD5

Physical Embodiment:
Multi-chip standalone

Outline:
This cryptographic module is the general purpose cryptographic library offered by NEC Corporation, which provides security functions such as symmetric key cipher, public key cipher, digital signature, hash function, message authentication code, random number generation, and key agreement.

Hitachi, Ltd.

5030,Totsuka-cho, Totsuka-ku, Yokohama-shi,
Kanagawa 244-8555 Japan

Hiroyuki Kurumatani

TEL: +81-45-862-8993

Keymate/Crypto JCMVP library
(Solaris and Windows edition)

• Software Version : 04-00

Certificate

Security Policy

Overall level:1

Operational Environment:

• Sun Blade 2000
  (CPU: Ultra SPARC III Cu (900MHz),
  Memory: 1GB, HDD: 120GB),
  w/
  Solaris 10 5/08 (SunOS 5.10);
• HP Compaq dc7800p Small Form Factor
  (CPU: Intel Core2Duo CPU E8300 (2.83GHz),
  Memory: 4GMB, HDD: 160GB),
  w/
  Windows Server 2008 Enterprise
  (Version 6.0, Build 6001: Service Pack 1);

Approved algorithms:
ECDSA(#3), RSA(#7), AES(#9), SHS(#9, #10), HMAC(#7),
Hash_DRBG in NIST SP800-90(Vender Affirmed)

Other algorithms: N/A

Physical Embodiment:
Multi-chip standalone

Outline:
The Keymate/Crypto JCMVP library is the software library that includes cryptographic functions such as public key cipher, symmetric key cipher, and hashing.

Toshiba Corporation

1-1, Shibaura 1-chome, Minato-Ku,
Tokyo 105-8001 Japan

TEL: +81-3-3457-2463

FAX: +81-3-5444-9400

MHZ2 CJ Series of 2.5 inch hard disk drive with automatic hardware-based encryption

• Hardware Versions:
  CA07062-B901 A1, CA07062-B218 A1,
  CA07062-B903 A1, CA07062-B222 A1,
  CA07062-B904 A1, CA07062-B226 A1,
  CA07062-B906 A1, CA07062-B230 A1,
  CA07062-B908 A1, CA07062-B245 A1,
  CA07062-B909 A1, CA07062-B242 A1,
  CA07062-B911 A1, CA07062-B248 A1,
  CA07062-B913 A1, CA07062-B252 A1,
  CA07062-B914 A1, CA07062-B256 A1,
  CA07062-B916 A1, CA07062-B260 A1,
  CA07062-B918 A1, CA07062-B275 A1,
  CA07062-B919 A1, CA07062-B272 A1,
  CA07062-B901 A2, CA07062-B218 A2,
  CA07062-B903 A2, CA07062-B222 A2,
  CA07062-B904 A2, CA07062-B226 A2,
  CA07062-B906 A2, CA07062-B230 A2,
  CA07062-B908 A2, CA07062-B245 A2,
  CA07062-B909 A2, CA07062-B242 A2,
  CA07062-B911 A2, CA07062-B248 A2,
  CA07062-B913 A2, CA07062-B252 A2,
  CA07062-B914 A2, CA07062-B256 A2,
  CA07062-B916 A2, CA07062-B260 A2,
  CA07062-B918 A2, CA07062-B275 A2,
  CA07062-B919 A2, CA07062-B272 A2;
• Firmware Version: 0000801F

Certificate

Security Policy

 Module Type: Hardware

Overall level:1

Operational Environment: N/A

Approved algorithms:
AES(#6), SHS(#6), Hash_DRBG in NIST SP800-90 (Vendor Affirmed)

Other algorithms: N/A

Physical Embodiment:
Multi-chip embedded

Outline:
2.5" Hard Disk Drive (HDD) “MHZ2 CJ” series encrypt the input data automatically and record it onto a media by using the integrated 256-bit AES engine.

Hitachi, Ltd.

5030,Totsuka-cho, Totsuka-ku, Yokohama-shi,
Kanagawa 244-8555 Japan

Yasushi Ochi

TEL: +81-45-862-8993

Keymate/Crypto JCMVP library

• Software Version: 04-00

Certificate

Security Policy

 Module Type: Software

Overall level:1

Operational Environment:

• HA8000/130W(CPU: Xeon(3.60EGHz), memory: 4GB, HDD: 50GB), w/
  Linux Version 2.6.18-53.el5 (Red Hat Enterprise Linux 5);

Approved algorithms:
ECDSA(#2), RSA(#4), AES(#5), SHS(#4, #5), HMAC(#4),
Hash_DRBG in NIST SP800-90(Vendor Affirmed)

Other algorithms: N/A

Physical Embodiment:
Multi-chip standalone

Outline:
The Keymate/Crypto JCMVP library is the software library that includes cryptographic functions such as public key cipher, symmetric key cipher, and hashing.

Canon Inc.

30-2,Shimomaruko3-chome, Ohta-ku,
Tokyo 146-8501 Japan

Koji Harada
(Applied Software Technology Development Center)

TEL: +81-3-3758-2111

C-SELECT

• Software Version: 1.1

Certificate

Security Policy

Module Type: Software

Val. Date: 12/26/2007

Overall level:1

Operational Environment:

• Intel Celeron D330 2.66GHz, memory 768MB, HDD 40GB, w/ Microsoft Windows 2000 Professional 5.00.2195 SP4
• Intel Celeron D330 2.66GHz, memory 768MB, HDD 40GB, w/ Microsoft Windows XP Professional Version2002 SP2
• Intel Celeron D326 2.53GHz, memory 512MB, HDD 74.5GB, w/ Microsoft Windows Vista Ultimate
• Intel Celeron D330 2.66GHz, memory 768MB, HDD 40GB, w/ Linux Version 2.6.22.9-61.fc6 (Fedora Core 6)
• Intel Xeon 3.40GHz, memory 512MB, HDD 36.7GB, w/ Microsoft Windows XP Professional x64 Edition Version2002 SP2
• Intel Xeon 3.40GHz, memory 2048MB, HDD 80GB, w/
  Microsoft Windows Vista Ultimate
• Intel Xeon 3.40GHz, memory 2048MB, HDD 80GB, w/
  Linux Version 2.6.22.9-61.fc6 (Fedora Core 6)
• Intel Core Duo 1.83GHz, memory 2GB, HDD 80GB, w/
  Mac OS X v10.4.10
• PowerPC 750 350MHz, memory 320MB, HDD 28GB, w/ Mac OS X v10.4.10

Approved algorithms:
DSA(#2), RSA (#3), 3key Triple-DES(#3), AES(#4), Camellia(#2), SHS(#3), HMAC (#3), DH(#2), RNG(#1), CMAC(Vendor affirmed)

Other algorithms:
DES, RC2, AES CCM mode, Elgamal, MD2, MD4, MD5, HMAC-MD5, DESMAC, TDES Key wrap, AES Key wrap, PRNG based on DES for general purpose in FIPS 186-2 (+ change notice 1) Appendix 3.1

Physical Embodiment:
Multi-chip standalone

Outline:
C-SELECT is the software library where the processing of symmetric key encryption/decryption, digital signature generation/verification, message digest, pseudo-random number generation, key sharing, and the key wrapping functions are achieved on MS Windows, Macintosh, and Linux.

Tohoku University & AIST
Cryptographic Hardware Project

2-1-1,Katahira, Aoba-ku, Sendai-shi,
Miyagi 980-8577 Japan

Naofumi Homma

TEL: +81-22-795-7169

FAX: +81-22-263-9308

SASEBO-AES Cryptographic FPGA Board

• Hardware Version:
  P/N 3-93961-1;
• Firmware Version:
  1.1(Firmware name: SASEBO-FPGA1),
  1.0(Firmware name: SASEBO-FPGA2)

Certificate

Security Policy

Module Type: Hardware

Val. Date: 12/17/2007

Overall Level: 1

Operational Environment: N/A

Approved algorithms:AES(#3)

Other algorithms: N/A

Physical Embodiment:
Multi-chip embedded

Outline:
SASEBO-AES is the cryptographic hardware module that implements 128 bit block cipher AES on the SASEBO board (SASEBO: Side-channel Attack Standard Evaluation Board) that has two FPGAs. This board is jointly developed by National Institute of Advanced Industrial Science and Technology and Tohoku University consigning on business of the Ministry of Economy, Trade and Industry. The external PC can control the data encryption and decryption, etc. through a general-purpose RS-232C serial interface.

Canon Inc.

30-2,Shimomaruko3-chome, Ohta-ku,
Tokyo 146-8501 Japan

Koji Harada
(Applied Software Technology Development Center)

TEL: +81-3-3758-2111

C-SELECT

• Software Version: 1.0

Certificate

Security Policy

Module Type: Software

Val. Date: 04/10/2007

Overall Level: 1

Operational Environment:

• Microsoft Windows Vista Ultimate
• Microsoft Windows XP Professional Version2002 Service Pack 2
• Microsoft Windows 2000 Service Pack 4 5.00.2195
• Linux Version 2.6.15-1.2054-FC5 (Fedora Core 5)

Approved algorithms:
DSA(#1), ECDSA(#1), RSASSA-PKCS1-v1_5, RSA-OAEP, RSAES-PKCS1-v1_5(#2), 3key Triple-DES(#2), AES(#2), Camellia(#1), SHA-1, SHA-256, SHA-384, SHA-512(#2), HMAC-SHA-1, HMAC-SHA-256, HMAC-SHA-384, HMAC-SHA-512(#2), DH(#1), ECDH(#1), PRNG based on SHA-1 for general purpose in FIPS 186-2 (+ change notice 1) Appendix 3.1(Vendor affirmed)

Other algorithms:
DES, RC2, AES CCM mode, Elgamal, MD2, MD4, MD5, HMAC-MD5, CMAC, DESMAC, TDES Key wrap, AES Key wrap, PRNG based on DES for general purpose in FIPS 186-2 (+ change notice 1) Appendix 3.1

Physical Embodiment:
Multi-chip standalone

Outline:
C-SELECT Version1.0 is the software library where the processing of symmetric key encryption/decryption, digital signature generation/ verification, message digest, pseudo-random number generation, key sharing, and key wrapping functions are achieved on MS Windows, Macintosh, and Linux.
C-SELECT is the general purpose dynamic link library which is applicable to various uses including the security protocol, and provides enhanced Crypto API for C language which is the enhanced version of the Simple Cryptographic Program Interface(Crypto API) based on RFC 2628.

Toshiba Solutions Corporation

1-1-1, Shibaura, Minato-ku,
Tokyo 105-6691 Japan

Toshiba Solutions Cryptographic Library

• Software Version: 1.0.0.0

Certificate

Security Policy

Module Type: Software

Val. Date: 03/30/2007

Overall Level: 1

Operational Environment:
Microsoft Windows XP SP2 Professional Edition

Approved algorithms:
AES(#1), 3key Triple-DES(#1), SHA-1, SHA-256(#1), RSASSA-PSS(#1), HMAC-SHA-1, HMAC-SHA-256(#1), PRNG based on SHA-1 for general purpose in FIPS 186-2 (+change notice 1) revised Appendix 3.1(Vendor affirmed)

Other algorithms: N/A

Physical Embodiment:
Multi-chip standalone

Outline:
The Toshiba Solutions Cryptographic Library is a dynamic link library (DLL) that operates on Microsoft Windows OS. All the installed cryptographic functions are security functions approved by JCMVP; secret key cryptosystem, public key cryptosystem, hash functions, message authentication functions, and a pseudorandom number generator function.